Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 11-01-2017 Exécuté par Moi (administrateur) sur DESKTOP-TRDDKBE (12-01-2017 15:26:33) Exécuté depuis C:\Users\Moi\Downloads Profils chargés: Moi (Profils disponibles: Moi) Platform: Microsoft Windows 10 Famille Version 1607 (X86) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Edge) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe () C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe (Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe (Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe (Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (Acer Incorporated) C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe () C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe (Acer Incorporated) C:\OEM\DOCK_KB\QAPSvc.exe (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe (Acer Incorporated) C:\Program Files\Acer\Acer Mode Change Indicator\MCISvc.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.) C:\Program Files\McAfee\msc\McAPExe.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe (Realtek Semiconductor) C:\Program Files\REALTEK\Audio\AP\RtkNGUI.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Siber Systems) C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATINEE.EXE (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe (Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x86__kzf8qxf38zg5c\SkypeHost.exe (Dashlane SAS) C:\Program Files\Dashlane\Upgrade\DashlaneUpgradeService.exe (AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe (Acer) C:\Program Files\Acer\Acer Portal\AcerPortal.exe (Acer Incorporated) C:\Program Files\Acer\AOP Framework\BackgroundAgent.exe (Acer Cloud Technology) C:\Program Files\Acer\AOP Framework\acer\ccd.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe () C:\Program Files\Acer\Care Center\ACCStd.exe (acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe (Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [113664 2015-06-23] (Intel Corporation) HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [7778816 2015-01-29] (Realtek Semiconductor) HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2016-07-16] (Microsoft Corporation) HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2776528 2016-12-14] (Malwarebytes) HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Run: [RoboForm] => C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [110376 2017-01-01] (Siber Systems) HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_TATINEE.EXE [262208 2013-12-16] (SEIKO EPSON CORPORATION) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{136a05fd-970f-4e27-8313-5bcf2d41446c}: [DhcpNameServer] 192.168.224.1 Tcpip\..\Interfaces\{51cae1ad-3a81-47ba-9d42-8d5d3a2fbacf}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1420756083-46208772-1634248434-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1420756083-46208772-1634248434-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE BHO: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-01-01] (Siber Systems Inc.) BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.) Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-01-01] (Siber Systems Inc.) Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\msc\McSnIePl.dll [2016-09-23] (McAfee, Inc.) FireFox: ======== FF DefaultProfile: grf3rjdg.default FF ProfilePath: C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default [2017-01-12] FF DefaultSearchEngine: Mozilla\Firefox\Profiles\grf3rjdg.default -> Google FF Extension: (Amazon Assistant for Firefox) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\abb@amazon.com.xpi [2017-01-05] FF Extension: (Firefox Hotfix) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\firefox-hotfix@mozilla.org.xpi [2017-01-03] FF Extension: (العربية Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ar@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (български Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-bg@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Czech (CZ) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Dansk (da) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-da@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Greek (GR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-el@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (English (US) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Español (España) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Estonian Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-et@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Finnish Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-fi@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Français Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Hebrew (IL) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-he@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Magyar (HU) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-hu@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Italiano (IT) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-it@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Japanese Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ja@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Korean (KR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ko@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Lietuvių Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-lt@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-nb-NO@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-nl@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Polski Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Português do Brasil Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Português (Portugal) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pt-PT@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Russian (RU) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ru@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Slovak (SK) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sk@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Slovenski jezik Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sl@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (српски (sr) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sr@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Svenska (SE) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sv-SE@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Thai Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-th@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Türkçe (TR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-tr@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Ukrainian (UA) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-uk@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-zh-CN@firefox.mozilla.org.xpi [2017-01-12] FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-zh-TW@firefox.mozilla.org.xpi [2017-01-12] FF HKLM\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi FF Extension: (RoboForm Toolbar) - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi [2017-01-01] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi FF Extension: (McAfee WebAdvisor) - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi [2017-01-11] FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-01-03] [non signé] FF HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2017-01-08] () FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation) FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-09-23] () Chrome: ======= CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 BTDevManager; C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [144600 2015-05-28] () R2 CCDMonitorService; C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe [2267352 2016-08-30] (Acer Incorporated) S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [290224 2015-08-31] (Intel Corporation) R2 Dashlane Upgrade Service; C:\Program Files\Dashlane\Upgrade\DashlaneUpgradeService.exe [75056 2015-06-24] (Dashlane SAS) R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [118792 2015-06-23] (Intel Corporation) R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [115712 2015-06-23] (Intel Corporation) R2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [125952 2015-06-23] (Intel Corporation) R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [283568 2015-08-31] (Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3381200 2016-12-14] (Malwarebytes) R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [160800 2016-10-24] (McAfee, Inc.) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [870688 2016-09-23] (McAfee, Inc.) S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [291840 2015-03-19] (McAfee, Inc.) R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1405264 2016-05-31] (McAfee, Inc.) R2 MCISvc; C:\Program Files\Acer\Acer Mode Change Indicator\MCISvc.exe [220000 2015-07-13] (Acer Incorporated) R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [630704 2016-06-21] (McAfee, Inc.) S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [196848 2016-04-26] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [343304 2016-08-02] (McAfee, Inc.) R2 mfevtp; C:\Windows\system32\mfevtps.exe [265968 2016-04-26] (McAfee, Inc.) