Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:16-06-2016 01 Exécuté par ilyes (administrateur) sur ILYES-PC (18-06-2016 01:36:52) Exécuté depuis C:\Users\ilyes\Desktop Profils chargés: ilyes (Profils disponibles: ilyes) Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: IE) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe (Plays.tv, LLC) C:\Program Files\Raptr Inc\PlaysTV\plays_service.exe (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe () C:\Windows\System32\PnkBstrA.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKU\S-1-5-21-3083525722-3015889557-3970263467-1000\...\Run: [KSS] => C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [933856 2015-12-17] (AO Kaspersky Lab) HKU\S-1-5-18\...\Run: [KSS] => C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [933856 2015-12-17] (AO Kaspersky Lab) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2014-04-21] (Tonec Inc.) CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{358778AE-FBAD-43B6-9F22-514480899359}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{49EDB458-E0B1-46DD-A755-D7E4AA3903B0}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131101230064954447&GUID=00000000-0000-0000-0000-000000000000 SearchScopes: HKLM -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKLM -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1 SearchScopes: HKU\S-1-5-21-3083525722-3015889557-3970263467-1000 -> DefaultScope {2039DD3E-4E72-4C20-90E7-9FD959AA7D06} URL = hxxp://www.google.com/cse?cx=partner-pub-0900663996874144:4435833467&ie=UTF-8&q={searchTerms}&sa=Search&ref=#gsc.tab=0&gsc.q={searchTerms}&gsc.page=1 SearchScopes: HKU\S-1-5-21-3083525722-3015889557-3970263467-1000 -> {2039DD3E-4E72-4C20-90E7-9FD959AA7D06} URL = hxxp://www.google.com/cse?cx=partner-pub-0900663996874144:4435833467&ie=UTF-8&q={searchTerms}&sa=Search&ref=#gsc.tab=0&gsc.q={searchTerms}&gsc.page=1 SearchScopes: HKU\S-1-5-21-3083525722-3015889557-3970263467-1000 -> {980DCE8D-A0C9-4526-BFB8-C9AC5DD528C0} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-02-21] (Internet Download Manager, Tonec Inc.) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF HKU\S-1-5-21-3083525722-3015889557-3970263467-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ilyes\AppData\Roaming\IDM\idmmzcc5 FF Extension: IDM CC - C:\Users\ilyes\AppData\Roaming\IDM\idmmzcc5 [2016-06-17] [non signé] Chrome: ======= CHR HomePage: ChromeDefaultData -> hxxp://www.hohosearch.com/?ts=AHEqAn0qA3YoAE..&v=20160512&uid=98B48C8C1FB55CD8644A7BFEE47990B8&ptid=amz&mode=loadm CHR StartupUrls: ChromeDefaultData -> "hxxp://www.hohosearch.com/?ts=AHEqAn0qA3YoAE..&v=20160512&uid=98B48C8C1FB55CD8644A7BFEE47990B8&ptid=amz&mode=loadm" CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.hohosearch.com/chrome.php?q={searchTerms}&ts=AHEqAn0qA3YoAE..&v=20160512&uid=98B48C8C1FB55CD8644A7BFEE47990B8&ptid=amz&mode=loadm CHR DefaultSearchKeyword: ChromeDefaultData -> hohosearch CHR Profile: C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\ChromeDefaultData CHR Extension: (Hola Video Accelerator) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\chgpmaaockmdehmidghebcjafhihlgha [2016-06-15] CHR Extension: (AdBlock) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-02] CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-06-17] CHR Extension: (Cut the Rope) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\jfbadlndcminbkfojhlimnkgaackjmdo [2016-05-22] CHR Extension: (Basket & Ball) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lbofgfgfgdkllfnfmipceliihehcmbmd [2016-05-22] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-12] CHR Profile: C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-16] CHR Extension: (Google Drive) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-16] CHR Extension: (YouTube) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-16] CHR Extension: (Protection Web Avira) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-06-16] CHR Extension: (Google Docs hors connexion) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-16] CHR