Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-04-2017 Exécuté par fatima0 (administrateur) sur FATIMA (21-04-2017 11:59:14) Exécuté depuis C:\Users\fatima0\Downloads Profils chargés: fatima0 (Profils disponibles: fatima0) Platform: Windows 8.1 Connected (Update) (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe (WildTangent, Inc.) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe (Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE (Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\perfhost.exe (Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler64.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (BitTorrent Inc.) C:\Users\fatima0\AppData\Roaming\uTorrent\uTorrent.exe (Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (BitTorrent Inc.) C:\Users\fatima0\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe (BitTorrent Inc.) C:\Users\fatima0\AppData\Roaming\uTorrent\updates\3.5.0_43580\utorrentie.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Farbar) C:\Users\fatima0\Downloads\FRST64 (1).exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [] => [X] HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated) HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296008 2013-10-21] (TOSHIBA Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-06] (AVAST Software) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61944 2017-02-22] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [114480 2016-10-27] (Panda Security, S.L.) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.) HKU\S-1-5-21-4262241353-1254968788-1650821350-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation) HKU\S-1-5-21-4262241353-1254968788-1650821350-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1199576 2014-05-21] (Spotify Ltd) HKU\S-1-5-21-4262241353-1254968788-1650821350-1001\...\Run: [uTorrent] => C:\Users\fatima0\AppData\Roaming\uTorrent\uTorrent.exe [2144448 2017-04-13] (BitTorrent Inc.) HKU\S-1-5-21-4262241353-1254968788-1650821350-1001\...\MountPoints2: {887fa0bb-e5b3-11e5-8279-b8ee659c5df3} - "F:\HTC_Sync_Manager_PC.exe" HKLM\...\Providers\18809iu4: C:\Program Files (x86)\Refaghtreiceied Log\local64spl.dll [312832 2017-04-21] () ShellExecuteHooks: Pas de nom - {8AA48C46-2346-11E7-AFEB-64006A5CFC23} - C:\Users\fatima0\AppData\Roaming\Ckamorytherbasy\Arejole.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-06] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-06] (AVAST Software) BootExecute: autocheck autochk * aswBoot.exe /M:28cc2ad1 /wow /dir:"C:\Program Files\AVAST Software\Avast" GroupPolicyScripts: Restriction <======= ATTENTION GroupPolicyScripts-x32: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) AutoConfigURL: [S-1-5-21-4262241353-1254968788-1650821350-1001] => hxxp://no-stops.net/wpad.dat?ebb2f3648110506e8d5a11a9bdd6669021832430 Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{2DDA1C3E-3DCB-490A-8390-93DB8E05091A}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{42DD2B94-C5AC-4AB9-B510-5B5A217BC38A}: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{C132C233-1A2B-44D4-BA57-535E2096AF0E}: [DhcpNameServer] 10.100.11.1 192.168.2.1 ManualProxies: 0hxxp://no-stops.net/wpad.dat?ebb2f3648110506e8d5a11a9bdd6669021832430 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#/?show_is=1&source=art HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#/?show_is=1&source=art HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#/?show_is=1&source=art HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#/?show_is=1&source=art HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/?pc=TEJB HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TEJB HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba.eu/symbaloo_c HKU\S-1-5-21-4262241353-1254968788-1650821350-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} HKU\S-1-5-21-4262241353-1254968788-1650821350-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006 SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-4262241353-1254968788-1650821350-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms} SearchScopes: HKU\S-1-5-21-4262241353-1254968788-1650821350-1001 -> {032CDEFB-9A5E-47A5-81C9-C7C2EB905144} URL = SearchScopes: HKU\S-1-5-21-4262241353-1254968788-1650821350-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms} SearchScopes: HKU\S-1-5-21-4262241353-1254968788-1650821350-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-04-06] (AVAST Software) BHO: Pas de nom -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Pas de