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1130272 2016-09-13] (McAfee, Inc.) S3 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.) R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [858864 2016-05-25] (Intel Security, Inc.) R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [366944 2015-07-09] (Acer Incorporated) R2 QAPSvc; c:\oem\dock_KB\QAPSvc.exe [408928 2015-07-13] (Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [411488 2015-07-09] (Acer Incorporated) R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-01-01] () R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (acer) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [23040 2016-08-20] (Microsoft Corporation) R3 camera; C:\WINDOWS\system32\DRIVERS\iacamera32.sys [683904 2015-07-20] (Intel(R) Corporation) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [71976 2016-08-02] (McAfee, Inc.) R3 CM3218x; C:\WINDOWS\System32\drivers\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation) R3 CPLMACPI; C:\WINDOWS\System32\drivers\CPLMACPI.sys [25032 2015-06-15] (Capella Microsystems, Inc.) S3 DptfDevAmbient; C:\WINDOWS\System32\drivers\DptfDevAmbient.sys [88584 2015-06-23] (Intel Corporation) S3 DptfDevDBPT; C:\WINDOWS\System32\drivers\DptfDevPower.sys [55816 2015-06-23] (Intel Corporation) R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [59392 2015-06-23] (Intel Corporation) R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [85000 2015-06-23] (Intel Corporation) R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [203264 2015-06-23] (Intel Corporation) R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [467968 2015-06-23] (Intel Corporation) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59968 2016-12-14] () R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [34176 2015-06-10] (Intel Corporation) R3 GpioVirtual; C:\WINDOWS\System32\drivers\iaiogpiovirtual.sys [27496 2015-06-10] (Intel Corporation) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [168800 2016-08-02] (McAfee, Inc.) R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [57360 2015-06-18] (Intel Corporation) R3 iaiouart; C:\WINDOWS\System32\drivers\iaiouart.sys [98568 2015-07-22] (Intel Corporation) S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [44096 2015-07-20] (Intel Corporation) R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [277256 2015-06-12] (Intel(R) Corporation) R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [35392 2015-07-20] (Intel Corporation) R3 kxspb; C:\WINDOWS\System32\drivers\kxspb.sys [42992 2015-08-31] (Kionix, Inc.) R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [153024 2017-01-02] (Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [87496 2017-01-12] (Malwarebytes) S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [39360 2017-01-12] (Malwarebytes) R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [219072 2017-01-12] (Malwarebytes) S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [73152 2017-01-05] (Malwarebytes) R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [33792 2015-06-16] (Intel Corporation) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [321320 2016-08-02] (McAfee, Inc.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [271144 2016-08-02] (McAfee, Inc.) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [72856 2016-08-02] (McAfee, Inc.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [379688 2016-08-02] (McAfee, Inc.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [648488 2016-08-02] (McAfee, Inc.) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [408360 2016-08-01] (McAfee, Inc.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [83752 2016-08-01] (McAfee, Inc.) R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [41600 2016-06-06] (McAfee, Inc.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [199464 2016-08-02] (McAfee, Inc.) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] () R3 ov2722; C:\WINDOWS\System32\drivers\ov2722.sys [108104 2015-07-20] (Intel(R) Corporation) R3 PMIC; C:\WINDOWS\System32\drivers\PMIC.sys [77424 2015-06-16] (Intel Corporation) R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [255192 2015-05-05] (Realtek Semiconductor Corp.) R3 RtkUart; C:\WINDOWS\System32\drivers\RtkUart.sys [544000 2015-05-22] (Realtek Semiconductor Corporation) R3 RtlWlans; C:\WINDOWS\System32\drivers\rtwlans.sys [4304384 2016-07-16] (Realtek Semiconductor Corporation ) S3 SynRMIHID; C:\WINDOWS\System32\drivers\SynRMIHID.sys [41128 2015-05-27] (Synaptics Incorporated) R3 TXEI; C:\WINDOWS\System32\drivers\TXEI.sys [84520 2015-05-27] (Intel Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation) S3 mfeavfk01; \Device\mfeavfk01.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-01-12 15:26 - 2017-01-12 15:29 - 00026162 _____ C:\Users\Moi\Downloads\FRST.txt 2017-01-12 15:26 - 2017-01-12 15:26 - 00000000 ____D C:\FRST 2017-01-12 15:23 - 2017-01-12 15:25 - 01761280 _____ (Farbar) C:\Users\Moi\Downloads\FRST.exe 2017-01-12 14:30 - 2017-01-12 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2017-01-11 15:17 - 2017-01-12 14:34 - 00000000 ____D C:\Program Files\Mozilla Firefox 2017-01-10 21:45 - 2017-01-10 21:45 - 00000000 ____D C:\Users\Moi\AppData\Local\PackageStaging 2017-01-09 17:05 - 2017-01-09 17:05 - 00000000 ____D C:\Users\Moi\AppData\Local\PokerClient 2017-01-09 17:03 - 2017-01-09 17:03 - 00001792 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Unibet.fr.lnk 2017-01-09 17:03 - 2017-01-09 17:03 - 00001790 _____ C:\Users\Moi\Desktop\Unibet.fr.lnk 2017-01-09 17:02 - 2017-01-09 17:11 - 00000000 ____D