Extension: (IDM Integration Module) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-06-16] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-16] CHR Extension: (Gmail) - C:\Users\ilyes\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-16] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-04-18] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 kss; C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [933856 2015-12-17] (AO Kaspersky Lab) S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation) S3 Origin Client Service; C:\Users\ilyes\Origin\OriginClientService.exe [2122248 2016-06-09] (Electronic Arts) R2 PlaysService; C:\Program Files\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-06-07] (Plays.tv, LLC) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2016-06-10] () R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation) U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-06-14] () ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-06-18 01:36 - 2016-06-18 01:37 - 00012946 _____ C:\Users\ilyes\Desktop\FRST.txt 2016-06-18 01:36 - 2016-06-18 01:36 - 00000000 ____D C:\FRST 2016-06-18 01:25 - 2016-06-18 01:26 - 01737216 _____ (Farbar) C:\Users\ilyes\Desktop\FRST.exe 2016-06-17 18:39 - 2016-06-17 18:39 - 00005144 _____ C:\Users\ilyes\Desktop\ZHPFixReport.txt 2016-06-17 01:40 - 2016-06-17 01:40 - 00001799 _____ C:\Users\Public\Desktop\ZHPFix.lnk 2016-06-17 01:40 - 2016-06-17 01:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP 2016-06-17 01:40 - 2016-06-17 01:40 - 00000000 ____D C:\Program Files\ZHPFix 2016-06-17 01:36 - 2016-06-17 01:40 - 03521617 _____ (Nicolas Coolman ) C:\Users\ilyes\Downloads\ZHPFix.exe 2016-06-15 15:31 - 2016-06-06 16:26 - 00037096 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-06-15 15:31 - 2016-06-06 16:23 - 01001472 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-06-15 15:31 - 2016-06-03 14:04 - 01225216 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-06-15 15:31 - 2016-05-27 14:05 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-06-15 15:31 - 2016-05-27 14:05 - 00461824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-06-15 15:31 - 2016-05-27 14:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-06-15 15:31 - 2016-05-27 14:05 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2016-06-15 15:31 - 2016-05-22 14:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-06-15 15:26 - 2016-05-13 22:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-06-15 15:26 - 2016-05-13 22:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-06-15 15:26 - 2016-05-13 22:49 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-06-15 15:26 - 2016-05-13 22:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-06-15 15:26 - 2016-05-13 22:27 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-06-15 15:26 - 2016-05-12 16:22 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-06-15 15:26 - 2016-05-12 16:22 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-06-15 15:26 - 2016-05-12 16:18 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL 2016-06-15 15:26 - 2016-05-12 16:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-06-15 15:26 - 2016-05-12 16:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-06-15 15:26 - 2016-05-12 15:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll 2016-06-15 15:26 - 2016-05-12 15:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe 2016-06-15 15:26 - 2016-05-12 15:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-06-15 15:26 - 2016-05-12 15:54 - 02397696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-06-15 15:26 - 2016-05-12 15:52 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2016-06-15 15:26 - 2016-05-12 15:52 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-06-15 15:26 - 2016-05-12 15:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-06-15 15:26 - 2016-05-12 15:52 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-06-15 15:26 - 2016-05-12 15:52 