Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 21.01.2018 Exécuté par digital land (administrateur) sur DIGITALLAND-PC (21-01-2018 16:48:53) Exécuté depuis C:\Users\digital land\Downloads Profils chargés: digital land (Profils disponibles: digital land & Invité) Platform: Microsoft Windows 7 Édition Starter Service Pack 1 (X86) Langue: Français (France) Internet Explorer Version 10 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\ProgramData\DataCardService\HWDeviceService.exe () C:\Users\digital land\AppData\Local\Kingosoft\Kingo Root\update_54326\bin\KingoSoftService.exe () C:\ProgramData\MobileBrServ\mbbService.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Wondershare) C:\Program Files\Wondershare\WAF\2.4.3.225\WsAppService.exe (Wondershare) C:\Program Files\Wondershare\Wondershare Dr.Fone pour iOS\Library\DriverInstaller\DriverInstall.exe (Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DataCardService\DCSHelper.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe (Probit Software LTD) C:\Program Files\Probit Software\Easy Driver Pro\EDPTray.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) C:\Program Files\Brother\Brother Help\BrotherHelp.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Lenovo) C:\Program Files\MagicPlus\MagicPlus_helper.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe () C:\Program Files\WebcamMax\wcmmon.exe (Sony) C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudPhotos.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple, Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\secd.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe (Microsoft Corporation) C:\Windows\System32\wuauclt.exe (VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe (Gavrila Martau) C:\Program Files\Total Uninstall 6\Tu.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\AppleIEDAV.exe (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\avp.exe (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\avpui.exe (Internet Download Manager, Tonec Inc.) C:\Program Files\Internet Download Manager\idmBroker.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google) C:\Users\digital land\AppData\Local\Google\Chrome\User Data\SwReporter\24.137.203\software_reporter_tool.exe (Google) C:\Users\digital land\AppData\Local\Google\Chrome\User Data\SwReporter\24.137.203\software_reporter_tool.exe (Google) C:\Users\digital land\AppData\Local\Google\Chrome\User Data\SwReporter\24.137.203\software_reporter_tool.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [139776 2017-08-04] (Brother Industries, Ltd.) HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.) HKLM\...\Run: [BrHelp] => C:\Program Files\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) HKLM\...\Run: [DSATray] => C:\Program Files\Intel Driver Update Utility\DsaTray.exe [132856 2017-05-18] (Intel) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKLM\...\Run: [MagicPlusHelper] => C:\Program Files\MagicPlus\MagicPlus_helper.exe [2499208 2016-03-22] (Lenovo) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [261432 2017-10-20] (Apple Inc.) HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM\...\Run: [] => [X] HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui HKLM\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,userinit.exe, HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27742168 2017-06-07] (Skype Technologies S.A.) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [WebcamMaxAutoRun] => C:\Program Files\WebcamMax\wcmmon.exe [1038848 2011-07-17] () HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [XperiaCompanionAgent] => C:\Program Files\Sony\Xperia Companion\XperiaCompanionAgent.exe [2105728 2017-05-31] (Sony) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [Chromium] => c:\users\digital land\appdata\local\chromium\application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [Mobile Partner] => C:\Program Files\MobileWiFi\MobileWiFi.exe [62816 2011-04-20] () HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-10-19] (Apple Inc.) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [AdresseIP] => D:\AdresseIP\AdresseIP.exe [192512 2008-04-11] (DENTOR) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [AppleIEDAV] => C:\Program Files\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2017-10-19] (Apple Inc.) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2017-10-19] (Apple Inc.) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [iCloudDrive] => C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2017-10-19] (Apple Inc.) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [iCloudPhotos] => C:\Program Files\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2017-10-19] (Apple Inc.) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4105328 2018-01-11] (Tonec Inc.) HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: F - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: N - N:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {05b28242-48a2-11e7-8a36-78acc09b7702} - N:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {16f83f21-64ad-11e7-ad23-78acc09b7702} - J:\Auto.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {1dc00f8d-a81b-11e7-b67a-78acc09b7702} - F:\AutoRun.