fichier BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Panda Safe Web -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll => Pas de fichier BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-06] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Panda Safe Web -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll => Pas de fichier Toolbar: HKLM - Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll Pas de fichier Toolbar: HKLM-x32 - Panda Safe Web - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll Pas de fichier Toolbar: HKU\S-1-5-21-4262241353-1254968788-1650821350-1001 -> Pas de nom - {093F479D-712E-46CD-9E06-62E734A05F68} - Pas de fichier DPF: HKLM-x32 {6A060448-60F9-11D5-A6CD-0002B31F7455} StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\fatima0\AppData\Roaming\Mozilla\Firefox\Profiles\RDVgOwX0.default [2017-04-21] FF DefaultSearchUrl: Mozilla\Firefox\Profiles\RDVgOwX0.default -> hxxps://www.google.com/search?bcutc=sp-006 FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\RDVgOwX0.default -> Google FF Keyword.URL: Mozilla\Firefox\Profiles\RDVgOwX0.default -> hxxps://www.google.com/search?bcutc=sp-006 FF Extension: (Avira Browser Safety) - C:\Users\fatima0\AppData\Roaming\Mozilla\Firefox\Profiles\RDVgOwX0.default\Extensions\abs@avira.com.xpi [2017-04-21] FF SearchPlugin: C:\Users\fatima0\AppData\Roaming\Mozilla\Firefox\Profiles\RDVgOwX0.default\searchplugins\google-avast.xml [2017-03-27] FF SearchPlugin: C:\Users\fatima0\AppData\Roaming\Mozilla\Firefox\Profiles\RDVgOwX0.default\searchplugins\hgmwbo35.xml [2017-04-21] FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-03-27] [non signé] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48 FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-04-06] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-04-06] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48 FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @scout.avira-update.com/Avira Scout Update;version=3 -> C:\Program Files (x86)\Avira\Scout Update\1.3.32.7\npScoutUpdate3.dll [2017-04-19] (Avira Operations GmbH & Co. KG) FF Plugin-x32: @scout.avira-update.com/Avira Scout Update;version=9 -> C:\Program Files (x86)\Avira\Scout Update\1.3.32.7\npScoutUpdate3.dll [2017-04-19] (Avira Operations GmbH & Co. KG) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-13] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2017-03-14] () Chrome: ======= CHR DefaultProfile: ChromeDefaultData CHR HomePage: ChromeDefaultData -> hxxps://www.google.com/ CHR Profile: C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-04-21] <==== ATTENTION CHR Extension: (Google Slides) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-13] CHR Extension: (Google Docs) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-13] CHR Extension: (Google Drive) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-13] CHR Extension: (YouTube) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-13] CHR Extension: (Google Sheets) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-13] CHR Extension: (Google Docs hors connexion) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-13] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10] CHR Extension: (Gmail) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-13] CHR Extension: (Chrome Media Router) - C:\Users\fatima0\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-05] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-03-27] (AVAST Software s.r.o.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-10-01] (Windows (R) Win 7 DDK provider) [Fichier non signé] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-06] (AVAST Software) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349560 2017-03-09] (Avira Operations GmbH & Co. KG) R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [316976 2017-03-20] (Avira Operations GmbH & Co. KG) R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [102304 2017-03-23] (Avira Operations GmbH & Co. KG) S2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-11-06] () R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [350064 2017-03-14] (WildTangent) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [296432 2014-04-23] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé] R2 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation) R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab) R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109816 2016-10-24] (Panda Security, S.L.) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.) R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48584 2016-10-27] (Panda Security, S.L.) S2 scupdate; C:\Program Files (x86)\Avira\Scout Update\ScoutUpdate.exe [113800 2017-02-02] (Avira Operations GmbH & Co. KG) S3 scupdatem; C:\Program Files (x86)\Avira\Scout Update\ScoutUpdate.exe [113800 2017-02-02] (Avira Operations GmbH & Co. KG) R3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [120392 2015-11-17] (Toshiba Europe GmbH) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [307736 2017-03-27] (AVAST Software s.r.o.) R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-03-27] (AVAST Software s.r.o.) R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334088 2017-03-27] (AVAST Software s.r.o.) R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-03-27] (AVAST Software s.r.o.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-04-06] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-04-06] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [127112 2017-04-06] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-04-06] (AVAST Software) R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-04-06] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1005048 2017-04-06] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [556784 2017-04-06] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [164064 2017-04-06] (AVAST Software) R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-04-06] (AVAST Software) S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4282904 2015-05-11] (Qualcomm Atheros Communications, Inc.) R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) R3 kltap; C:\Windows\system32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project) R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [104720 2016-06-29] (Panda Security, S.L.) R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [209168 2016-06-29] (Panda Security, S.L.) R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [117520 2016-06-29] (Panda Security, S.L.) R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [123664 2016-06-29] (Panda Security, S.L.) R1 NNSNAHSL; C:\Windows\system32\DRIVERS\NNSNAHSL.sys [80152 2016-07-06] (Panda Security, S.L.) R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [114448 2016-06-29] (Panda Security, S.L.) R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [88400 2016-06-29] (Panda Security, S.L.) R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [132880 2016-06-29] (Panda Security, S.L.) R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [333584 2016-06-29] (Panda Security, S.L.) R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [196032 2016-07-01] (Panda Security, S.L.) R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [121104 2016-06-29] (Panda Security, S.L.) R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [278432 2016-07-01] (Panda Security, S.L.) R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [123152 2016-06-29] (Panda Security, S.L.) R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [177992 2016-10-23] (Panda Security, S.L.) R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [129576 2016-10-23] (Panda Security, S.L.) R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [206832 2016-10-23] (Panda Security, S.L.) R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [132160 2016-10-23] (Panda Security, S.L.) R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [145544 2016-10-23] (Panda Security, S.L.) R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [115704 2016-10-23] (Panda Security, S.L.) R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [70360 2016-08-08] (Panda Security, S.L.) S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation ) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2014-08-06] (Synaptics Incorporated) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [33168 2013-11-01] (Windows (R) Win 7 DDK provider) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2016-11-25] (AVG Netherlands B.V.) R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) U1 aswbdisk; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-04-21 11:59 - 2017-04-21 12:00 - 00027835 _____ C:\Users\fatima0\Downloads\FRST.txt 2017-04-21 11:58 - 2017-04-21 11:59 - 00000000 ____D C:\FRST 2017-04-21 11:56 - 2017-04-21 11:57 - 02424832 _____ (Farbar) C:\Users\fatima0\Downloads\FRST64 (1).exe 2017-04-21 11:52 - 2017-04-21 11:53 - 02424832 _____ (Farbar) C:\Users\fatima0\Downloads\FRST64.exe 2017-04-21 11:50 - 2017-04-21 11:50 - 01766912 _____ (Farbar) C:\Users\fatima0\Downloads\FRST.exe 2017-04-21 11:39 - 2017-04-21 11:39 - 00000000 ____D C:\ProgramData\SWCUTemp 2017-04-21 11:26 - 2017-04-21 11:34 - 00000000 ____D C:\AdwCleaner 2017-04-21 11:24 - 2017-04-21 11:26 - 04089296 _____ C:\Users\fatima0\Downloads\adwcleaner_6.045.exe 2017-04-21 10:50 - 2017-04-21 10:50 - 00988514 _____ C:\Users\fatima0\Downloads\Kaabil.rar 2017-04-21 10:42 - 2017-04-21 10:43 - 00000132 _____ C:\ProgramData\log.binb 2017-04-21 10:41 - 2017-04-21 11:36 - 00000000 ____D C:\Users\fatima0\AppData\Roaming\Ckamorytherbasy 2017-04-21 10:41 - 2017-04-21 10:42 - 00006656 _____ C:\ProgramData\log.ewbt 2017-04-21 10:41 - 2017-04-21 10:42 - 00000128 _____ C:\ProgramData\log.ewbb 2017-04-21 10:41 - 2017-04-21 10:42 - 00000000 ____D C:\Users\fatima0\AppData\Local\Zecayatemucult 2017-04-21 10:41 - 2017-04-21 10:41 - 00006046 _____ C:\Windows\System32\Tasks\Refaghtreiceied Log 2017-04-21 10:41 - 2017-04-21 10:41 - 00000000 ____D C:\Program Files (x86)\Refaghtreiceied Log 2017-04-21 10:41 - 2017-04-21 10:41 - 00000000 ____D C:\Program Files (x86)\Lerjale 2017-04-21 10:40 - 2017-04-21 10:43 - 00000022 _____ C:\Users\fatima0\Downloads\Kaabil.zip 2017-04-21 10:39 - 2017-04-21 10:39 - 00010934 _____ C:\Users\fatima0\Downloads\Kaabil.zip.htm 2017-04-21 10:38 - 2017-04-21 10:38 - 00000000 ____D C:\Users\fatima0\Downloads\Kaabil (2017) - DesiSCR - XviD - AC3 - [DDR] 2017-04-21 10:37 - 2017-04-21 10:37 - 00122176 _____ C:\Users\fatima0\Downloads\Kaabil (2017)-DesiSCR.torrent 2017-04-20 21:57 - 2017-04-21 11:41 - 00000000 ____D C:\Users\fatima0\AppData\LocalLow\uTorrent 2017-04-19 06:38 - 2017-04-19 06:38 - 00003676 _____ C:\Windows\System32\Tasks\AviraScoutUpdateTaskMachineUA 2017-04-19 06:38 - 2017-04-19 06:38 - 00003548 _____ C:\Windows\System32\Tasks\AviraScoutUpdateTaskMachineCore 2017-04-17 08:48 - 2017-04-17 08:48 - 00065141 _____ C:\Users\fatima0\Downloads\Objectif du projet.pdf 2017-04-14 12:02 - 2016-08-08 02:00 - 00070360 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys 2017-04-14 08:51 - 2017-04-14 08:51 - 00000108 _____ C:\Users\fatima0\Downloads\Kabhi_Alvida_Naa_Kehna.zip.htm 2017-04-14 08:47 - 2017-03-31 18:12 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-04-14 08:47 - 2017-03-31 18:12 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-04-14 08:22 - 2017-03-21 06:11 - 00875712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll 2017-04-14 08:22 - 2017-03-21 06:11 - 00869568 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll 2017-04-14 08:22 - 2017-03-21 06:11 - 00678592 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll 2017-04-14 08:22 - 2017-03-21 06:11 - 00536768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll 2017-04-13 18:17 - 2017-03-25 10:52 - 25746944 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2017-04-13 18:16 - 2017-03-25 12:39 - 20284416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2017-04-13 18:16 - 2017-03-25 12:07 - 04604416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2017-04-13 18:16 - 2017-03-25 12:06 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2017-04-13 18:16 - 2017-03-25 11:55 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2017-04-13 18:16 - 2017-03-25 11:52 - 02289152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2017-04-13 18:16 - 2017-03-25 11:51 - 01313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2017-04-13 18:16 - 2017-03-25 11:47 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2017-04-13 18:16 - 2017-03-25 11:10 - 02898432 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2017-04-13 18:16 - 2017-03-25 09:59 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2017-04-13 18:16 - 2017-03-25 09:57 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2017-04-13 18:16 - 2017-03-25 09:28 - 15259136 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2017-04-13 18:16 - 2017-03-25 09:24 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2017-04-13 18:16 - 2017-03-25 09:10 - 01546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2017-04-13 18:16 - 2017-03-24 21:43 - 01375960 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2017-04-13 18:16 - 2017-03-24 11:24 - 01094656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2017-04-13 18:16 - 2017-03-14 07:26 - 03714560 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2017-04-13 18:16 - 2017-03-14 07:09 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2017-04-13 18:16 - 2017-03-14 07:08 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2017-04-13 18:16 - 