Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 19-11-2017 Exécuté par Jeff (administrateur) sur ASUSJEFF (21-11-2017 09:43:22) Exécuté depuis C:\Users\Jeff\Downloads Profils chargés: Jeff (Profils disponibles: Jeff) Platform: Microsoft Windows 10 Professionnel Version 1607 14393.1884 (X86) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\WINDOWS\System32\atiesrxx.exe (AMD) C:\WINDOWS\System32\atieclxx.exe (ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe () C:\WINDOWS\System32\FspService.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7Debug\mdm.exe (Panasonic System Networks Co., Ltd.) C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (SanDisk) C:\Program Files\SanDisk\SSD Dashboard\SanDiskSSDDashboardService.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation) C:\WINDOWS\System32\vds.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x86__kzf8qxf38zg5c\SkypeHost.exe (Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Panasonic System Networks Co., Ltd. ) C:\Program Files\Panasonic\MFStation\PCCMFSDM.exe (Panasonic System Networks Co., Ltd.) C:\Program Files\Panasonic\MFStation\PCMFSMLM.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Panasonic System Networks Co., Ltd.) C:\WINDOWS\System32\PCCMFLPD.exe (TODO: ) C:\Program Files\FSP\FspCtrl.exe (Wondershare) C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe () C:\Program Files\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe (Spotify Ltd) C:\Users\Jeff\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe (Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x86__8wekyb3d8bbwe\Calculator.exe () C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1705.1391.0_x86__8wekyb3d8bbwe\Maps.exe (Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SMSERIAL] => C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [1458176 2009-10-26] (Motorola Inc.) HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-14] (InstallShield Software Corporation) HKLM\...\Run: [Panasonic Device Manager for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\PCCMFSDM.exe [139264 2012-06-25] (Panasonic System Networks Co., Ltd. ) HKLM\...\Run: [Panasonic PCFAX for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\KmPcFax.exe [819200 2012-05-18] (Panasonic System Networks Co., Ltd. ) HKLM\...\Run: [Panasonic IP Address Checker for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\PccChgIP.exe [139264 2011-01-21] (Panasonic System Networks Co., Ltd. ) HKLM\...\Run: [Panasonic LPD Manager] => C:\Program Files\Panasonic\MFStation\PCMFSMLM.exe [155648 2013-06-03] (Panasonic System Networks Co., Ltd.) HKLM\...\Run: [BCD3000] => C:\WINDOWS\system32\bcd3kcpan.exe [548864 2015-08-22] (Behringer Spezielle Studiotechnik GmbH) HKLM\...\Run: [AcronisTibMounterMonitor] => C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [691520 2015-09-08] (Acronis International GmbH) HKLM\...\Run: [TrueImageMonitor.exe] => C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [7492712 2015-09-14] () HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [497064 2015-09-14] (Acronis) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation) HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1074600 2016-08-28] (The Eraser Project) HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation) HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [5478192 2015-09-09] (Sentelic Corporation) HKLM\...\Run: [fspctrl] => C:\Program Files\FSP\fspctrl.exe [1638704 2015-09-09] (TODO: ) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3523240 2015-08-03] (Synaptics Incorporated) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare) HKLM\...\Run: [WSVCUUpdateHelper.exe] => C:\Program Files\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe [17408 2017-09-25] () HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [] => C:\Program Files\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [1023664 2016-03-25] (Samsung) HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [25624208 2017-11-10] (Google) HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-14] (InstallShield Software Corporation) HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [90624 2014-09-19] () HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Google Update] => C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Google Photos Backup] => C:\Users\Jeff\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3790936 2016-04-08] (Google, Inc) HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [BlueStacks Agent] => C:\Program Files\Bluestacks\HD-Agent.exe HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Spotify Web Helper] => C:\Users\Jeff\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-02] (Spotify