Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23-12-2017 01 Exécuté par ziwass (administrateur) sur ZIWASS-PC (24-12-2017 13:28:36) Exécuté depuis C:\Users\ziwass\Desktop Profils chargés: ziwass (Profils disponibles: ziwass) Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 8 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\stacsv64.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe (Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (DigitalPersona, Inc.) C:\Program Files (x86)\FPSensor\bin\DpHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (HP) C:\Windows\System32\HPSIsvc.exe (ZKSoftware Inc) C:\Program Files (x86)\FPSensor\bin\iZHost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Dell) C:\Users\ziwass\AppData\Local\Apps\2.0\QH42T5EL.049\PB7JH6LD.V13\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe () C:\Program Files (x86)\Google\Drive\googledrivesync.exe (PowerISO Computing, Inc.) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\Google\Drive\googledrivesync.exe () C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2176296 2010-06-10] (Synaptics Incorporated) HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1926928 2009-09-21] (Intel(R) Corporation) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-01-21] (IDT, Inc.) HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [167936 2008-11-02] (PowerISO Computing, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3487128 2012-05-02] (Tonec Inc.) HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [GoogleChromeAutoLaunch_0AE31B4F8E820B2D8D16F4B1040B7242] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664 2017-12-06] (Google Inc.) HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [41061856 2017-11-20] () HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [DellSystemDetect] => C:\Users\ziwass\AppData\Local\Apps\2.0\QH42T5EL.049\PB7JH6LD.V13\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe [310728 2017-02-05] (Dell) HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: F - F:\SETUP.EXE HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: H - H:\RunThis.exe HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: {045d4196-13a9-11e6-9186-9439e5e402d6} - G:\SISetup.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{5D5AB2D4-9DDB-4A85-830B-056445B2AE3E}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{5D5AB2D4-9DDB-4A85-830B-056445B2AE3E}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6F0D3AE9-A095-4A4E-BE52-FA013C9FA412}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{8BA257E3-E890-4E62-BB0A-10DCE9A543E4}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8BE25FBB-84AE-437D-A4EC-8CBCB1AF59A9}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/ HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/ HKU\S-1-5-21-700845423-2606857621-1733508647-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-700845423-2606857621-1733508647-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-700845423-2606857621-1733508647-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://maktoob.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__171028__yaie&p={searchTerms} BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-05-02] (Internet Download Manager, Tonec Inc.) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-05-02] (Internet Download Manager, Tonec Inc.) BHO-x32: Foxit PhantomPDF Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2017-10-21] () Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.) Toolbar: HKLM-x32 - Foxit PhantomPDF Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2017-10-21] () Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: sb6luiyl.default FF ProfilePath: C:\Users\ziwass\AppData\Roaming\Mozilla\Firefox\Profiles\sb6luiyl.default [2017-12-23] FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2017-10-09] [Legacy] FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi FF HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5 [2017-04-24] [Legacy] [non signé] FF HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5 FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-10] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default [2017-12-24] CHR Extension: (Slides) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Docs) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-25] CHR Extension: (YouTube) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-25] CHR Extension: (Foxit PDF Creator) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\cifnddnffldieaamihfkhkdgnbhfmaci [2017-11-29] CHR Extension: (Adobe Acrobat) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-25] CHR Extension: (Sheets) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Google Docs hors connexion) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-25] CHR Extension: (AdBlock) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07] CHR Extension: (Skype) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-12-15] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22] CHR Extension: (Browsec VPN - Free and Unlimited VPN) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh [2017-11-22] CHR Extension: (Gmail) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-25] CHR Extension: (Chrome Media Router) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-07] CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx CHR HKU\S-1-5-21-700845423-2606857621-1733508647-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.) R2 DpHost; C:\Program Files (x86)\FPSensor\bin\DpHost.exe [237568 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé] S3 FoxitPhantomService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2017-10-29] (Foxit Software Inc.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332144 2017-11-21] (HP Inc.) R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc.) R2 iZHost; C:\Program Files (x86)\FPSensor\bin\iZHost.exe [244736 2009-12-21] (ZKSoftware Inc) [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [315664 2009-09-21] () R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe [244736 2010-01-21] (IDT, Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) S3 OverwolfUpdater; "C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe" /RunningFrom SCM" [X] S2 Soda PDF Desktop Creator; "C:\Program Files\Soda PDF Desktop\creator\common\creator-ws.exe" [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dpK00701; C:\Windows\SysWOW64\DRIVERS\dpK00701.sys [46592 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé] R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] () S3 fwlanusb6_860; C:\Windows\System32\DRIVERS\fwlanusb6_860.sys [2274336 2015-07-20] (AVM GmbH) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2017-12-23] (Malwarebytes) R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-12-24] (Malwarebytes) R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-24] (Malwarebytes) R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-12-24] (Malwarebytes) S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.) U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2017-12-23] () S3 usbdpfp; C:\Windows\SysWOW64\DRIVERS\usbdpfp.sys [47104 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé] S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-12-24 13:28 - 2017-12-24 13:29 - 000019884 _____ C:\Users\ziwass\Desktop\FRST.txt 2017-12-24 13:28 - 2017-12-24 13:28 - 000000000 ____D C:\FRST 2017-12-24 13:26 - 2017-12-24 13:26 - 002392064 _____ (Farbar) C:\Users\ziwass\Desktop\FRST64.exe 2017-12-24 13:17 - 2017-12-24 13:22 