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2016-06-15 15:26 - 2016-05-12 15:52 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-06-15 15:26 - 2016-05-12 15:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-06-15 15:26 - 2016-05-12 15:51 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-06-15 15:26 - 2016-05-12 15:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-06-15 15:26 - 2016-05-12 14:04 - 00370784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-06-15 15:26 - 2016-05-12 14:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-06-15 15:26 - 2016-05-11 16:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2016-06-15 15:26 - 2016-04-09 07:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-06-15 15:26 - 2016-04-09 07:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2016-06-15 15:26 - 2016-04-09 06:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-06-15 15:26 - 2016-03-09 19:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2016-06-15 15:25 - 2016-05-23 23:54 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-06-15 15:25 - 2016-05-21 17:57 - 20341248 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-06-15 15:25 - 2016-05-20 23:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-06-15 15:25 - 2016-05-20 23:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-06-15 15:25 - 2016-05-20 22:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-06-15 15:25 - 2016-05-20 22:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-06-15 15:25 - 2016-05-20 22:57 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-06-15 15:25 - 2016-05-20 22:56 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-06-15 15:25 - 2016-05-20 22:55 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-06-15 15:25 - 2016-05-20 22:50 - 02287104 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-06-15 15:25 - 2016-05-20 22:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-06-15 15:25 - 2016-05-20 22:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-06-15 15:25 - 2016-05-20 22:45 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-06-15 15:25 - 2016-05-20 22:44 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-06-15 15:25 - 2016-05-20 22:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-06-15 15:25 - 2016-05-20 22:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-06-15 15:25 - 2016-05-20 22:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-06-15 15:25 - 2016-05-20 22:36 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-06-15 15:25 - 2016-05-20 22:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-06-15 15:25 - 2016-05-20 22:29 - 13815808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-06-15 15:25 - 2016-05-20 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-06-15 15:25 - 2016-05-20 22:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-06-15 15:25 - 2016-05-20 22:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-06-15 15:25 - 2016-05-20 22:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-06-15 15:25 - 2016-05-20 22:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-06-15 15:25 - 2016-05-20 22:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-06-15 15:25 - 2016-05-20 22:14 - 04610048 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-06-15 15:25 - 2016-05-20 22:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-06-15 15:25 - 2016-05-20 22:09 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-06-15 15:25 - 2016-05-20 22:09 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-06-15 15:25 - 2016-05-20 22:08 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-06-15 15:25 - 2016-05-20 22:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-06-15 15:25 - 2016-05-20 21:42 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-06-15 15:25 - 2016-05-20 21:38 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-06-15 15:25 - 2016-05-20 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-06-15 15:25 - 2016-05-11 16:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2016-06-15 15:25 - 2016-05-11 16:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2016-06-15 15:25 - 2016-05-11 16:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll 2016-06-15 15:25 - 2016-05-11 16:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe 2016-06-15 15:25 - 2016-05-11 15:52 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2016-06-15 15:25 - 2016-04-14 16:38 - 00105192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2016-06-15 15:25 - 2016-04-14 16:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2016-06-15 15:25 - 2016-04-14 16:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-06-15 15:25 - 2016-04-14 16:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2016-06-15 15:25 - 2016-04-14 16:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2016-06-15 15:25 - 2016-04-14 16:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2016-06-15 15:25 - 2016-04-14 16:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2016-06-15 15:21 - 2016-05-18 17:10 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-06-14 16:57 - 2016-06-14 17:18 - 00000830 _____ C:\Users\ilyes\Desktop\ZHPCleaner.lnk 2016-06-14 16:56 - 2016-06-14 16:56 - 02270208 _____ C:\Users\ilyes\Downloads\ZHPCleaner.exe 2016-06-14 16:28 - 2016-06-14 16:45 - 00000000 ____D C:\AdwCleaner 2016-06-14 16:26 - 2016-06-14 16:28 - 03677248 _____ C:\Users\ilyes\Downloads\adwcleaner_5.119.exe 2016-06-14 16:20 - 2016-06-17 16:52 - 00000000 ____D C:\Users\ilyes\AppData\Local\CrashDumps 2016-06-14 15:37 - 2016-06-14 15:37 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys 2016-06-14 15:32 - 2016-06-14 15:34 - 00000000 ____D C:\ProgramData\RogueKiller 2016-06-14 15:05 - 2016-06-14 15:05 - 02216960 _____ C:\Users\ilyes\ZHPDiag3.exe 2016-06-14 15:00 - 2016-06-17 18:39 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\ZHP 2016-06-14 15:00 - 2016-06-14 15:00 - 00000820 _____ C:\Users\ilyes\Desktop\ZHPDiag.lnk 2016-06-14 14:58 - 2016-06-14 14:59 - 02213888 _____ C:\Users\ilyes\Downloads\ZHPDiag3.exe 2016-06-14 02:22 - 2015-12-04 00:04 - 00000037 _____ C:\Users\ilyes\Downloads\السريال.txt 2016-06-14 02:22 - 2015-11-24 03:42 - 22908888 _____ (Malwarebytes ) C:\Users\ilyes\Downloads\mbam-full-setup-2.2.0.1024.exe 2016-06-14 02:17 - 2016-06-14 02:22 - 32798957 _____ C:\Users\ilyes\Downloads\mbam 2.2.0.1024 By aymen .rar 2016-06-14 01:44 - 2016-06-17 23:31 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-06-14 01:43 - 2016-06-14 13:33 - 00001058 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-06-14 01:43 - 2016-06-14 02:25 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2016-06-14 01:43 - 2016-06-14 01:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-06-14 01:43 - 2016-06-14 01:43 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-06-14 01:43 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2016-06-14 01:43 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2016-06-14 01:43 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2016-06-14 01:36 - 2016-06-14 01:41 - 22851472 _____ (Malwarebytes ) C:\Users\ilyes\Downloads\mbam-setup-2.2.1.1043.exe 2016-06-13 18:06 - 2016-06-14 02:14 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2016-06-13 18:05 - 2016-06-13 18:20 - 00000000 ____D C:\Users\ilyes\Documents\GTA San Andreas User Files 2016-06-13 18:05 - 2016-06-13 18:05 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer 2016-06-13 18:05 - 2016-06-13 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer 2016-06-12 00:25 - 2016-06-12 00:50 - 66360441 _____ C:\Users\ilyes\Downloads\TsukiEndr One Piece 276.flv 2016-06-08 15:29 - 2016-06-08 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-06-08 15:29 - 2016-06-08 15:29 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-06-08 13:49 - 2016-06-08 14:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Embratoria 2016-06-08 13:49 - 2016-06-08 14:06 - 00000000 ____D C:\Program Files\Embratoria 2016-06-08 04:22 - 2016-06-14 13:32 - 00000000 ____D C:\ProgramData\Cupblue 2016-06-08 04:21 - 2016-06-08 04:22 - 00000000 ____D