Ltd) HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] False Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Windows Live Mail.lnk [2013-01-16] ShortcutTarget: Windows Live Mail.lnk -> C:\Program Files\Windows Live\Mail\wlmail.exe (Microsoft Corporation) Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SynRemoveUserSettings.bat [2015-08-03] () Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SynRemoveUserSettings.bat [2015-08-03] () GroupPolicy: Restriction - Chrome <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{54f1062c-a888-43f9-b12d-ce77dbaa3787}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-2410229435-3982147707-860292190-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03] (Eyeo GmbH) Toolbar: HKU\S-1-5-21-2410229435-3982147707-860292190-1001 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2004-01-29] (Microsoft Corporation) Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: 6l85cll9.default FF ProfilePath: C:\Users\Jeff\AppData\Roaming\Mozilla\Firefox\Profiles\6l85cll9.default [2017-10-14] FF Homepage: Mozilla\Firefox\Profiles\6l85cll9.default -> www.google.fr FF Extension: (Cookies Export/import) - C:\Users\Jeff\AppData\Roaming\Mozilla\Firefox\Profiles\6l85cll9.default\Extensions\CookiesIE@yahoo.com.xpi [2017-10-14] [Lagacy] FF ProfilePath: C:\Users\Jeff\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\ugm18xa1.default [2014-02-15] FF HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Firefox\Extensions: [{57319509-7821-41B0-9FDF-3B58F146AE33}] - c:\program files\copernic desktop search - home\firefoxconnector FF Extension: (Copernic Desktop Search - Search Firefox content) - c:\program files\copernic desktop search - home\firefoxconnector [2013-03-06] [Lagacy] [non signé] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-15] () FF Plugin: @Diginext.fr/VirtualGeoGP -> C:\Program Files\VirtualGeo3-GP\WebPlugin\Win32\npQtAPI3DPlugin.dll [2015-05-07] (DIGINEXT) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Pas de fichier] FF Plugin: JFGuide -> C:\Program Files\NetSurveillance\CMS\npGuide.dll [2014-10-30] () FF Plugin: JFWeb -> C:\Program Files\NetSurveillance\CMS\npWebPlugin.dll [2014-09-16] () FF Plugin HKU\S-1-5-21-2410229435-3982147707-860292190-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier] FF Plugin HKU\S-1-5-21-2410229435-3982147707-860292190-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier] Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://www.google.fr/ CHR StartupUrls: Default -> "hxxp://www.google.fr/" CHR DefaultSearchURL: Default -> hxxps://spiralstab.com/search?q={searchTerms} CHR DefaultSearchKeyword: Default -> SpiralsTab CHR DefaultSuggestURL: Default -> hxxps://spiralstab.com/suggestions.php?q={searchTerms} CHR Profile: C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default [2017-11-21] CHR Extension: (Adblock Plus) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-27] CHR Extension: (Barre d'Outils Priceless Specials) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\ligadippipkigjepjkefpdagcfhgciee [2016-11-30] CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2017-08-30] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22] CHR Extension: (Chrome Media Router) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-16] CHR Profile: C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-19] CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ikaooahnheaoeceaipjcmnamnoleeblk] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [918872 2015-09-14] (Acronis) R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [4463960 2015-10-02] (Acronis) R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [123704 2015-07-07] (ASUSTek Computer Inc.) R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [107320 2015-04-01] (ASUSTek Computer Inc.) R2 FspSvc; C:\Windows\System32\FspService.exe [1593136 2015-09-09] () S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes) S4 mmsminisrv; C:\Program Files\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis) R2 Panasonic Local Printer Service; C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE [49152 2010-01-09] (Panasonic System Networks Co., Ltd.) [Fichier non signé] R2 SanDisk SSD Dashboard Service; C:\Program Files\SanDisk\SSD Dashboard\SanDiskSSDDashboardService.exe [373760 2016-10-10] (SanDisk) [Fichier non signé] S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2017-08-08] (Microsoft Corporation) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.) R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744 2015-09-10] (Acronis) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [208552 2015-08-03] (Synaptics Incorporated) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10942704 