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {31092065-dbf7-11e7-896e-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {311d6f38-8a40-11e7-b17a-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {3a2f88fc-7931-11e7-b618-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {4410f5da-ce08-11e7-a746-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {494ef88b-d80d-11e7-b38f-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {51ca79b4-4840-11e7-ab70-78acc09b7702} - J:\AutoRun.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {72de75e3-7610-11e7-b86c-78acc09b7702} - J:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {8e9ff923-615a-11e7-85f4-78acc09b7702} - J:\Auto.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {973beaa1-e0b2-11e7-8884-78acc09b7702} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {a6904c68-5340-11e7-b374-78acc09b7702} - J:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {a6904c73-5340-11e7-b374-78acc09b7702} - J:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {a78b7ba7-c6be-11e7-a624-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {af65cbd0-ed44-11e7-ae55-78acc09b7702} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {b7ca7c62-6b95-11e7-833c-78acc09b7702} - J:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {bc01c493-ee11-11e7-b48f-78acc09b7702} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {c658db53-5bde-11e7-9d48-78acc09b7702} - J:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {d2deaeab-871a-11e7-92cc-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {decb85ab-c2d0-11e7-a0f2-78acc09b7702} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {df529633-908c-11e7-8cc2-78acc09b7702} - F:\Lenovo_Suite.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {e09c9c87-d6a7-11e7-ae27-78acc09b7702} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {e9f26af1-cf96-11e7-80be-78acc09b7702} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\MountPoints2: {f8541876-83f3-11e7-b17c-78acc09b7702} - F:\Auto.exe HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 Lsa: [Notification Packages] scecli "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" GroupPolicy: Restriction - Chrome <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{1C5F4A46-0647-4A82-AEB0-D40F8438FE54}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{5AFC6C18-B71A-4497-91A4-35CE2610F4C6}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{92F91542-61C2-44DE-BAE5-517374B7883E}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{C0F63078-D54C-4EAA-9E38-344DCCC94A4D}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{CD8036A8-143A-48DC-9F4C-EDB3361F0AB3}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{EA999CFA-AEE7-4B75-80C5-86FA55CE48B8}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{F039536E-8230-4F29-8D70-33D6CF0DE50C}: [DhcpNameServer] 172.20.10.1 Internet Explorer: ================== HKU\S-1-5-21-874488094-343240186-2357152419-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_pwrisofs_17_36¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dtn%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0A0C0CtDzy0ByByBtDtB0FtCtDtBtN0D0Tzu0StBtDyBzztN1L2XzutAtFtBzytFtCtDyEtFyBtCtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StB0C0FyC0EyDzzyDtGtAtDtBtDtG0CtAyC0EtGtDzy0ByDtGyByBtDtDtDtC0E0F0DyBtDyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtCzz0D0FyEtDtDtG0AyD0F0DtGyEyCyCtBtG0A0D0C0BtG0D0D0F0B0AyDtC0C0B0C0FtC2QtN0A0LzuyE%26cr%3D684310483%26a%3Dwbf_pwrisofs_17_36%26os_ver%3D6.1%26os%3DWindows%2B7%2BStarter&p={searchTerms} SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_pwrisofs_17_36¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dtn%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0A0C0CtDzy0ByByBtDtB0FtCtDtBtN0D0Tzu0StBtDyBzztN1L2XzutAtFtBzytFtCtDyEtFyBtCtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StB0C0FyC0EyDzzyDtGtAtDtBtDtG0CtAyC0EtGtDzy0ByDtGyByBtDtDtDtC0E0F0DyBtDyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtCzz0D0FyEtDtDtG0AyD0F0DtGyEyCyCtBtG0A0D0C0BtG0D0D0F0B0AyDtC0C0B0C0FtC2QtN0A0LzuyE%26cr%3D684310483%26a%3Dwbf_pwrisofs_17_36%26os_ver%3D6.1%26os%3DWindows%2B7%2BStarter&p={searchTerms} SearchScopes: HKU\S-1-5-21-874488094-343240186-2357152419-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_pwrisofs_17_36¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dtn%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0A0C0CtDzy0ByByBtDtB0FtCtDtBtN0D0Tzu0StBtDyBzztN1L2XzutAtFtBzytFtCtDyEtFyBtCtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StB0C0FyC0EyDzzyDtGtAtDtBtDtG0CtAyC0EtGtDzy0ByDtGyByBtDtDtDtC0E0F0DyBtDyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtCzz0D0FyEtDtDtG0AyD0F0DtGyEyCyCtBtG0A0D0C0BtG0D0D0F0B0AyDtC0C0B0C0FtC2QtN0A0LzuyE%26cr%3D684310483%26a%3Dwbf_pwrisofs_17_36%26os_ver%3D6.1%26os%3DWindows%2B7%2BStarter&p={searchTerms} SearchScopes: HKU\S-1-5-21-874488094-343240186-2357152419-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_pwrisofs_17_36¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dtn%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0A0C0CtDzy0ByByBtDtB0FtCtDtBtN0D0Tzu0StBtDyBzztN1L2XzutAtFtBzytFtCtDyEtFyBtCtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StB0C0FyC0EyDzzyDtGtAtDtBtDtG0CtAyC0EtGtDzy0ByDtGyByBtDtDtDtC0E0F0DyBtDyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEtCzz0D0FyEtDtDtG0AyD0F0DtGyEyCyCtBtG0A0D0C0BtG0D0D0F0B0AyDtC0C0B0C0FtC2QtN0A0LzuyE%26cr%3D684310483%26a%3Dwbf_pwrisofs_17_36%26os_ver%3D6.1%26os%3DWindows%2B7%2BStarter&p={searchTerms} BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2017-12-14] (Internet