C:\Program Files\Cupblue 2016-06-07 17:54 - 2016-06-07 17:54 - 00000212 _____ C:\Users\ilyes\Desktop\Counter-Strike.url 2016-06-07 14:12 - 2016-06-07 14:12 - 00000000 ____D C:\Users\Public\Documents\chrome 2016-06-07 13:15 - 2016-06-07 13:15 - 00000000 __RSH C:\MSDOS.SYS 2016-06-07 13:15 - 2016-06-07 13:15 - 00000000 __RSH C:\IO.SYS 2016-06-07 13:12 - 2016-06-07 13:12 - 00000007 _____ C:\Windows\system32\wsx5EA5.tmp 2016-06-07 13:12 - 2016-06-07 13:12 - 00000000 ____D C:\Users\ilyes\AppData\Local\Cupblue 2016-06-07 13:11 - 2016-06-14 17:10 - 00031744 ___SH C:\Users\ilyes\Thumbs.db 2016-06-07 13:00 - 2016-06-14 01:40 - 00000000 _____ C:\Users\Public\Documents\report.dat 2016-06-07 13:00 - 2016-06-07 13:01 - 00000000 ____D C:\ProgramData\uckt 2016-06-05 11:05 - 2016-06-05 11:05 - 00000000 ____D C:\Users\ilyes\AppData\Local\Geckofx 2016-06-05 01:42 - 2016-06-05 14:07 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Psiphon3 2016-06-05 01:36 - 2016-06-14 13:34 - 00000993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk 2016-06-05 01:36 - 2016-06-14 13:33 - 00000987 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk 2016-06-05 01:36 - 2016-06-05 01:36 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\TeamViewer 2016-06-05 01:35 - 2016-06-05 01:39 - 00000000 ____D C:\Program Files\TeamViewer 2016-06-01 11:33 - 2016-06-14 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 2016-06-01 11:29 - 2016-06-05 10:24 - 00000001 _____ C:\Windows\system32\fr.html 2016-05-30 13:18 - 2016-06-14 02:11 - 00000000 __SHD C:\Users\ilyes\Documents\MSDCSC 2016-05-28 16:48 - 2016-06-14 13:33 - 00000566 _____ C:\Users\Public\Desktop\Fraps.lnk 2016-05-28 16:48 - 2016-05-28 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps 2016-05-28 16:47 - 2013-04-09 19:14 - 02782320 _____ (Beepa Pty Ltd) C:\Users\ilyes\Downloads\Fraps 3.5.99 Build 15618.exe 2016-05-28 16:45 - 2016-05-28 16:47 - 02632904 _____ C:\Users\ilyes\Downloads\F_v3.5.99.zip 2016-05-27 10:32 - 2016-05-27 10:32 - 00810171 _____ C:\Users\ilyes\Downloads\téléchargement.htm 2016-05-24 20:47 - 2016-05-28 16:48 - 00000000 ____D C:\Fraps 2016-05-24 11:07 - 2016-06-14 13:34 - 00000585 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2016.lnk 2016-05-24 11:07 - 2016-06-14 13:33 - 00000585 _____ C:\Users\Public\Desktop\Pro Evolution Soccer 2016.lnk 2016-05-23 09:56 - 2016-05-23 09:56 - 00007519 _____ C:\Users\ilyes\Downloads\AppOnFly for Windows users.rdp 2016-05-22 12:48 - 2016-05-22 12:59 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2016-05-22 12:47 - 2016-06-14 13:33 - 00002251 _____ C:\Users\ilyes\Desktop\Lanceur d'applications Google Chrome.lnk 2016-05-22 12:47 - 2016-05-22 12:47 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2016-05-19 22:33 - 2016-05-20 15:21 - 00000836 _____ C:\Users\ilyes\Desktop\2222.txt ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-06-17 23:39 - 2016-03-16 12:16 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-06-17 23:38 - 2009-07-14 05:34 - 00025216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-06-17 23:38 - 2009-07-14 05:34 - 00025216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-06-17 23:30 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-06-17 23:22 - 2016-03-16 15:10 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-06-17 23:19 - 2016-05-08 17:03 - 00000346 _____ C:\Users\ilyes\Desktop\Nouveau document texte (2).txt 2016-06-17 23:06 - 2016-03-16 12:23 - 00002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-06-17 23:06 - 2016-03-16 12:23 - 00002127 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-06-17 18:40 - 2016-03-30 08:57 - 00000000 ____D C:\Users\ilyes\Desktop\cont 2016-06-17 18:38 - 2016-05-14 14:45 - 00000000 ____D C:\Program Files\MinerGate 2016-06-17 18:38 - 2016-05-13 11:38 - 00000000 ____D C:\Program Files\Clownfish 2016-06-17 18:38 - 2016-03-20 09:00 - 00000000 ____D C:\Windows\system32\SPReview 2016-06-17 18:38 - 2016-03-17 13:30 - 00000000 ____D C:\Users\ilyes\Origin 2016-06-17 18:38 - 2016-03-16 17:05 - 