2017-11-03] (TeamViewer GmbH) S3 w7Svc; C:\Program Files\webcam 7\webcam7.Service.exe [3310192 2016-06-14] (Moonware Studios) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84912 2017-10-09] (Microsoft Corporation) S3 WsDrvInst; C:\Program Files\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [89088 2017-09-25] (Wondershare) [Fichier non signé] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.) R2 amwrtdrv; C:\WINDOWS\System32\amwrtdrv.sys [19768 2016-12-10] () R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [16512 2015-05-08] (ASUS) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB3.sys [82944 2015-07-15] (Advanced Micro Devices) S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19104 2015-03-27] (AVG Technologies CZ, s.r.o.) R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [231856 2015-06-26] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [190944 2015-05-12] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [170464 2015-06-10] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.) R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [229352 2015-06-15] (AVG Technologies CZ, s.r.o.) S3 BCD3000; C:\WINDOWS\system32\Drivers\BCD3000.SYS [42784 2015-08-22] (Behringer Spezielle Studiotechnik GmbH) [Fichier non signé] S3 BCD3000WDM; C:\WINDOWS\system32\Drivers\BCD3000WDM.SYS [21856 2015-08-22] (Behringer Spezielle Studiotechnik GmbH) [Fichier non signé] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd.) R3 DVB7700ALL; C:\WINDOWS\System32\Drivers\dvb7700all.sys [678440 2015-08-02] (DiBcom) R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [234976 2015-10-02] (Acronis International GmbH) S3 fspad_win732; C:\WINDOWS\system32\DRIVERS\fspad_win732.sys [168240 2015-09-09] (Sentelic Corporation) R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony) S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [220088 2017-11-20] (Malwarebytes) S3 mcdevice; C:\WINDOWS\system32\DRIVERS\mcdevice.sys [331072 2011-05-19] (ShiningMorning Inc.) R1 MpKsl49c426a4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DE10A1B2-2913-4626-8DB3-AFE2E50D03EA}\MpKsl49c426a4.sys [49504 2017-11-21] (Microsoft Corporation) R3 MTsensor; C:\WINDOWS\System32\drivers\ATKACPI.sys [14392 2009-05-13] (ASUS) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] () R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation) S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [205312 2013-01-16] (QUALCOMM Incorporated) S3 RTL8187; C:\WINDOWS\System32\drivers\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation ) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd.) R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [690128 2015-10-02] (Acronis International GmbH) R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [150496 2015-10-02] (Acronis International GmbH) S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [371680 2015-10-02] (Acronis International GmbH) R0 vidsflt53; C:\WINDOWS\System32\DRIVERS\vsflt53.sys [83392 2013-01-24] (Acronis) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation) S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation) R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2016-07-16] (Marvell) S3 zghsdiag; C:\WINDOWS\system32\DRIVERS\zghsdiag.sys [113688 2011-07-15] (ZTE Incorporated) S3 zghsmdm; C:\WINDOWS\system32\DRIVERS\zghsmdm.sys [113688 2011-07-15] (ZTE Incorporated) S3 zghsnmea; C:\WINDOWS\system32\DRIVERS\zghsnmea.sys [113688 2011-07-15] (ZTE Incorporated) S3 mr8980; \SystemRoot\system32\DRIVERS\mr8980.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-11-21 09:43 - 2017-11-21 09:44 - 000022881 _____ C:\Users\Jeff\Downloads\FRST.txt 2017-11-21 09:43 - 2017-11-21 09:43 - 000000000 ____D C:\FRST 2017-11-21 09:42 - 2017-11-21 09:43 - 001787904 _____ (Farbar) C:\Users\Jeff\Downloads\FRST.exe 2017-11-20 10:50 - 2017-11-20 11:53 - 000000000 ____D C:\Users\Jeff\Desktop\carte SD 2017-11-20 10:39 - 2017-11-20 10:39 - 000220088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4DE24D73.sys 2017-11-19 22:07 - 2017-11-19 22:07 - 000000000 ____D C:\Program Files\Adblock Plus for IE 2017-11-19 21:37 - 2017-11-19 21:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2017-11-19 21:35 - 2017-11-19 21:37 - 036156920 _____ (Adlice Software ) C:\Users\Jeff\Downloads\setup.exe 2017-11-19 20:53 - 2017-11-19 21:14 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\ZHP 2017-11-19 20:52 - 2017-11-19 20:52 - 000000000 ____D C:\Users\Jeff\AppData\Local\ZHP 2017-11-19 20:08 - 2017-11-19 20:08 - 000002288 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-11-19 11:56 - 2017-11-19 11:56 - 000000639 _____ C:\Users\Jeff\Downloads\pack seriales freemaker Beck Jungkook.rar 2017-11-19 10:53 - 2017-11-19 