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2017-12-24 01:58 - 2017-12-24 01:58 - 001150079 _____ C:\Users\ziwass\Desktop\rslt_mvtens_col_2018171223.pdf 2017-12-24 01:42 - 2017-12-24 01:42 - 000004954 _____ C:\Users\ziwass\Desktop\scan.txt 2017-12-23 23:57 - 2017-12-24 13:17 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2017-12-23 23:57 - 2017-12-23 23:57 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2017-12-23 23:56 - 2017-12-24 00:53 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2017-12-23 23:56 - 2017-12-23 23:56 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\ProgramData\Malwarebytes 2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\Program Files\Malwarebytes 2017-12-23 23:56 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys 2017-12-23 23:49 - 2017-12-23 23:49 - 000007154 _____ C:\Users\ziwass\Desktop\rk_F410.tmp.txt 2017-12-23 23:46 - 2017-12-23 23:46 - 000006866 _____ C:\Users\ziwass\Desktop\rk_25D8.tmp.txt 2017-12-22 23:38 - 2017-12-23 23:11 - 000028272 _____ C:\Windows\system32\Drivers\TrueSight.sys 2017-12-22 23:35 - 2017-12-22 23:35 - 000000858 _____ C:\Users\Public\Desktop\RogueKiller.lnk 2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\ProgramData\RogueKiller 2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\Program Files\RogueKiller 2017-12-18 22:09 - 2017-12-18 22:49 - 000000000 ____D C:\Users\ziwass\Desktop\Nouveau dossier (2) 2017-12-18 21:44 - 2017-12-18 21:45 - 002923021 _____ C:\Users\ziwass\Downloads\exo.ps 2017-12-18 00:01 - 2017-12-18 00:01 - 000042136 _____ C:\Users\ziwass\Downloads\meth_19.pdf 2017-12-18 00:00 - 2017-12-18 00:00 - 000092755 _____ C:\Users\ziwass\Downloads\exo1_20.pdf 2017-12-18 00:00 - 2017-12-18 00:00 - 000055513 _____ C:\Users\ziwass\Downloads\colle_20.pdf 2017-12-18 00:00 - 2017-12-18 00:00 - 000037395 _____ C:\Users\ziwass\Downloads\exo1_21.pdf 2017-12-17 23:59 - 2017-12-17 23:59 - 000070063 _____ C:\Users\ziwass\Downloads\colle_19.pdf 2017-12-17 23:59 - 2017-12-17 23:59 - 000057693 _____ C:\Users\ziwass\Downloads\meth_18.pdf 2017-12-17 23:57 - 2017-12-17 23:57 - 000317890 _____ C:\Users\ziwass\Downloads\colles1213_enonces.pdf 2017-12-15 22:47 - 2017-12-15 22:48 - 000262144 _____ C:\Windows\Minidump\121517-22479-01.dmp 2017-12-15 22:47 - 2017-12-15 22:47 - 476906126 _____ C:\Windows\MEMORY.DMP 2017-12-15 22:47 - 2017-12-15 22:47 - 000000000 ____D C:\Windows\Minidump 2017-12-15 14:23 - 2017-12-24 13:20 - 000000000 ___RD C:\Users\ziwass\Google Drive 2017-12-15 14:23 - 2017-12-15 14:23 - 000001672 _____ C:\Users\ziwass\Desktop\Google Drive.lnk 2017-12-15 14:20 - 2017-12-15 14:20 - 000002042 _____ C:\Users\Public\Desktop\Google Slides.lnk 2017-12-15 14:20 - 2017-12-15 14:20 - 000002040 _____ C:\Users\Public\Desktop\Google Sheets.lnk 2017-12-15 14:20 - 2017-12-15 14:20 - 000002030 _____ C:\Users\Public\Desktop\Google Docs.lnk 2017-12-15 14:20 - 2017-12-15 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google 2017-12-15 14:18 - 2017-12-15 14:18 - 001129816 _____ (Google Inc.) C:\Users\ziwass\Downloads\installbackupandsync.exe 2017-12-11 00:06 - 2017-12-11 00:06 - 000417870 _____ C:\Users\ziwass\Downloads\www.mathprepa.fr-solutions-exercices-chap01.pdf 2017-12-11 00:04 - 2017-12-11 00:04 - 000278223 _____ C:\Users\ziwass\Downloads\www.mathprepa.fr-exercices-chap01.pdf 2017-12-09 16:28 - 2017-12-09 16:37 - 000000000 ____D C:\Users\ziwass\Desktop\DS 2017-12-09 00:02 - 2017-12-09 00:02 - 000195636 _____ C:\Users\ziwass\Downloads\Demande_de_Mouvement_Enseignant-20171209.pdf 2017-12-08 18:02 - 2017-12-08 18:02 - 000222133 _____ C:\Users\ziwass\Desktop\serie4-1sc-scalaire.pdf 2017-12-07 14:25 - 2017-12-07 14:25 - 000000000 ____D C:\Users\ziwass\AppData\Local\Foxit PhantomPDF 2017-12-07 14:11 - 2017-12-07 14:11 - 000100555 _____ C:\Users\ziwass\Downloads\Cours_Suites (1).pdf 2017-12-07 14:10 - 2017-12-07 14:11 - 000100555 _____ C:\Users\ziwass\Downloads\Cours_Suites.pdf 2017-12-07 12:27 - 2017-12-07 12:27 - 000272829 _____ C:\Users\ziwass\Downloads\Liste 20 suites.pdf 2017-12-07 12:27 - 2017-12-07 12:27 - 000213601 _____ C:\Users\ziwass\Downloads\Liste 21 suites.pdf 2017-12-07 12:27 - 2017-12-07 12:27 - 000127674 _____ C:\Users\ziwass\Downloads\Liste 19 suites .pdf 2017-12-07 12:27 - 2017-12-07 12:27 - 000105040 _____ C:\Users\ziwass\Downloads\Liste 16 suites.pdf 2017-12-07 12:27 - 2017-12-07 12:27 - 000101158 _____ C:\Users\ziwass\Downloads\Liste 18 suite.pdf 2017-12-07 12:27 - 2017-12-07 12:27 - 000100946 _____ C:\Users\ziwass\Downloads\Liste 17 suites.pdf 2017-12-07 12:26 - 2017-12-07 12:26 - 000105328 _____ C:\Users\ziwass\Downloads\Liste 15 suites.pdf 2017-12-07 12:25 - 2017-12-07 12:25 - 000158316 _____ C:\Users\ziwass\Downloads\complexes.pdf 2017-12-07 12:24 - 2017-12-07 12:24 - 000272616 _____ C:\Users\ziwass\Downloads\complexe et ensemble de points.pdf 2017-12-07 12:24 - 2017-12-07 12:24 - 000267801 _____ C:\Users\ziwass\Downloads\asymptote.pdf 2017-12-07 12:24 - 2017-12-07 12:24 - 000206545 _____ C:\Users\ziwass\Downloads\arithmétique.pdf 2017-12-04 14:42 - 2017-12-04 14:59 - 000000000 ____D C:\Users\ziwass\Desktop\Barycentre 2017-12-01 14:13 - 2017-12-01 14:13 - 000169699 _____ C:\Users\ziwass\Downloads\فرض محروس رقم 1 الدورة الاولى في المنطق.pdf 2017-12-01 14:12 - 2017-12-01 14:12 - 000588440 _____ C:\Users\ziwass\Downloads\solution.rar 2017-12-01 14:12 - 2017-12-01 14:12 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie (2).pdf 2017-12-01 14:12 - 2017-12-01 14:12 - 000099291 _____ C:\Users\ziwass\Downloads\DM (2).pdf 2017-12-01 14:12 - 2017-12-01 14:12 - 000093002 _____ C:\Users\ziwass\Downloads\trigo_limites (1).pdf 2017-12-01 14:12 - 2017-12-01 14:12 - 000042309 _____ C:\Users\ziwass\Downloads\SM1_DS05_Rotation_Limites.pdf 2017-12-01 14:12 - 2017-12-01 14:12 - 000027796 _____ C:\Users\ziwass\Downloads\SM1_DS06_Derivat_Etude_FctNum.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000034923 _____ C:\Users\ziwass\Downloads\SM1_DS03_Produit_Scalaire_Analytique.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000031111 _____ C:\Users\ziwass\Downloads\SM1_DS04_Trigo_Suites_Num.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000026941 _____ C:\Users\ziwass\Downloads\SM1_DS01_Logique_Ensembles_Applications.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000022579 _____ C:\Users\ziwass\Downloads\SM1_DS02Bis_Generality_Fcts_Barycentre.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000021972 _____ C:\Users\ziwass\Downloads\SM1_DM02_Generality_Foncts_Barycentre.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000021804 _____ C:\Users\ziwass\Downloads\SM1_DM01_Logique_Ensembles_Applications.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000021709 _____ C:\Users\ziwass\Downloads\SM1_DS02_Generality_Fcts_Barycentre.pdf 2017-12-01 14:11 - 2017-12-01 14:11 - 000017374 _____ C:\Users\ziwass\Downloads\SM1_DM00_revision_TCS.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000233464 _____ C:\Users\ziwass\Downloads\DERIVABILITE.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000130939 _____ C:\Users\ziwass\Downloads\denomb.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000076768 _____ C:\Users\ziwass\Downloads\continuite.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000055423 _____ C:\Users\ziwass\Downloads\ensembles_applications.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000055214 _____ C:\Users\ziwass\Downloads\sujet_etude_1Bac.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000055214 _____ C:\Users\ziwass\Downloads\sujet_etude_1Bac (1).pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000046273 _____ C:\Users\ziwass\Downloads\serie3_deri.