2017-03-14 07:06 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2017-04-13 18:16 - 2017-03-12 08:04 - 00033792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys 2017-04-13 18:16 - 2017-03-10 20:59 - 01763888 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2017-04-13 18:16 - 2017-03-10 20:56 - 01489608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2017-04-13 18:16 - 2017-03-10 20:49 - 00388440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2017-04-13 18:16 - 2017-03-10 20:44 - 00373080 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2017-04-13 18:16 - 2017-03-10 20:41 - 00315224 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2017-04-13 18:16 - 2017-03-09 14:13 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2017-04-13 18:16 - 2017-03-07 16:25 - 01661064 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2017-04-13 18:16 - 2017-03-07 16:21 - 01212760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2017-04-13 18:16 - 2017-03-04 12:24 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2017-04-13 18:16 - 2017-03-04 09:37 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2017-04-13 18:16 - 2017-03-03 08:11 - 01697792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2017-04-13 18:16 - 2017-03-03 08:06 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2017-04-13 18:16 - 2017-02-11 11:18 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2017-04-13 18:16 - 2017-02-11 10:00 - 00865792 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2017-04-13 18:16 - 2017-02-11 09:49 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll 2017-04-13 18:16 - 2017-02-11 09:42 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll 2017-04-13 18:16 - 2017-02-10 12:06 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-04-13 18:16 - 2017-02-10 07:37 - 00046600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2017-04-13 18:16 - 2017-02-04 10:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll 2017-04-13 18:16 - 2017-02-04 10:51 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2017-04-13 18:16 - 2017-02-04 10:19 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll 2017-04-13 18:16 - 2017-02-01 12:44 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-04-13 18:16 - 2017-02-01 12:42 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-04-13 18:16 - 2017-01-18 19:18 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2017-04-13 18:16 - 2017-01-18 07:35 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2017-04-13 18:16 - 2017-01-18 07:34 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2017-04-13 18:16 - 2017-01-14 13:32 - 00955016 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll 2017-04-13 18:16 - 2017-01-14 12:18 - 00787688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll 2017-04-13 18:16 - 2017-01-12 09:51 - 00274776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2017-04-13 18:16 - 2017-01-12 09:51 - 00117592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2017-04-13 18:16 - 2017-01-11 23:12 - 00990040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2017-04-13 18:16 - 2017-01-11 12:12 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll 2017-04-13 18:16 - 2017-01-11 10:28 - 00422744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2017-04-13 18:16 - 2017-01-11 08:09 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll 2017-04-13 18:16 - 2017-01-10 15:37 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2017-04-13 18:16 - 2017-01-10 14:06 - 00840192 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2017-04-13 18:16 - 2017-01-10 13:46 - 01388544 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2017-04-13 18:16 - 2017-01-10 12:20 - 00696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2017-04-13 18:16 - 2017-01-10 12:09 - 01108480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2017-04-13 18:16 - 2017-01-06 10:25 - 02513408 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll 2017-04-13 18:16 - 2017-01-06 10:04 - 01495552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll 2017-04-13 18:16 - 2016-12-24 18:14 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2017-04-13 18:16 - 2016-12-24 17:48 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll 2017-04-13 18:16 - 2016-12-24 17:19 - 00170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll 2017-04-13 18:16 - 2016-12-24 16:39 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\ScDeviceEnum.dll 2017-04-13 18:16 - 2016-12-09 01:08 - 00379736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2017-04-13 