10:53 - 000000000 ____D C:\Users\Jeff\AppData\Local\FreemakeVideoConverter 2017-11-19 10:52 - 2017-11-19 19:55 - 000000000 ____D C:\ProgramData\Freemake 2017-11-19 10:52 - 2017-11-19 19:55 - 000000000 ____D C:\Program Files\Freemake 2017-11-19 10:50 - 2017-11-19 10:51 - 001013296 _____ (Ellora Assets Corporation ) C:\Users\Jeff\Downloads\FreemakeVideoConverterSetup.exe 2017-11-18 12:04 - 2017-11-18 12:04 - 000215384 _____ C:\Users\Jeff\Downloads\portables Conforama.pdf 2017-11-16 11:33 - 2017-11-16 11:33 - 000000000 ____D C:\ProgramData\ProductFeatures 2017-11-16 11:15 - 2017-11-16 11:32 - 000000000 ____D C:\Users\Jeff\AppData\Local\Wondershare 2017-11-16 11:15 - 2017-11-16 11:15 - 000000000 ____D C:\Program Files\Common Files\Wondershare 2017-11-16 11:14 - 2017-11-16 11:32 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\Wondershare 2017-11-16 11:14 - 2017-11-16 11:32 - 000000000 ____D C:\ProgramData\Wondershare 2017-11-16 11:14 - 2017-11-16 11:14 - 000001250 _____ C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk 2017-11-16 11:14 - 2017-11-16 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2017-11-16 11:14 - 2017-11-16 11:14 - 000000000 ____D C:\Program Files\Wondershare 2017-11-16 11:07 - 2017-11-19 20:59 - 000000000 ____D C:\Users\Jeff\Downloads\WS Video Converter Ultimate 10.1.0 (ask4pc) 2017-11-16 10:25 - 2017-11-16 10:25 - 001110564 _____ (Igor Pavlov) C:\Users\Jeff\Downloads\7z1604.exe 2017-11-16 10:25 - 2017-11-16 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2017-11-16 10:25 - 2017-11-16 10:25 - 000000000 ____D C:\Program Files\7-Zip 2017-11-16 10:02 - 2017-11-16 10:24 - 115729994 _____ C:\Users\Jeff\Downloads\WS.Vid.C.Ult.10.1.0.(ask4pc).rar 2017-11-15 18:51 - 2017-11-15 18:51 - 003419055 _____ C:\Users\Jeff\Downloads\Religion de paix et d amour.mp4 2017-11-15 10:00 - 2017-11-02 00:06 - 000550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2017-11-15 10:00 - 2017-11-02 00:06 - 000116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2017-11-15 10:00 - 2017-11-01 23:50 - 001954144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2017-11-15 10:00 - 2017-11-01 23:45 - 001896800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2017-11-15 10:00 - 2017-11-01 23:45 - 000550752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2017-11-15 10:00 - 2017-11-01 23:45 - 000342368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2017-11-15 10:00 - 2017-11-01 23:44 - 000557400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2017-11-15 10:00 - 2017-11-01 23:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll 2017-11-15 10:00 - 2017-11-01 23:26 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2017-11-15 10:00 - 2017-11-01 23:25 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2017-11-15 10:00 - 2017-11-01 23:24 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2017-11-15 10:00 - 2017-11-01 23:22 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2017-11-15 10:00 - 2017-11-01 23:22 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2017-11-15 10:00 - 2017-11-01 23:21 - 012205056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-11-15 10:00 - 2017-11-01 23:20 - 019415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-11-15 10:00 - 2017-11-01 23:20 - 018365952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-11-15 10:00 - 2017-11-01 23:17 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2017-11-15 10:00 - 2017-11-01 23:16 - 012349440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2017-11-15 10:00 - 2017-11-01 23:16 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2017-11-15 10:00 - 2017-11-01 23:16 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2017-11-15 10:00 - 2017-11-01 23:15 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2017-11-15 10:00 - 2017-11-01 23:14 - 006066176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-11-15 10:00 - 2017-11-01 23:14 - 003662848 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2017-11-15 10:00 - 2017-11-01 23:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2017-11-15 10:00 - 2017-11-01 23:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2017-11-15 10:00 - 2017-11-01 23:13 - 001988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2017-11-15 10:00 - 2017-11-01 23:13 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2017-11-15 10:00 - 2017-11-01 23:13 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2017-11-15 10:00 - 2017-11-01 23:12 - 002028032 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2017-11-15 10:00 - 2017-11-01 23:12 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2017-11-15 10:00 - 2017-11-01 23:12 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2017-11-15 10:00 - 2017-11-01 