C:\Users\Moi\AppData\Local\Unibet.fr 2017-01-08 22:09 - 2017-01-08 22:09 - 00000000 ____D C:\Users\Moi\AppData\Local\Macromedia 2017-01-08 22:08 - 2017-01-10 12:18 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2017-01-08 22:07 - 2017-01-08 22:08 - 00000000 ____D C:\Users\Moi\AppData\Local\Adobe 2017-01-04 21:55 - 2017-01-05 13:33 - 00000957 _____ C:\WINDOWS\Tasks\EPSON XP-322 323 325 Series Update {CFF4A733-B01C-4DA8-87D3-7B5614959D75}.job 2017-01-04 21:55 - 2017-01-04 21:55 - 00000000 ____D C:\ProgramData\EPSON 2017-01-04 21:55 - 2017-01-04 21:55 - 00000000 ____D C:\Program Files\Common Files\EPSON 2017-01-04 21:43 - 2017-01-04 21:43 - 00008311 _____ C:\Users\Moi\Downloads\PROFORMA.pdf 2017-01-04 21:38 - 2017-01-04 21:39 - 00346830 _____ C:\Users\Moi\Downloads\CGV Campings Capfun FR - 2017.pdf 2017-01-04 21:33 - 2017-01-04 21:33 - 00604761 _____ C:\Users\Moi\Downloads\Descriptif des locatifs 2017.pdf 2017-01-04 21:32 - 2017-01-04 21:32 - 00255054 _____ C:\Users\Moi\Downloads\COCFR1GF.pdf 2017-01-04 17:37 - 2017-01-11 22:02 - 386510173 _____ C:\WINDOWS\MEMORY.DMP 2017-01-04 17:37 - 2017-01-11 22:02 - 00000000 ____D C:\WINDOWS\Minidump 2017-01-03 22:47 - 2017-01-03 22:47 - 00000000 ____D C:\Users\Moi\AppData\Roaming\com.winamax.chat 2017-01-03 22:46 - 2017-01-03 23:43 - 00000000 ____D C:\Users\Moi\Documents\Winamax Poker 2017-01-03 22:45 - 2017-01-03 22:45 - 00000000 ____D C:\Users\Moi\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1 2017-01-03 22:45 - 2017-01-03 22:45 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamax 2017-01-03 10:28 - 2017-01-03 10:35 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-01-03 10:27 - 2017-01-03 10:27 - 133430776 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-01-03 10:24 - 2017-01-11 22:09 - 00000000 ____D C:\Users\Moi\AppData\Local\CrashDumps 2017-01-03 09:52 - 2017-01-03 09:52 - 00000000 ____D C:\Users\Moi\AppData\Roaming\AVAST Software 2017-01-02 23:27 - 2017-01-12 14:27 - 00219072 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-01-02 23:27 - 2017-01-12 14:27 - 00087496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2017-01-02 23:27 - 2017-01-12 14:27 - 00039360 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2017-01-02 23:27 - 2017-01-05 13:36 - 00073152 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2017-01-02 23:27 - 2017-01-02 23:27 - 00153024 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys 2017-01-02 23:27 - 2017-01-02 23:27 - 00002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-01-02 23:27 - 2017-01-02 23:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-01-02 23:26 - 2017-01-02 23:26 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-01-02 23:26 - 2017-01-02 23:26 - 00000000 ____D C:\Program Files\Malwarebytes 2017-01-02 23:26 - 2016-12-14 12:55 - 00059968 _____ C:\WINDOWS\system32\Drivers\mbae.sys 2017-01-02 23:25 - 2017-01-02 23:26 - 54199488 _____ (Malwarebytes ) C:\Users\Moi\Downloads\mb3-setup-consumer-3.0.5.1299 (1).exe 2017-01-02 23:24 - 2017-01-02 23:24 - 00407720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2017-01-02 22:10 - 2017-01-02 22:10 - 00000000 ____D C:\ProgramData\Intel Security 2017-01-02 22:09 - 2017-01-02 22:09 - 00000000 ____D C:\Program Files\Common Files\Intel Security 2017-01-02 22:04 - 2017-01-02 22:04 - 00000000 ____D C:\Program Files\Common Files\AV 2017-01-01 23:09 - 2017-01-01 23:09 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2017-01-01 22:50 - 2017-01-01 23:26 - 108396544 _____ C:\Users\Moi\Downloads\Stranger.Things.S01E01.FRENCH.WEBRIP.XviD.avi.part 2017-01-01 21:46 - 2017-01-01 21:46 - 00000000 ____D C:\ProgramData\RoboForm 2017-01-01 21:46 - 2017-01-01 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm 2017-01-01 21:45 - 2017-01-01 21:45 - 00000000 ____D C:\Program Files\Siber Systems 2017-01-01 21:35 - 2017-01-01 21:45 - 21319576 _____ (Siber Systems) C:\Users\Moi\Downloads\RoboForm-Setup.exe 2017-01-01 21:30 - 2017-01-01 21:30 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-01-01 21:27 - 2017-01-03 10:24 - 00000000 ____D C:\Users\Moi\AppData\Local\MicrosoftEdge 2017-01-01 21:26 - 2017-01-01 21:26 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Skype 2017-01-01 21:26 - 2017-01-01 21:26 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Macromedia 2017-01-01 21:25 - 2017-01-01 21:27 - 00002405 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-01-01 21:25 - 2017-01-01 21:25 - 00000000 ____D C:\Users\Moi\AppData\Local\CareCenter 2017-01-01 21:24 - 2017-01-03 10:08 - 00000000 ____D C:\Users\Moi\AppData\Local\Comms 2017-01-01 21:24 - 2017-01-02 21:58 - 00000000 ____D C:\Users\Moi\AppData\Local\clear.fi 2017-01-01 21:24 - 2017-01-01 21:32 - 00000000 ____D C:\Users\Moi\AppData\Local\Mozilla 2017-01-01 21:24 - 2017-01-01 21:24 - 00001321 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk 2017-01-01 21:24 - 2017-01-01 21:24 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Mozilla 