00000000 ____D C:\Program Files\Internet Download Manager 2016-06-17 18:11 - 2016-03-17 13:31 - 00000000 ____D C:\ProgramData\Origin 2016-06-17 18:10 - 2016-04-06 19:14 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Raptr 2016-06-17 18:10 - 2016-03-31 16:09 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Skype 2016-06-17 18:08 - 2016-05-14 14:45 - 00000000 ____D C:\Users\ilyes\AppData\Local\minergate 2016-06-17 18:08 - 2016-03-16 17:05 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\DMCache 2016-06-17 18:07 - 2016-04-06 20:47 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\PlaysTV 2016-06-16 23:24 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache 2016-06-16 03:25 - 2009-07-14 05:33 - 00269992 _____ C:\Windows\system32\FNTCACHE.DAT 2016-06-16 03:23 - 2016-03-23 10:52 - 00000000 ____D C:\Windows\system32\appraiser 2016-06-16 02:52 - 2016-03-16 14:30 - 00000000 ____D C:\Program Files\Common Files\Steam 2016-06-16 02:49 - 2009-07-14 05:53 - 00032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-06-15 15:06 - 2016-03-16 17:05 - 00000000 ____D C:\Users\ilyes\Downloads\Compressed 2016-06-14 23:29 - 2016-03-16 16:43 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-06-14 23:29 - 2016-03-16 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-06-14 23:29 - 2016-03-16 16:43 - 00000000 ____D C:\Program Files\WinRAR 2016-06-14 15:05 - 2016-03-16 12:08 - 00000000 ____D C:\Users\ilyes 2016-06-14 13:34 - 2016-05-15 22:05 - 00001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASSDraw3.lnk 2016-06-14 13:34 - 2016-05-15 22:05 - 00001027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aegisub.lnk 2016-06-14 13:34 - 2016-03-30 15:06 - 00001308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk 2016-06-14 13:34 - 2016-03-30 15:06 - 00001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk 2016-06-14 13:34 - 2016-03-30 14:56 - 00001392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk 2016-06-14 13:34 - 2016-03-30 14:55 - 00002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk 2016-06-14 13:34 - 2016-03-16 12:05 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2016-06-14 13:34 - 2016-03-16 12:05 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2016-06-14 13:34 - 2009-07-14 05:46 - 00001479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-06-14 13:34 - 2009-07-14 05:42 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk 2016-06-14 13:34 - 2009-07-14 05:42 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk 2016-06-14 13:34 - 2009-07-14 05:42 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk 2016-06-14 13:34 - 2009-07-14 05:42 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk 2016-06-14 13:33 - 2016-05-15 21:57 - 00001889 _____ C:\Users\Public\Desktop\MKVToolNix GUI.lnk 2016-06-14 13:33 - 2016-04-23 21:11 - 00002089 _____ C:\Users\Public\Desktop\Foxit Reader.lnk 2016-06-14 13:33 - 2016-04-22 10:33 - 00001129 _____ C:\Users\Public\Desktop\Kaspersky Security Scan.lnk 2016-06-14 13:33 - 2016-04-20 22:50 - 00001018 _____ C:\Users\ilyes\Desktop\MEGAsync.lnk 2016-06-14 13:33 - 2016-04-16 23:15 - 00000908 _____ C:\Users\ilyes\Desktop\FL Studio 12.lnk 2016-06-14 13:33 - 2016-04-16 02:06 - 00001103 _____ C:\Users\Public\Desktop\FIFA 16.lnk 2016-06-14 13:33 - 2016-04-15 06:32 - 00001202 _____ C:\Users\Public\Desktop\FIFA 14.lnk 2016-06-14 13:33 - 2016-04-14 09:54 - 00001192 _____ C:\Users\Public\Desktop\Battlefield 4.lnk 2016-06-14 13:33 - 2016-04-11 20:17 - 00002014 _____ C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk 2016-06-14 13:33 - 2016-04-01 16:19 - 00000840 _____ C:\Users\ilyes\Desktop\Uplay.lnk 2016-06-14 13:33 - 2016-03-31 16:09 - 00002679 _____ C:\Users\Public\Desktop\Skype.lnk 2016-06-14 13:33 - 2016-03-30 14:43 - 00002184 _____ C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-06-14 13:33 - 2016-03-17 00:22 - 00000943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BitTorrent.lnk 2016-06-14 13:33 - 2016-03-17 00:21 - 00001022 _____ C:\Users\Public\Desktop\VLC media player.lnk 