23:12 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2017-11-15 10:00 - 2017-11-01 23:11 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-11-15 10:00 - 2017-11-01 20:44 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll 2017-11-15 10:00 - 2017-10-09 03:39 - 000067928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys 2017-11-15 10:00 - 2017-10-09 03:35 - 005994840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-11-15 10:00 - 2017-10-09 03:34 - 000082608 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll 2017-11-15 10:00 - 2017-10-09 03:32 - 000370520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2017-11-15 10:00 - 2017-10-09 03:30 - 000950104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2017-11-15 10:00 - 2017-10-09 03:28 - 000482384 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2017-11-15 10:00 - 2017-10-09 03:26 - 000459096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2017-11-15 10:00 - 2017-10-09 03:26 - 000290648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2017-11-15 10:00 - 2017-10-09 03:24 - 000126808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2017-11-15 10:00 - 2017-10-09 03:23 - 020967832 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2017-11-15 10:00 - 2017-10-09 03:20 - 001962328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2017-11-15 10:00 - 2017-10-09 03:20 - 000784728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2017-11-15 10:00 - 2017-10-09 03:19 - 000455000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2017-11-15 10:00 - 2017-10-09 03:19 - 000353112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2017-11-15 10:00 - 2017-10-09 03:17 - 000198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2017-11-15 10:00 - 2017-10-09 03:05 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe 2017-11-15 10:00 - 2017-10-09 03:05 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2017-11-15 10:00 - 2017-10-09 03:05 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe 2017-11-15 10:00 - 2017-10-09 03:02 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll 2017-11-15 10:00 - 2017-10-09 03:00 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredential.dll 2017-11-15 10:00 - 2017-10-09 02:59 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll 2017-11-15 10:00 - 2017-10-09 02:52 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2017-11-15 10:00 - 2017-10-09 02:49 - 001139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2017-11-15 10:00 - 2017-10-09 02:48 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll 2017-11-15 10:00 - 2017-10-09 02:44 - 001890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2017-11-15 10:00 - 2017-10-09 02:44 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2017-11-15 10:00 - 2017-10-09 02:44 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2017-11-15 09:59 - 2017-11-02 00:06 - 000517984 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2017-11-15 09:59 - 2017-11-02 00:06 - 000496992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-11-15 09:59 - 2017-11-02 00:06 - 000223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2017-11-15 09:59 - 2017-11-02 00:06 - 000158560 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2017-11-15 09:59 - 2017-11-02 00:05 - 001927008 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2017-11-15 09:59 - 2017-11-02 00:05 - 001330016 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2017-11-15 09:59 - 2017-11-02 00:05 - 000364384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2017-11-15 09:59 - 2017-11-02 00:05 - 000312152 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2017-11-15 09:59 - 2017-11-02 00:05 - 000060256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2017-11-15 09:59 - 2017-11-02 00:05 - 000030552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2017-11-15 09:59 - 2017-11-01 23:47 - 000581664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2017-11-15 09:59 - 2017-11-01 23:47 - 000409440 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2017-11-15 09:59 - 2017-11-01 23:44 - 000581048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2017-11-15 09:59 - 2017-11-01 23:44 - 000341976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2017-11-15 09:59 - 2017-11-01 23:44 - 000269152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2017-11-15 09:59 - 2017-11-01 23:44 - 000139096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2017-11-15 09:59 - 2017-11-01 23:44 - 000120416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2017-11-15 09:59 - 2017-11-01 23:43 - 000075040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys 2017-11-15 09:59 - 2017-11-01 23:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe 2017-11-15 09:59 - 2017-11-01 23:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2017-11-15 09:59 - 2017-11-01 23:22 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2017-11-15 09:59 - 2017-11-01 23:20 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys 2017-11-15 09:59 - 2017-11-01 23:19 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2017-11-15 09:59 - 2017-11-01 23:18 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2017-11-15 09:59 - 2017-11-01 23:17 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll 2017-11-15 09:59 - 2017-11-01 23:16 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll 2017-11-15 09:59 - 2017-11-01 23:16 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2017-11-15 09:59 - 2017-11-01 23:15 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2017-11-15 09:59 - 2017-11-01 23:15 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2017-11-15 09:59 - 2017-11-01 23:15 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2017-11-15 09:59 - 2017-11-01 23:11 - 001161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2017-11-15 09:59 - 2017-10-09 03:42 - 000076120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe 2017-11-15 09:59 - 2017-10-09 03:41 - 001136984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll 2017-11-15 09:59 - 2017-10-09 03:41 - 000918360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2017-11-15 09:59 - 2017-10-09 03:41 - 000812888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll 2017-11-15 09:59 - 2017-10-09 03:41 - 000541016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll 2017-11-15 09:59 - 2017-10-09 03:41 - 000494432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll 2017-11-15 09:59 - 2017-10-09 03:41 - 000400224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll 2017-11-15 09:59 - 2017-10-09 03:40 - 000616792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe 2017-11-15 09:59 - 2017-10-09 03:40 - 000498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2017-11-15 09:59 - 2017-10-09 03:40 - 000372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll 2017-11-15 09:59 - 2017-10-09 03:40 - 000294232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll 2017-11-15 09:59 - 2017-10-09 03:40 - 000154968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll 2017-11-15 09:59 - 2017-10-09 03:36 - 001470808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems32.dll 2017-11-15 09:59 - 2017-10-09 03:35 - 000559968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll 2017-11-15 09:59 - 2017-10-09 03:35 - 000558424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll 2017-11-15 09:59 - 2017-10-09 03:34 - 000965464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2017-11-15 09:59 - 2017-10-09 03:33 - 000173400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys 2017-11-15 09:59 - 2017-10-09 03:24 - 000205104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2017-11-15 09:59 - 2017-10-09 03:16 - 001384696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2017-11-15 09:59 - 2017-10-09 03:16 - 000178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll 2017-11-15 09:59 - 2017-10-09 03:02 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll 2017-11-15 09:59 - 2017-10-09 03:00 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe 2017-11-15 09:59 - 2017-10-09 02:58 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll 2017-11-15 09:59 - 2017-10-09 02:58 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvc.dll 2017-11-15 09:59 - 2017-10-09 02:55 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe 2017-11-15 09:59 - 2017-10-09 02:55 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2017-11-15 09:59 - 2017-10-09 02:54 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2017-11-15 09:59 - 2017-10-09 02:53 - 003774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2017-11-15 09:59 - 2017-10-09 02:53 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe 2017-11-15 09:59 - 2017-10-09 02:52 - 001220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2017-11-15 09:59 - 2017-10-09 02:52 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2017-11-15 09:59 - 2017-10-09 02:51 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll 2017-11-15 09:59 - 2017-10-09 02:51 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll 2017-11-15 09:59 - 2017-10-09 02:49 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll 2017-11-15 09:59 - 2017-10-09 02:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2017-11-15 09:59 - 2017-10-09 02:44 - 004423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2017-11-15 09:59 - 2017-10-09 02:44 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2017-11-15 09:59 - 2017-10-09 02:42 - 