2017-01-01 21:22 - 2017-01-11 16:09 - 00000000 ____D C:\Users\Moi\AppData\Local\VirtualStore 2017-01-01 21:22 - 2017-01-10 21:45 - 00000000 ____D C:\Users\Moi\AppData\Local\Packages 2017-01-01 21:22 - 2017-01-01 21:31 - 00000000 ____D C:\Users\Moi\AppData\Local\ConnectedDevicesPlatform 2017-01-01 21:22 - 2017-01-01 21:24 - 00000000 ____D C:\Users\Moi\AppData\Local\AOP SDK 2017-01-01 21:22 - 2017-01-01 21:22 - 00002116 _____ C:\Users\Moi\Desktop\Dashlane Gestionnaire de mot de passe.lnk 2017-01-01 21:22 - 2017-01-01 21:22 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2017-01-01 21:22 - 2017-01-01 21:22 - 00000020 ___SH C:\Users\Moi\ntuser.ini 2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\WINDOWS\oem 2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane 2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Adobe 2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Local\TileDataLayer 2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Local\Publishers 2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\ProgramData\Dashlane 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Voisinage réseau 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Modèles 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Mes documents 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Menu Démarrer 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Mes images 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\All Users 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Modèles 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Menu Démarrer 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Bureau 2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Program Files\Fichiers communs 2017-01-01 18:49 - 2017-01-01 18:49 - 00011704 _____ C:\Users\Moi\Desktop\Applications supprimées.html 2017-01-01 18:44 - 2017-01-01 18:44 - 00021680 _____ C:\WINDOWS\system32\emptyregdb.dat 2017-01-01 18:39 - 2017-01-12 14:26 - 00000000 ____D C:\Users\Moi 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Voisinage réseau 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Voisinage d'impression 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Modèles 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Mes documents 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Menu Démarrer 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Mes vidéos 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Mes images 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Ma musique 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\AppData\Local\Historique 2017-01-01 18:38 - 2017-01-01 18:38 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2017-01-01 18:30 - 2017-01-01 18:30 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2017-01-01 18:23 - 2017-01-01 18:32 - 00000000 ____D C:\Program Files\Intel 2017-01-01 18:23 - 2017-01-01 18:23 - 00000000 ____D C:\Program Files\Common Files\Intel 2017-01-01 18:23 - 2015-08-31 19:41 - 00070632 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2017-01-01 18:22 - 2017-01-01 18:22 - 00000000 ____D C:\ProgramData\USOShared 2017-01-01 18:21 - 2017-01-12 14:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-01-01 18:21 - 2017-01-12 14:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-01-01 18:21 - 2017-01-03 21:18 - 00192944 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-01-01 18:19 - 2017-01-01 18:51 - 00000000 ___DC C:\WINDOWS\Panther 2017-01-01 18:19 - 2017-01-01 18:19 - 00000000 ____D C:\WINDOWS\InfusedApps 2017-01-01 18:18 - 2017-01-01 22:24 - 00000000 ____D C:\Windows.old 2017-01-01 18:18 - 2017-01-01 18:21 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2017-01-01 18:17 - 2017-01-01 18:17 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2017-01-01 18:15 - 2017-01-01 18:15 - 00000000 ____D C:\WINDOWS\Setup 2017-01-01 18:13 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\OCR 2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\system32\XPSViewer 2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\Program Files\Reference Assemblies 2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\Program Files\MSBuild 2017-01-01 18:12 - 2017-01-12 14:35 - 01081996 _____ C:\WINDOWS\system32\perfh00C.dat 2017-01-01 18:12 - 2017-01-12 14:35 - 00236158 _____ C:\WINDOWS\system32\perfc00C.dat 2017-01-01 18:12 - 2017-01-01 18:12 - 00350774 _____ C:\WINDOWS\system32\perfi00C.dat 2017-01-01 18:12 - 2017-01-01 18:12 - 00040528 _____ C:\WINDOWS\system32\perfd00C.dat 2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\winrm 2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\WCN 2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\slmgr 2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\fr 2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\0409 2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\DigitalLocker 2017-01-01 18:08 - 2016-12-12 00:56 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2017-01-01 