2016-06-14 13:33 - 2016-03-16 12:08 - 00001433 _____ C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2016-06-14 13:33 - 2009-07-14 05:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk 2016-06-14 13:33 - 2009-07-14 05:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk 2016-06-14 13:32 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\SchCache 2016-06-14 04:55 - 2016-03-31 14:26 - 00000000 ___HD C:\Users\ilyes\Desktop\SQLi ask v.8.0 2016-06-14 02:15 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-06-14 02:11 - 2016-03-17 00:22 - 00000000 ____D C:\Program Files\BitTorrent 2016-06-14 02:11 - 2016-03-16 16:45 - 00000000 ____D C:\Extracted 2016-06-14 00:40 - 2016-03-17 00:18 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\BitTorrent 2016-06-13 23:53 - 2016-03-16 12:15 - 00006256 _____ C:\Windows\system32\PerfStringBackup.INI 2016-06-13 23:53 - 2009-07-14 09:39 - 01498070 _____ C:\Windows\system32\perfh00C.dat 2016-06-13 23:53 - 2009-07-14 09:39 - 00403218 _____ C:\Windows\system32\perfc00C.dat 2016-06-13 23:40 - 2016-03-17 22:36 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\Origin 2016-06-13 19:31 - 2016-03-16 12:32 - 00400040 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2016-06-12 01:07 - 2016-03-17 00:30 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\vlc 2016-06-11 17:48 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF 2016-06-11 14:08 - 2016-04-11 21:08 - 00000196 _____ C:\Users\ilyes\AppData\Roaming\WB.CFG 2016-06-11 01:52 - 2016-03-21 14:43 - 00000000 ____D C:\ProgramData\Orbit 2016-06-11 01:52 - 2016-03-20 21:26 - 00000000 ____D C:\Users\ilyes\Documents\My Games 2016-06-10 16:35 - 2016-04-15 07:40 - 00000000 ____D C:\Users\ilyes\Documents\FIFA 14 2016-06-10 04:06 - 2016-05-13 15:19 - 00138904 _____ C:\Windows\system32\Drivers\PnkBstrK.sys 2016-06-10 04:06 - 2016-05-13 15:19 - 00138904 _____ C:\Users\ilyes\AppData\Roaming\PnkBstrK.sys 2016-06-10 04:06 - 2016-05-13 15:18 - 00281872 _____ C:\Windows\system32\PnkBstrB.exe 2016-06-10 04:06 - 2016-05-13 15:18 - 00281872 _____ C:\Windows\system32\PnkBstrB.ex0 2016-06-10 04:06 - 2016-05-13 15:18 - 00076888 _____ C:\Windows\system32\PnkBstrA.exe 2016-06-09 16:44 - 2016-03-16 17:05 - 00000000 ____D C:\Users\ilyes\Downloads\Video 2016-06-09 03:13 - 2016-04-18 22:48 - 02812430 _____ C:\Users\ilyes\Downloads\replacement.txt 2016-06-07 13:11 - 2016-03-16 12:16 - 00058808 _____ C:\Users\ilyes\AppData\Local\GDIPFONTCACHEV1.DAT 2016-06-02 10:12 - 2016-03-16 12:01 - 00000000 ____D C:\Windows\Panther 2016-06-02 09:36 - 2015-10-30 16:40 - 00000000 ___HD C:\$WINDOWS.~BT 2016-06-02 09:09 - 2016-03-22 12:32 - 00000000 ___SD C:\Windows\system32\GWX 2016-06-02 09:09 - 2009-07-14 10:01 - 00000000 ____D C:\Program Files\Windows Journal 2016-05-24 21:23 - 2016-03-30 14:40 - 00000000 ____D C:\Users\ilyes\AppData\Local\Windows Live 2016-05-23 18:15 - 2016-03-16 17:05 - 00000000 ____D C:\Users\ilyes\AppData\Roaming\IDM 2016-05-23 10:34 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\system32\FxsTmp ==================== Fichiers à la racine de certains dossiers ======= 2016-03-20 21:12 - 2016-03-20 21:12 - 240397312 _____ () C:\Users\ilyes\AppData\Roaming\Launcher.dat 2016-05-13 15:19 - 2016-06-10 04:06 - 0138904 _____ () C:\Users\ilyes\AppData\Roaming\PnkBstrK.sys 2016-03-21 21:25 - 2016-03-21 21:25 - 0000316 _____ () C:\Users\ilyes\AppData\Roaming\redirect2.dat 2016-03-20 21:12 - 2016-03-20 21:12 - 0000009 _____ () C:\Users\ilyes\AppData\Roaming\update.dat 2016-04-11 21:08 - 2016-06-11 14:08 - 0000196 _____ () C:\Users\ilyes\AppData\Roaming\WB.CFG 2016-03-20 21:13 - 2016-03-22 10:51 - 0000004 _____ () C:\Users\ilyes\AppData\Roaming\Microsoft\notaut.txt 2016-03-21 21:27 - 2016-03-21 21:27 - 0000004 _____ () C:\Users\ilyes\AppData\Roaming\Microsoft\notautfbb.txt Fichiers à déplacer ou supprimer: ==================== C:\Users\ilyes\ZHPDiag3.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-06-17 15:14 ==================== Fin de FRST.txt ============================