001438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2017-11-15 09:59 - 2017-10-09 01:29 - 000788624 _____ C:\WINDOWS\system32\locale.nls 2017-11-14 10:16 - 2017-11-14 10:42 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\NCH Software 2017-11-14 10:16 - 2017-11-14 10:16 - 000001219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad - Logiciel de montage vidéo.lnk 2017-11-14 10:16 - 2017-11-14 10:16 - 000001207 _____ C:\Users\Public\Desktop\VideoPad.lnk 2017-11-14 10:15 - 2017-11-14 10:16 - 005676712 _____ (NCH Software) C:\Users\Jeff\Downloads\vppsetup.exe 2017-11-12 21:31 - 2017-11-12 21:38 - 000000000 ____D C:\Users\Jeff\Downloads\passeport 2017-11-12 09:44 - 2017-11-12 09:44 - 373072693 _____ C:\WINDOWS\MEMORY.DMP 2017-11-12 09:44 - 2017-11-12 09:44 - 001443468 _____ C:\WINDOWS\Minidump\111217-12765-01.dmp 2017-11-11 17:01 - 2017-11-11 17:01 - 000001135 _____ C:\Users\Jeff\Desktop\Thailande 2018 22 janvier au 22 février - Raccourci.lnk 2017-11-10 18:24 - 2017-11-16 09:16 - 000076800 _____ C:\Users\Jeff\Downloads\carte du parcour.ppt 2017-11-10 17:46 - 2017-11-10 17:46 - 000141054 _____ C:\Users\Jeff\Downloads\tab 1.pdf 2017-11-10 17:44 - 2017-11-10 17:44 - 000126980 _____ C:\Users\Jeff\Downloads\tab 2.pdf 2017-11-09 15:31 - 2017-11-09 15:31 - 000000000 ____D C:\Users\Jeff\Downloads\activateur office 2010 2017-11-09 15:20 - 2017-11-09 15:20 - 000000998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 13.lnk 2017-11-09 15:20 - 2017-11-09 15:20 - 000000986 _____ C:\Users\Public\Desktop\TeamViewer 13.lnk 2017-11-09 07:26 - 2017-11-09 07:26 - 000000000 ____D C:\WINDOWS\Panther 2017-11-05 12:47 - 2017-11-05 12:47 - 000670208 _____ C:\Users\Jeff\Downloads\Citations genantes.pps 2017-11-04 08:00 - 2017-11-04 08:00 - 000023821 _____ C:\Users\Jeff\Downloads\Mes endroits 03112017.kmz 2017-11-02 18:11 - 2017-11-03 09:08 - 000000000 ____D C:\Users\Jeff\AppData\Local\Spotify 2017-11-02 18:11 - 2017-11-02 18:11 - 000001869 _____ C:\Users\Jeff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2017-11-02 18:06 - 2017-11-03 09:08 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\Spotify 2017-10-25 14:37 - 2017-10-25 15:47 - 000000000 ____D C:\Users\Jeff\Downloads\Win7_sp1_x86_(32bits)_all_versions 2017-10-25 14:14 - 2017-10-25 14:16 - 000000000 ____D C:\Users\Jeff\Downloads\Medion drivers W7 ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-11-21 09:15 - 2016-07-16 18:15 - 011211186 _____ C:\WINDOWS\system32\perfh00C.dat 2017-11-21 09:15 - 2016-07-16 18:15 - 003229118 _____ C:\WINDOWS\system32\perfc00C.dat 2017-11-21 09:15 - 2015-08-02 08:23 - 021498784 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-11-21 09:14 - 2016-09-29 18:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2017-11-21 09:09 - 2013-01-27 08:57 - 000450720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2017-11-21 09:08 - 2016-09-29 19:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-11-20 22:15 - 2016-07-16 03:22 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2017-11-20 10:22 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF 2017-11-20 10:02 - 2013-01-21 14:15 - 000080888 _____ C:\Users\Jeff\AppData\Roaming\GDIPFONTCACHEV1.DAT 2017-11-20 09:51 - 2016-09-29 19:06 - 000000000 ____D C:\Users\Jeff 2017-11-20 09:13 - 2016-11-29 20:12 - 000000000 ____D C:\AdwCleaner 2017-11-20 08:38 - 2017-04-21 08:24 - 000220088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-11-19 23:18 - 2014-01-11 11:59 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\ObviousIdea 2017-11-19 23:18 - 2014-01-11 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea 2017-11-19 23:18 - 2014-01-11 11:58 - 000000000 ____D C:\Program Files\ObviousIdea 2017-11-19 23:03 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\registration 2017-11-19 22:28 - 2014-10-28 12:50 - 000000000 ____D C:\Users\Jeff\AppData\LocalLow\Adblock Plus for IE 2017-11-19 21:38 - 2015-03-24 09:18 - 000024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys 2017-11-19 21:13 - 2013-01-16 16:27 - 000000000 ____D C:\Users\Jeff\AppData\Local\Google 2017-11-19 19:42 - 2017-05-17 20:07 - 000000000 ____D C:\Program Files\Kodi 2017-11-19 13:26 - 2015-08-02 11:12 - 000001890 __RSH C:\ProgramData\ntuser.pol 2017-11-19 09:52 - 2013-09-29 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2017-11-18 21:45 - 2017-09-28 07:51 - 000000000 ____D C:\Users\Jeff\Desktop\Egypte video 12 au 27 sept 2017 2017-11-18 20:15 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache 2017-11-17 08:18 - 2017-09-29 07:04 - 000000000 ____D C:\Program Files\rempl 2017-11-17 08:17 - 2016-09-29 18:58 - 000312040 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-11-16 10:51 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness 2017-11-16 