18:08 - 2016-12-12 00:56 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2017-01-01 18:05 - 2017-01-12 14:37 - 00000000 ___HD C:\Program Files\WindowsApps 2017-01-01 18:05 - 2017-01-12 14:37 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-01-01 18:05 - 2017-01-08 22:07 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-01-01 18:05 - 2017-01-05 13:30 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-01-01 18:05 - 2017-01-03 21:14 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2017-01-01 18:05 - 2017-01-03 21:14 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\F12 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\dsc 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___RD C:\Program Files\Windows Defender 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\setup 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\migwiz 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\Dism 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\appraiser 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\ShellExperiences 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\Provisioning 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\bcastdvr 2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2017-01-01 18:05 - 2017-01-03 21:11 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2017-01-01 18:05 - 2017-01-02 22:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2017-01-01 18:05 - 2017-01-02 21:58 - 00000000 ____D C:\WINDOWS\appcompat 2017-01-01 18:05 - 2017-01-01 18:51 - 00000000 ____D C:\Program Files\Windows NT 2017-01-01 18:05 - 2017-01-01 18:49 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2017-01-01 18:05 - 2017-01-01 18:45 - 00000000 ____D C:\WINDOWS\Registration 2017-01-01 18:05 - 2017-01-01 18:44 - 00000000 __RHD C:\Users\Public\Libraries 2017-01-01 18:05 - 2017-01-01 18:39 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2017-01-01 18:05 - 2017-01-01 18:38 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-01-01 18:05 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\system32\spool 2017-01-01 18:05 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\Help 2017-01-01 18:05 - 2017-01-01 18:32 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2017-01-01 18:05 - 2017-01-01 18:25 - 00000000 ___RD C:\WINDOWS\PrintDialog 2017-01-01 18:05 - 2017-01-01 18:25 - 00000000 ___RD C:\WINDOWS\MiracastView 2017-01-01 18:05 - 2017-01-01 18:22 - 00000000 ____D C:\ProgramData\USOPrivate 2017-01-01 18:05 - 2017-01-01 18:18 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2017-01-01 18:05 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\SystemApps 2017-01-01 18:05 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\system32\MUI 2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\Com 2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\IME 2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\Program Files\Common Files\System 2017-01-01 18:05 - 2017-01-01 18:06 - 00000000 ____D C:\WINDOWS\system32\WinMetadata 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 __SHD C:\Program Files\Windows Sidebar 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\system32\Nui 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\system32\Configuration 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___RD C:\WINDOWS\Offline Web Pages 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Web 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Vss 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\tracing 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\TAPI 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SystemResources 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\winevt 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ras 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ProximityToast 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\PointOfService 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\MsDtc 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\Ipmi 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\inetsrv 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\IME 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\icsxml 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ias 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\downlevel 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\DDFs 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\config\Journal 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\Bthprops 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\AppLocker 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\System 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SKB 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\security 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\schemas 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SchCache 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Resources 