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000045080 _____ C:\Users\ziwass\Downloads\logique.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000044105 _____ C:\Users\ziwass\Downloads\serie1_deri.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000040021 _____ C:\Users\ziwass\Downloads\serie2_deri.pdf 2017-12-01 14:10 - 2017-12-01 14:10 - 000027696 _____ C:\Users\ziwass\Downloads\log.pdf 2017-12-01 14:09 - 2017-12-01 14:09 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie (1).pdf 2017-12-01 14:09 - 2017-12-01 14:09 - 000099291 _____ C:\Users\ziwass\Downloads\DM.pdf 2017-12-01 14:09 - 2017-12-01 14:09 - 000099291 _____ C:\Users\ziwass\Downloads\DM (1).pdf 2017-12-01 14:09 - 2017-12-01 14:09 - 000093002 _____ C:\Users\ziwass\Downloads\trigo_limites.pdf 2017-12-01 14:08 - 2017-12-01 14:08 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie.pdf 2017-12-01 14:00 - 2017-12-01 14:01 - 009907112 _____ C:\Users\ziwass\Downloads\عبد الله بن لختير-أحمد مومني-خ.هدار- ياسين المغازلي-20171201T140048Z-001.zip 2017-12-01 14:00 - 2017-12-01 14:00 - 000068941 _____ C:\Users\ziwass\Downloads\DmS2Sr15A-002-Mghazli-12_13 (1).pdf 2017-12-01 13:59 - 2017-12-01 13:59 - 000068941 _____ C:\Users\ziwass\Downloads\DmS2Sr15A-002-Mghazli-12_13.pdf 2017-12-01 13:57 - 2017-12-01 13:57 - 000100817 _____ C:\Users\ziwass\Downloads\1 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf 2017-12-01 13:57 - 2017-12-01 13:57 - 000100728 _____ C:\Users\ziwass\Downloads\3 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf 2017-12-01 13:57 - 2017-12-01 13:57 - 000098031 _____ C:\Users\ziwass\Downloads\2 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf 2017-12-01 13:53 - 2017-12-01 13:53 - 000063806 _____ C:\Users\ziwass\Downloads\plugin-d1s1_1sm_bel.pdf 2017-12-01 12:42 - 2017-12-01 12:42 - 000000000 ____D C:\Users\ziwass\Downloads\devoir-1-partier-1-maths-1bac-sci-maths-1trim 2017-11-29 23:33 - 2017-11-29 23:34 - 000096256 _____ C:\Users\ziwass\Downloads\20171025131440tableau.xls 2017-11-29 00:11 - 2017-11-29 00:12 - 021759906 _____ C:\Users\ziwass\Downloads\Foxit Phantom PDF Business v8.2.0.2192 Crack.rar 2017-11-29 00:04 - 2017-11-29 00:04 - 000001089 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk 2017-11-29 00:03 - 2017-11-29 00:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF 2017-11-29 00:01 - 2017-11-29 00:01 - 000000000 ____D C:\Program Files (x86)\Foxit Software 2017-11-28 01:30 - 2017-11-29 00:05 - 000000000 ____D C:\ProgramData\Foxit Software 2017-11-28 01:29 - 2017-11-29 00:04 - 000000000 ____D C:\ProgramData\Package Cache 2017-11-28 01:28 - 2017-11-28 01:33 - 000000000 ____D C:\Users\Public\Foxit Software 2017-11-28 01:27 - 2017-11-29 00:03 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\Foxit Software 2017-11-26 23:46 - 2017-11-26 23:46 - 000186537 _____ C:\Users\ziwass\Downloads\رياضيات-النجاح-141763504290472.pdf 2017-11-25 13:32 - 2017-11-25 13:32 - 000344409 _____ C:\Users\ziwass\Downloads\output (3).pdf 2017-11-25 13:25 - 2017-11-25 13:25 - 000340018 _____ C:\Users\ziwass\Downloads\exercices_corriges_ensembles_et_applications.pdf 2017-11-24 23:24 - 2017-11-29 00:20 - 000756277 _____ C:\Users\ziwass\Downloads\ANALY5.PDF 2017-11-24 22:58 - 2017-11-24 22:58 - 000381268 _____ C:\Users\ziwass\Downloads\resume-etude-de-fonction.pdf 2017-11-24 22:56 - 2017-11-24 22:56 - 001954380 _____ C:\Users\ziwass\Downloads\al7ma02tepa0113-sequence-02.pdf 2017-11-24 22:54 - 2017-11-24 22:54 - 000072210 _____ C:\Users\ziwass\Downloads\resume_recurrence.pdf 2017-11-24 22:54 - 2017-11-24 22:54 - 000052530 _____ C:\Users\ziwass\Downloads\limites_suite_schema.pdf 2017-11-24 22:54 - 2017-11-24 22:54 - 000051615 _____ C:\Users\ziwass\Downloads\02_fiche_recurrence_limite_suite.pdf 