09:54 - 2014-06-07 13:28 - 000000000 ____D C:\Users\Jeff\AppData\Local\Adobe 2017-11-15 21:52 - 2015-08-02 08:30 - 000000000 __RHD C:\Users\Public\AccountPictures 2017-11-15 21:49 - 2016-07-16 09:30 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ___RD C:\Program Files\Windows Defender 2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\oobe 2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\appraiser 2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences 2017-11-15 11:26 - 2016-12-19 15:29 - 000001963 _____ C:\Users\Jeff\Desktop\Hard Disk Low Level Format.lnk 2017-11-15 10:27 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp 2017-11-15 10:27 - 2013-07-21 14:16 - 000000000 ____D C:\WINDOWS\system32\MRT 2017-11-15 10:07 - 2017-10-11 08:01 - 124282896 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe 2017-11-15 10:07 - 2013-01-18 08:44 - 124282896 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-11-15 10:05 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps 2017-11-15 09:46 - 2017-04-13 12:16 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-11-15 09:36 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\Macromed 2017-11-14 16:34 - 2013-01-25 17:03 - 000000000 _RSHD C:\acroldr 2017-11-14 10:49 - 2015-03-21 20:31 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\DVDVideoSoft 2017-11-14 10:16 - 2014-09-12 09:05 - 000000000 ____D C:\ProgramData\NCH Software 2017-11-14 10:16 - 2014-09-12 09:04 - 000000000 ____D C:\Program Files\NCH Software 2017-11-12 09:44 - 2016-10-05 18:08 - 000000000 ____D C:\WINDOWS\Minidump 2017-11-09 15:39 - 2014-04-13 09:53 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\BitTorrent 2017-11-09 15:21 - 2013-02-02 12:24 - 000000000 ____D C:\Program Files\TeamViewer 2017-11-07 08:15 - 2015-08-02 08:37 - 000002442 _____ C:\Users\Jeff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-11-07 08:15 - 2015-08-02 08:37 - 000000000 ___RD C:\Users\Jeff\OneDrive 2017-11-05 01:47 - 2016-07-16 09:31 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2017-11-05 01:47 - 2016-07-16 09:31 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2017-11-02 02:01 - 2011-12-05 18:34 - 000389332 __RSH C:\bootmgr 2017-10-28 11:59 - 2016-04-13 08:59 - 000000000 ____D C:\Users\Jeff\Desktop\016 Egypte video 30 mars au 12 avril 2016 Leclerc Tulip Ressort par FTI 2017-10-28 11:58 - 2016-09-21 19:45 - 000000000 ____D C:\Users\Jeff\Desktop\017 Egypte video 06 au 21 sept 2016 Magic Tulip Ressort 2017-10-28 07:47 - 2016-12-26 10:08 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IP Camera Viewer 4.lnk 2017-10-28 07:47 - 2016-12-26 10:08 - 000001370 _____ C:\Users\Public\Desktop\IP Camera Viewer 4.lnk ==================== Fichiers à la racine de certains dossiers ======= 2015-01-07 17:35 - 2015-01-07 17:35 - 000041035 _____ () C:\Program Files\CMS Setup Log.txt 2015-02-17 20:21 - 2015-02-17 20:21 - 000017792 _____ () C:\Program Files\CMS Uninstall Log.txt 2015-01-07 18:06 - 2015-01-07 18:07 - 000010347 _____ () C:\Program Files\Player Setup Log.txt 2015-02-17 20:22 - 2015-02-17 20:22 - 000004453 _____ () C:\Program Files\Player Uninstall Log.txt 2013-12-23 16:12 - 2013-10-10 13:36 - 000003236 ____H () C:\Users\Jeff\AppData\Roaming\1.bat 2015-06-09 12:26 - 2015-06-09 12:26 - 000000132 _____ () C:\Users\Jeff\AppData\Roaming\Adobe GIF Format CS5 Prefs 2013-01-17 09:04 - 2013-01-16 23:30 - 000081920 _____ () C:\Users\Jeff\AppData\Roaming\chrtmp 2014-09-01 09:18 - 2014-09-01 09:18 - 000001248 _____ () C:\Users\Jeff\AppData\Roaming\LCEFUOWD 2013-12-23 16:12 - 2013-10-15 11:13 - 008182960 _____ (Hamrick Software) C:\Users\Jeff\AppData\Roaming\old.exe 2014-12-27 18:36 - 2014-12-27 18:37 - 000000334 _____ () C:\Users\Jeff\AppData\Roaming\WinInstallFlashLog.ini 2013-01-16 22:32 - 2013-01-16 22:32 - 000000092 _____ () C:\Users\Jeff\AppData\Local\fusioncache.dat 2014-07-17 08:28 - 2014-07-17 08:28 - 000000001 _____ () C:\Users\Jeff\AppData\Local\llftool.4.40.agreement 2014-11-17 20:52 - 2014-11-17 20:52 - 000000738 _____ () C:\Users\Jeff\AppData\Local\recently-used.xbel 2013-01-26 17:06 - 2013-01-26 17:06 - 000000017 _____ () C:\Users\Jeff\AppData\Local\resmon.resmoncfg 2016-12-13 12:10 - 2016-11-23 14:37 - 000000570 _____ () C:\Users\Jeff\AppData\Local\TroubleshooterConfig.json Certains fichiers dans TEMP: ==================== 2017-11-19 21:38 - 2017-09-07 07:32 - 001587248 _____ (Microsoft Corporation) C:\Users\Jeff\AppData\Local\Temp\dllnt_dump.dll 2017-11-19 10:51 - 2017-11-19 10:52 - 036354152 _____ (Ellora Assets Corporation ) C:\Users\Jeff\AppData\Local\Temp\FreemakeVideoConverterFull.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-11-19 20:31 ==================== Fin de FRST.txt ============================