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\rescache 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\PLA 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Performance 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\ModemLogs 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Media 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\L2Schemas 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\InputMethod 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Globalization 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\GameBarPresenceWriter 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Cursors 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Branding 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\addins 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\ProgramData\Comms 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Windows Portable Devices 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Windows Multimedia Platform 2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Common Files\Services 2017-01-01 18:05 - 2017-01-01 18:01 - 00215943 _____ C:\WINDOWS\system32\dssec.dat 2017-01-01 18:05 - 2017-01-01 18:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2017-01-01 18:05 - 2017-01-01 18:01 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam 2017-01-01 18:05 - 2017-01-01 18:01 - 00002577 _____ C:\WINDOWS\system32\config.nt 2017-01-01 18:05 - 2017-01-01 18:01 - 00001688 _____ C:\WINDOWS\system32\autoexec.nt 2017-01-01 18:05 - 2017-01-01 18:01 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json 2017-01-01 18:05 - 2017-01-01 18:01 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT 2017-01-01 18:02 - 2017-01-04 21:55 - 00000000 ____D C:\WINDOWS\INF 2017-01-01 17:53 - 2017-01-10 22:12 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-01-01 17:51 - 2017-01-10 21:50 - 00786432 _____ C:\WINDOWS\system32\config\BBI 2017-01-01 17:51 - 2017-01-09 13:06 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2017-01-01 17:51 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\servicing 2017-01-01 17:51 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\SMI 2017-01-01 17:01 - 2017-01-01 17:01 - 00000000 ____D C:\Users\Moi\Desktop\Old Firefox Data 2017-01-01 15:26 - 2017-01-01 15:28 - 54199488 _____ (Malwarebytes ) C:\Users\Moi\Downloads\mb3-setup-consumer-3.0.5.1299.exe 2017-01-01 15:19 - 2017-01-01 15:27 - 00000000 ____D C:\Users\Moi\Downloads\The.Walking.Dead.S07E07.SUBFRENCH.WEBRip.XViD-Torrent9.me 2016-12-27 22:24 - 2016-12-27 22:30 - 00000000 ____D C:\Users\Moi\Downloads\Ghostbusters.2016.EXTENDED.FRENCH.BDRip.XViD-FUNKKY 2016-12-27 22:13 - 2016-12-27 22:15 - 02237120 _____ (BitTorrent Inc.) C:\Users\Moi\Downloads\uTorrent.exe 2016-12-22 11:08 - 2016-12-22 11:08 - 00125952 _____ C:\Users\Moi\Downloads\simulateur_score_exact.xls 2016-12-14 15:10 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-12-14 15:10 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-12-14 15:10 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-12-14 15:10 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-12-14 15:10 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2016-12-14 15:10 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2016-12-14 15:10 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-12-14 15:10 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll 2016-12-14 15:10 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2016-12-14 15:10 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2016-12-14 15:10 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2016-12-14 15:10 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-12-14 15:10 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2016-12-14 15:10 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2016-12-14 15:10 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-12-14 15:10 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-12-14 15:10 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-12-14 15:10 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-12-14 15:10 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-12-14 15:10 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-12-14 15:10 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2016-12-14 15:10 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-12-14 15:10 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2016-12-14 15:10 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-12-14 15:10 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2016-12-14 15:10 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2016-12-14 15:10 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2016-12-14 15:10 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2016-12-14 15:10 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2016-12-14 15:09 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-12-14 15:09 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-12-14 