2017-11-24 22:53 - 2017-11-24 22:53 - 000085219 _____ C:\Users\ziwass\Downloads\resume_suites.pdf 2017-11-24 22:53 - 2017-11-24 22:53 - 000046860 _____ C:\Users\ziwass\Downloads\03_limites_radicaux.pdf 2017-11-24 22:53 - 2017-11-24 22:53 - 000031358 _____ C:\Users\ziwass\Downloads\resume_dev_usuelles.pdf 2017-11-24 22:52 - 2017-11-24 22:52 - 000127589 _____ C:\Users\ziwass\Downloads\resume_lim_cont_dev.pdf 2017-11-24 15:21 - 2017-11-24 15:21 - 000117605 _____ C:\Users\ziwass\Downloads\output (2).pdf 2017-11-24 15:16 - 2017-11-24 15:16 - 000115477 _____ C:\Users\ziwass\Downloads\serie4-1sc-scalaire.pdf ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-12-24 13:16 - 2009-07-14 05:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-12-24 10:08 - 2017-04-20 20:29 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\DMCache 2017-12-24 02:06 - 2017-06-22 16:41 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\WhatsApp 2017-12-23 09:15 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-12-23 09:15 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-12-21 13:02 - 2017-11-19 14:09 - 000003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForziwass 2017-12-21 13:02 - 2017-11-19 14:09 - 000000336 _____ C:\Windows\Tasks\HPCeeScheduleForziwass.job 2017-12-18 22:50 - 2017-11-23 21:30 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\TeXstudio 2017-12-16 01:02 - 2017-09-22 14:50 - 000000000 ____D C:\Users\ziwass\Desktop\Cours 2017-12-15 14:23 - 2015-11-11 20:44 - 000000000 ____D C:\Users\ziwass 2017-12-15 14:20 - 2015-11-14 11:17 - 000000000 ____D C:\Users\ziwass\AppData\Local\Google 2017-12-15 14:20 - 2015-11-14 11:17 - 000000000 ____D C:\Program Files (x86)\Google 2017-12-10 23:30 - 2017-06-22 16:42 - 000002155 _____ C:\Users\ziwass\Desktop\WhatsApp.lnk 2017-12-10 23:30 - 2017-06-22 16:42 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2017-12-10 23:30 - 2017-06-22 16:41 - 000000000 ____D C:\Users\ziwass\AppData\Local\WhatsApp 2017-12-10 23:29 - 2017-06-22 16:40 - 000000000 ____D C:\Users\ziwass\AppData\Local\SquirrelTemp 2017-12-07 12:11 - 2015-11-14 11:15 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-12-03 19:31 - 2017-11-06 23:34 - 000087313 _____ C:\Users\ziwass\Desktop\sujet.pdf 2017-12-01 22:20 - 2017-04-12 00:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-11-29 19:23 - 2017-04-02 18:39 - 000000000 ____D C:\ProgramData\AVAST Software 2017-11-29 00:22 - 2017-04-20 20:29 - 000000000 ____D C:\Users\ziwass\Downloads\Compressed 2017-11-24 23:15 - 2017-11-07 00:34 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\inkscape ==================== Fichiers à la racine de certains dossiers ======= 2017-11-07 00:53 - 2017-11-07 00:53 - 000000813 _____ () C:\Users\ziwass\AppData\Local\recently-used.xbel 2017-07-21 23:27 - 2017-07-21 23:27 - 000000000 _____ () C:\Users\ziwass\AppData\Local\{5838B9F2-3237-435A-BAD2-3FF522B20E4B} Certains fichiers dans TEMP: ==================== 2017-12-22 23:35 - 2010-11-21 03:23 - 001731936 _____ (Microsoft Corporation) C:\Users\ziwass\AppData\Local\Temp\dllnt_dump.dll 2017-11-28 23:30 - 2017-10-18 19:55 - 004782656 _____ (Foxit Corporation) C:\Users\ziwass\AppData\Local\Temp\FoxitUpdater.exe 2017-11-19 14:02 - 2017-10-17 14:01 - 000927784 _____ () C:\Users\ziwass\AppData\Local\Temp\TAInstaller.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll [2010-11-21 03:24] - [2010-11-21 03:24] - 001008640 _____ (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E C:\Windows\SysWOW64\User32.dll [2015-11-13 23:02] - [2015-11-13 23:02] - 000833024 _____ (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356 C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-12-19 01:02 ==================== Fin de FRST.txt ============================