18:15 - 2017-03-25 11:48 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2017-04-13 18:15 - 2017-03-25 11:47 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2017-04-13 18:15 - 2017-03-25 11:46 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2017-04-13 18:15 - 2017-03-25 11:46 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2017-04-13 18:15 - 2017-03-25 11:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2017-04-13 18:15 - 2017-03-25 11:45 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2017-04-13 18:15 - 2017-03-25 11:45 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2017-04-13 18:15 - 2017-03-25 11:13 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2017-04-13 18:15 - 2017-03-25 10:56 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2017-04-13 18:15 - 2017-03-25 10:41 - 06045696 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2017-04-13 18:15 - 2017-03-25 10:12 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2017-04-13 18:15 - 2017-03-25 10:04 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2017-04-13 18:15 - 2017-03-25 10:00 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2017-04-13 18:15 - 2017-03-25 10:00 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2017-04-13 18:15 - 2017-03-25 09:01 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2017-04-13 18:15 - 2017-03-14 12:06 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2017-04-13 18:15 - 2017-03-13 09:13 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2017-04-13 18:15 - 2017-03-13 09:12 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2017-04-13 18:15 - 2017-03-13 09:08 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2017-04-13 18:15 - 2017-03-13 09:08 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2017-04-13 18:15 - 2017-03-13 08:59 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2017-04-13 18:15 - 2017-03-13 08:59 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2017-04-13 18:15 - 2017-03-13 08:56 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2017-04-13 18:15 - 2017-03-10 20:49 - 01549144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2017-04-13 18:15 - 2017-03-09 14:08 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2017-04-13 18:15 - 2017-03-09 12:29 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2017-04-13 18:15 - 2017-03-04 12:06 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2017-04-13 18:15 - 2017-03-04 11:15 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2017-04-13 18:15 - 2017-03-03 08:10 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll 2017-04-13 18:15 - 2017-03-03 08:04 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll 2017-04-13 18:15 - 2017-01-14 07:37 - 00447095 _____ C:\Windows\system32\ApnDatabase.xml 2017-04-13 18:15 - 2016-12-24 18:21 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys 2017-04-10 14:24 - 2017-04-13 14:06 - 00000000 ____D C:\Users\fatima0\Downloads\Kabhi Alvida Naa Kehna [2006] 720p BRRip AAC x264 BUZZccd [WBRG] 2017-04-06 00:55 - 2017-04-06 00:55 - 00399944 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-04-05 20:47 - 2017-04-13 14:06 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2017-04-05 20:47 - 2017-04-13 14:06 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2017-04-03 09:10 - 2017-04-03 09:10 - 00009108 _____ C:\Users\fatima0\Desktop\taux croisé 4.xlsx 2017-04-03 08:49 - 2017-04-03 08:59 - 00009489 _____ C:\Users\fatima0\Desktop\taux croisé 2.xlsx 2017-04-03 08:44 - 2017-04-03 11:03 - 00010887 _____ C:\Users\fatima0\Desktop\taux croisé.xlsx 2017-03-30 15:29 - 2017-03-30 15:30 - 03429147 _____ C:\Users\fatima0\Downloads\Financial English.pdf 2017-03-29 17:00 - 2017-03-29 17:00 - 00000000 ____D C:\Users\fatima0\Downloads\Hum Dil De Chuke Sanam (1999) Hindi 720p Sub-Spa hca63 2017-03-28 22:19 - 2017-03-29 16:20 - 1051643904 ____R C:\Users\fatima0\Downloads\Beauty and the Beast (2017) camrip --==SpArrOw==--.VOB 2017-03-28 22:17 - 2017-03-28 22:17 - 00160895 _____ C:\Users\fatima0\Downloads\1A597962943E9EB8BE7806B065F7AEC9F0ED7BB0.torrent 2017-03-28 21:11 - 2017-03-28 22:16 - 272026096 _____ C:\Users\fatima0\Downloads\H4m.D1l.D3.Ch4k3.S2n2m.99.007.M0viesC0unter.C0m.mkv 2017-03-28 21:02 - 2017-03-28 21:02 - 00000000 ____D C:\Users\fatima0\AppData\Roaming\MPC-HC 2017-03-28 21:01 - 2017-03-28 22:20 - 00000000 ____D C:\Users\fatima0\AppData\Roaming\vlc 2017-03-28 21:00 - 2017-03-28 21:00 - 00001110 _____ C:\Users\fatima0\Desktop\MPC-HC.lnk 2017-03-28 21:00 - 2017-03-28 21:00 - 