15:09 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-12-14 15:09 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2016-12-14 15:09 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-12-14 15:09 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-12-14 15:09 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-12-14 15:09 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-12-14 15:09 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2016-12-14 15:09 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2016-12-14 15:09 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-12-14 15:09 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-12-14 15:09 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2016-12-14 15:09 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2016-12-14 15:09 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2016-12-14 15:09 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll 2016-12-14 15:09 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2016-12-14 15:09 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2016-12-14 15:09 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-12-14 15:09 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-12-14 15:09 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2016-12-14 15:09 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2016-12-14 15:09 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-12-14 15:09 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-12-14 15:09 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-01-12 14:35 - 2015-07-30 03:54 - 02350636 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-01-12 14:35 - 2015-07-30 03:54 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2017-01-12 14:26 - 2015-08-31 19:49 - 00000000 __SHD C:\Users\Moi\IntelGraphicsProfiles 2017-01-11 22:36 - 2016-05-12 19:15 - 00001943 _____ C:\Users\Moi\Desktop\Winamax Poker.lnk 2017-01-08 13:06 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\McAfee 2017-01-05 13:44 - 2015-08-31 18:32 - 00000000 ____D C:\ProgramData\McAfee 2017-01-05 13:40 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\OEM 2017-01-03 21:24 - 2015-07-30 03:51 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-01-03 09:46 - 2015-08-31 18:25 - 00000000 ____D C:\Program Files\Amazon 2017-01-02 22:14 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\Common Files\McAfee 2017-01-02 22:06 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer 2017-01-02 22:05 - 2015-07-30 04:38 - 00000000 ___HD C:\OEM 2017-01-01 21:48 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Acer 2017-01-01 21:27 - 2015-08-31 19:53 - 00000000 ___RD C:\Users\Moi\OneDrive 2017-01-01 18:44 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2017-01-01 18:38 - 2015-07-10 07:59 - 00000000 ____D C:\Users\Default.migrated 2017-01-01 18:36 - 2015-09-01 03:14 - 00000000 ____D C:\WINDOWS\NAPP_Dism_Log 2017-01-01 18:36 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2017-01-01 18:36 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\DesktopTileResources 2017-01-01 18:34 - 2015-08-31 18:31 - 00000000 ____D C:\Users\Public\Foxit Software 2017-01-01 18:34 - 2015-08-31 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF 2017-01-01 18:34 - 2015-08-31 18:26 - 00000000 __HDC C:\ProgramData\{2B89F58C-32F7-46EC-A448-AECDF1F22B7B} 2017-01-01 18:34 - 2015-08-31 18:19 - 00000000 ____D C:\ProgramData\Realtek 2017-01-01 18:34 - 2015-08-31 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek 2017-01-01 18:34 - 2015-08-31 18:12 - 00000000 ____D C:\Program Files\REALTEK 2017-01-01 18:34 - 2015-07-30 03:54 - 00000000 ____D C:\ProgramData\Mozilla 2017-01-01 18:34 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2017-01-01 18:34 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\AVAST Software 2017-01-01 18:34 - 2015-07-30 03:52 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2017-01-01 18:34 - 2015-07-10 11:50 - 00000000 ____D C:\Program Files\Windows Journal 2017-01-01 18:32 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\mcafee.com 2017-01-01 18:32 - 2015-08-31 18:31 - 00000000 ____D C:\Program Files\Foxit PhantomPDF 2017-01-01 18:32 - 2015-08-31 18:26 - 00000000 ____D C:\Program Files\Dashlane 2017-01-01 18:32 - 2015-08-31 18:13 - 00000000 ____D C:\Program Files\Cisco 2017-01-01 18:32 - 2015-08-31 18:12 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2017-01-01 18:32 - 2015-08-31 18:11 - 00000000 ____D C:\Program Files\DIFX 2017-01-01 18:32 - 2015-07-30 03:53 - 00000000 ____D C:\Program Files\AVAST Software 2017-01-01 18:32 - 2015-07-30 03:53 - 00000000 ____D C:\Program Files\Acer 2017-01-01 17:34 - 2016-11-18 16:49 - 00000000 ____D C:\Users\Moi\AppData\LocalLow\Mozilla 2016-12-28 23:24 - 2016-07-13 22:06 - 00000000 ____D C:\Users\Moi\Desktop\The walking dead ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-01-01 18:21 ==================== Fin de FRST.txt ============================