00001097 _____ C:\Users\Public\Desktop\VLC media player.lnk 2017-03-28 21:00 - 2017-03-28 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2017-03-28 21:00 - 2017-03-28 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC 2017-03-28 21:00 - 2017-03-28 21:00 - 00000000 ____D C:\Program Files (x86)\MPC-HC 2017-03-28 20:59 - 2017-03-28 20:59 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2017-03-28 20:57 - 2017-03-28 20:59 - 13230856 _____ (MPC-HC Team ) C:\Users\fatima0\Downloads\MPC-HC.1.7.11.x86.exe 2017-03-28 20:52 - 2017-03-28 20:57 - 30533688 _____ C:\Users\fatima0\Downloads\vlc-2.2.4-win32 (1).exe 2017-03-28 20:52 - 2017-03-28 20:53 - 00956565 _____ C:\Users\fatima0\Downloads\Non confirmé 194224.crdownload 2017-03-28 20:31 - 2017-03-28 20:32 - 00132769 _____ C:\Users\fatima0\Downloads\Fanaa 2006 720p BluRay x264 Hindi AAC - Ozlem.FR (1).srt 2017-03-28 20:28 - 2017-03-28 20:28 - 00133101 _____ C:\Users\fatima0\Downloads\fanaa-1cd (1).srt 2017-03-28 20:25 - 2017-03-28 20:35 - 30533688 _____ C:\Users\fatima0\Downloads\vlc-2.2.4-win32.exe 2017-03-28 20:19 - 2017-03-28 20:20 - 00049595 _____ C:\Users\fatima0\Downloads\fanaa_french-1443863.zip 2017-03-28 19:38 - 2017-03-28 20:35 - 00000000 ____D C:\Users\fatima0\Desktop\Nouveau dossier 2017-03-28 19:38 - 2017-03-28 19:38 - 00049442 _____ C:\Users\fatima0\Downloads\fanaa_french-1443862.zip 2017-03-28 14:12 - 2017-03-28 14:12 - 00291411 _____ C:\Users\fatima0\Downloads\CHAPITRE II FI_section1.pdf 2017-03-28 14:12 - 2017-03-28 14:12 - 00184336 _____ C:\Users\fatima0\Downloads\TD IAM_2017-1.pdf 2017-03-28 14:10 - 2017-04-05 22:22 - 00000000 ____D C:\Users\fatima0\Desktop\banking 2017-03-28 14:10 - 2017-03-30 15:24 - 00000000 ____D C:\Users\fatima0\Desktop\english fine 2017-03-28 14:10 - 2017-03-28 14:15 - 00000000 ____D C:\Users\fatima0\Desktop\fine 1ternational 2017-03-27 21:01 - 2017-03-27 21:01 - 00000000 ____D C:\Users\fatima0\AppData\Local\AVAST Software 2017-03-27 20:00 - 2017-04-06 00:57 - 00003914 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1490669990 2017-03-27 20:00 - 2017-04-06 00:57 - 00001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-03-27 20:00 - 2017-03-27 20:00 - 00001070 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk 2017-03-27 19:58 - 2017-04-06 00:54 - 00032600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2017-03-27 19:45 - 2017-03-27 19:45 - 00001949 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk 2017-03-27 19:45 - 2017-03-27 19:45 - 00000000 ____D C:\Users\fatima0\AppData\Roaming\AVAST Software 2017-03-27 19:45 - 2017-03-27 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2017-03-27 19:44 - 2017-04-14 12:57 - 00004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2017-03-27 19:44 - 2017-04-06 00:55 - 00556784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2017-03-27 19:44 - 2017-04-06 00:55 - 00339696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2017-03-27 19:44 - 2017-04-06 00:55 - 00164064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2017-03-27 19:44 - 2017-04-06 00:55 - 00127112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2017-03-27 19:44 - 2017-04-06 00:55 - 00101152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2017-03-27 19:44 - 2017-04-06 00:55 - 00075704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2017-03-27 19:44 - 2017-04-06 00:55 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2017-03-27 19:44 - 2017-04-06 00:54 - 01005048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2017-03-27 19:44 - 2017-03-27 19:44 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software 2017-03-27 19:44 - 2017-03-27 19:42 - 00334088 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys 2017-03-27 19:44 - 2017-03-27 19:42 - 00307736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys 2017-03-27 19:44 - 2017-03-27 19:42 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys 2017-03-27 19:44 - 2017-03-27 19:42 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys 2017-03-27 15:30 - 2017-03-27 19:58 - 00000000 ____D C:\Program Files\AVAST Software 2017-03-27 15:23 - 2017-03-27 15:23 - 06895856 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe 2017-03-27 15:23 - 2017-03-27 15:23 - 06895856 _____ (AVAST Software) C:\Users\fatima0\Downloads\avast_free_antivirus_setup_online.exe 2017-03-26 10:31 - 2017-04-03 11:17 - 00010034 _____ C:\Users\fatima0\Desktop\exo liquidité.xlsx 2017-03-24 15:38 - 2017-03-24 15:38 - 00139683 _____ C:\Users\fatima0\Downloads\Référentiel+pisciculture.pdf ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-04-21 12:02 - 2017-02-28 01:09 - 00000000 ____D C:\Users\fatima0\AppData\Roaming\uTorrent 2017-04-21 11:53 - 2016-11-03 16:57 - 00000000 __RDO C:\Users\fatima0\OneDrive 2017-04-21 11:48 - 2017-03-10 00:28 - 00000000 ____D C:\Users\fatima0\AppData\LocalLow\Mozilla 2017-04-21 11:45 - 2017-02-15 13:05 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4262241353-1254968788-1650821350-1001 2017-04-21 11:43 - 2016-10-25 20:17 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2017-04-21 11:36 - 2013-08-22 07:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-04-21 11:35 - 2013-08-22 06:25 - 00524288 ___SH C:\Windows\system32\config\BBI 2017-04-21 11:33 - 2016-09-28 12:55 - 00000000 ____D C:\Program Files (x86)\iolo 2017-04-21 11:32 - 2017-02-15 13:00 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task 2017-04-20 22:00 - 2013-08-22 08:36 - 00000000 ____D C:\Windows\system32\NDF 2017-04-17 08:16 - 2015-11-14 19:34 - 00000000 ____D C:\Users\fatima0\Desktop\business 2017-04-16 17:21 - 2013-08-22 08:36 - 00000000 ____D C:\Windows\rescache 2017-04-16 09:14 - 2013-08-22 08:36 - 00000000 ____D C:\Windows\AppReadiness 2017-04-14 12:07 - 2014-05-06 07:37 - 00812350 _____ C:\Windows\system32\perfh00C.dat 2017-04-14 12:07 - 2014-05-06 07:37 - 00159412 _____ C:\Windows\system32\perfc00C.dat 2017-04-14 12:07 - 2014-03-18 02:53 - 01824010 _____ C:\Windows\system32\PerfStringBackup.INI 2017-04-14 12:07 - 2013-08-22 06:36 - 00000000 ____D C:\Windows\Inf 2017-04-14 08:46 - 2017-02-13 01:49 - 00000000 ____D C:\ProgramData\panda_url_filtering 2017-04-14 08:43 - 2013-08-22 07:44 - 00529248 _____ C:\Windows\system32\FNTCACHE.DAT 2017-04-14 08:37 - 2013-08-22 08:36 - 00000000 ___RD C:\Windows\ToastData 2017-04-14 08:37 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files\Windows Defender 2017-04-14 08:37 - 2013-08-22 08:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2017-04-14 08:36 - 2016-10-03 10:23 - 00000000 ____D C:\Windows\system32\MRT 2017-04-14 08:31 - 2016-10-03 10:22 - 148601744 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-04-14 08:31 - 2013-08-22 08:20 - 00000000 ____D C:\Windows\CbsTemp 2017-04-14 08:25 - 2013-08-22 06:25 - 00000199 _____ C:\Windows\win.ini 2017-04-13 14:07 - 2016-12-14 17:14 - 00001004 _____ C:\Users\Public\Desktop\AVG.lnk 2017-04-13 14:07 - 2016-12-14 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen 2017-04-09 16:20 - 2017-03-12 13:51 - 00000000 ____D C:\Users\fatima0\Desktop\liquidité 2017-04-04 09:29 - 2016-11-13 00:37 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-04-04 09:29 - 2016-11-13 00:37 - 00002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-03-29 15:22 - 2017-02-02 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2017-03-28 14:32 - 2013-08-22 08:36 - 00000000 ____D C:\Windows\LiveKernelReports 2017-03-27 21:58 - 2017-03-19 12:50 - 00000000 ____D C:\Users\fatima0\Desktop\exo stata 2017-03-27 20:59 - 2016-12-14 17:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-03-27 20:58 - 2017-03-10 00:27 - 00001162 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2017-03-27 20:58 - 2017-03-10 00:27 - 00001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-03-27 19:58 - 2015-10-02 12:49 - 00000000 ____D C:\ProgramData\AVAST Software 2017-03-27 19:44 - 2016-10-05 13:00 - 00000000 ____D C:\Program Files\Common Files\AV 2017-03-27 19:09 - 2017-02-02 15:53 - 00000000 ____D C:\ProgramData\Avira 2017-03-27 19:09 - 2017-02-02 15:53 - 00000000 ____D C:\Program Files (x86)\Avira 2017-03-27 13:35 - 2014-05-21 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2017-03-26 21:41 - 2017-02-02 16:17 - 00000000 ____D C:\Users\fatima0\AppData\Local\Avira 2017-03-26 11:33 - 2017-03-19 11:22 - 00000000 ____D C:\Users\fatima0\Desktop\modelisation fine 2017-03-22 13:08 - 2017-03-21 13:08 - 00874549 ____N C:\Users\fatima0\Desktop\23-jumbo.pdf.pdf ==================== Fichiers à la racine de certains dossiers ======= 2016-04-10 16:54 - 2016-04-10 16:54 - 0000017 _____ () C:\Users\fatima0\AppData\Local\resmon.resmoncfg 2014-06-04 09:37 - 2014-06-04 09:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2017-04-21 10:42 - 2017-04-21 10:43 - 0000132 _____ () C:\ProgramData\log.binb 2017-04-21 10:41 - 2017-04-21 10:42 - 0000128 _____ () C:\ProgramData\log.ewbb 2017-04-21 10:41 - 2017-04-21 10:42 - 0006656 _____ () C:\ProgramData\log.ewbt ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-04-17 12:48 ==================== Fin de FRST.txt ============================