Download Manager, Tonec Inc.) BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\IEExt\ie_plugin.dll [2018-01-20] (AO Kaspersky Lab) BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2011-02-12] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-06-08] (Oracle Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-23] (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-08] (Oracle Corporation) Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-23] (Google Inc.) Toolbar: HKLM - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\IEExt\ie_plugin.dll [2018-01-20] (AO Kaspersky Lab) Toolbar: HKU\S-1-5-21-874488094-343240186-2357152419-1000 -> True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security) Toolbar: HKU\S-1-5-21-874488094-343240186-2357152419-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-23] (Google Inc.) Toolbar: HKU\S-1-5-21-874488094-343240186-2357152419-1000 -> Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\IEExt\ie_plugin.dll [2018-01-20] (AO Kaspersky Lab) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF HKLM\...\Firefox\Extensions: [light_plugin_448EC0843447455C9DA355B3C2811D6A@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2018-01-20] FF HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\digital land\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\digital land\AppData\Roaming\IDM\idmmzcc5 [2018-01-18] [Legacy] [non signé] FF HKU\S-1-5-21-874488094-343240186-2357152419-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy] FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-08] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-08] (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default [2018-01-21] CHR Extension: (Slides) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-21] CHR Extension: (Docs) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-21] CHR Extension: (Google Drive) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-21] CHR Extension: (YouTube) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-21] CHR Extension: (Sheets) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-21] CHR Extension: (Google Docs Offline) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-21] CHR Extension: (Chrome Web Store Payments) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-01-21] CHR Extension: (Gmail) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-21] CHR Extension: (Chrome Media Router) - C:\Users\digital land\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-01-21] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5906816 2018-01-14] (AVAST Software) R2 AVP18.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Total Security 18.0.0\avp.exe [354672 2017-01-24] (AO Kaspersky Lab) R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [Fichier non signé] S2 DSAService; C:\Program Files\Intel Driver Update Utility\DSAService.exe [21240 2017-05-18] (Intel) R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [276048 2013-10-28] () S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Fichier non signé] R2 KingoSoftService; C:\Users\digital land\AppData\Local\Kingosoft\Kingo Root\update_54326\bin\checkupdate.exe [377832 2017-11-23] () R2 KSDE2.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (AO Kaspersky Lab) R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242264 2015-09-23] () S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [657408 2017-08-04] (Nokia) [Fichier non signé] R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10803440 2017-12-18] (TeamViewer GmbH) S2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1002472 2017-06-26] (McAfee, Inc.) S2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [17992 2017-06-26] (McAfee, Inc.) S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [74816 2017-06-26] (McAfee, Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) R2 WsAppService; C:\Program Files\Wondershare\WAF\2.4.3.225\WsAppService.exe [473824 2017-05-05] (Wondershare) R2 WsDrvInst; C:\Program Files\Wondershare\Wondershare Dr.Fone pour iOS\Library\DriverInstaller\DriverInstall.exe [119008 2017-05-09] (Wondershare) R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [1431424 2017-05-31] (Sony) S2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [X] S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriverx.sys [255584 2018-01-14] (AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidshx.sys [157376 2018-01-14] (AVAST Software) R0 aswblog; C:\Windows\System32\drivers\aswblogx.sys [276696 2018-01-14] (AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbunivx.sys [50344 2018-01-14] (AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [118144 2018-01-14] (AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783104 2018-01-14] (AVAST Software) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [176864 2016-12-26] (AO Kaspersky Lab) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109184 2017-01-16] (Samsung Electronics Co., Ltd.) S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [26168 2017-09-09] (Disc Soft Ltd) S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [40504 2017-09-09] (Disc Soft Ltd) S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [26328 2017-09-09] (Sony Mobile Communications) S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [101248 2013-03-04] (Huawei Technologies Co., Ltd.) S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [70528 2013-03-04] (Huawei Technologies Co., Ltd.) S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [27776 2013-03-04] (Huawei Technologies Co., Ltd.) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [165296 2016-10-01] (AO Kaspersky Lab) R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [62184 2017-12-24] (AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [97512 2017-12-24] (AO Kaspersky Lab) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [69000 2016-05-31] (AO Kaspersky Lab) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [164056 2018-01-20] (AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [229592 2018-01-20] (AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [835264 2018-01-20] (AO Kaspersky Lab) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [49744 2016-10-11] (AO Kaspersky Lab) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [50400 2016-12-23] (AO Kaspersky Lab) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [51424 2016-12-07] (AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45552 2017-12-24] (AO Kaspersky Lab) R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48056 2016-06-07] (The OpenVPN Project) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [75760 2017-12-24] (AO Kaspersky Lab) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [120544 2017-12-24] (AO Kaspersky Lab) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [165088 2017-12-24] (AO Kaspersky Lab) R3 pneteth; C:\Windows\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.) S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [216632 2017-03-15] (QUALCOMM Incorporated) S3 sprdbus; C:\Windows\System32\DRIVERS\sprdbus.sys [76504 2014-10-10] (Microsoft Corporation) S3 sprdmux; C:\Windows\System32\DRIVERS\sprdmux.sys [45952 2014-10-10] (DriverCoding Incorporated) S3 sprdport; C:\Windows\System32\DRIVERS\sprdport.sys [71424 2014-10-10] (DriverCoding Incorporated) S3 sprdvcom; C:\Windows\System32\DRIVERS\sprdvcom.sys [23552 2014-10-10] (SPRD Device) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147072 2017-01-16] (Samsung Electronics Co., Ltd.) S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv.sys [14936 2013-01-25] (Scott) S3 vcom_modem; C:\Windows\System32\DRIVERS\sprdmodem.sys [72064 2014-10-10] (DriverCoding Incorporated) R2 WCMVCAM; C:\Windows\System32\DRIVERS\wcmvcam.sys [1068216 2012-04-15] (Windows (R) Win 7 DDK provider) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [128704 2016-08-16] (MBB) S1 aswArPot; system32\drivers\aswArPot.sys [X] S3 aswHwid; system32\drivers\aswHwid.sys [X] S2 aswMonFlt; system32\drivers\aswMonFlt.sys [X] S1 aswRdr; system32\drivers\aswRdr2.sys [X] S0 aswRvrt; system32\drivers\aswRvrt.sys [X] S1 aswSP; system32\drivers\aswSP.sys [X] S2 aswStm; system32\drivers\aswStm.sys [X] S0 aswVmm; system32\drivers\aswVmm.sys [X] S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X] U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [95232 2013-01-25] (Huawei Technologies Co., Ltd.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-01-21 16:48 - 2018-01-21 16:50 - 000030967 _____ C:\Users\digital land\Downloads\FRST.txt 2018-01-21 16:48 - 2018-01-21 16:48 - 000000000 ____D C:\FRST 2018-01-21 16:47 - 2018-01-21 16:48 - 001754112 _____ (Farbar) C:\Users\digital land\Downloads\FRST.exe 2018-01-21 16:46 - 2018-01-21 16:46 - 000000000 ____D C:\Users\digital land\AppData\Local\ZHP 2018-01-21 16:45 - 2018-01-21 16:46 - 002900480 _____ C:\Users\digital land\Downloads\zhpdiag_v2017.10.9.179.exe 2018-01-21 16:29 - 2018-01-21 16:29 - 000002211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-01-21 16:29 - 2018-01-21 16:29 - 000002199 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-01-21 16:26 - 2018-01-21 16:26 - 000001429 _____ C:\Users\digital land\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2018-01-21 12:58 - 2018-01-21 12:59 - 000000000 ____D C:\Users\digital land\Desktop\total 2018-01-21 12:56 - 2018-01-21 12:58 - 046448641 _____ C:\Users\digital land\Downloads\Total Uninstall 6.rar 2018-01-21 12:55 - 2018-01-21 12:55 - 001536000 _____ (Corel Corporation) C:\Users\digital land\Downloads\flashupdate.exe 2018-01-21 12:37 - 2018-01-21 12:37 - 000001004 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall 6.lnk 2018-01-21 12:37 - 2018-01-21 12:37 - 000000992 _____ C:\Users\Public\Desktop\Total Uninstall 6.lnk 2018-01-21 12:37 - 2018-01-21 12:37 - 000000000 ____D C:\ProgramData\Martau 2018-01-21 12:37 - 2018-01-21 12:37 - 000000000 ____D C:\Program Files\Total Uninstall 6 2018-01-20 19:29 - 2018-01-20 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection 2018-01-20 19:29 - 2018-01-20 19:28 - 000001240 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk 2018-01-20 19:23 - 2018-01-20 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security 2018-01-20 19:23 - 2018-01-20 19:22 - 000002159 _____ C:\Users\Public\Desktop\Protection bancaire.lnk 2018-01-20 19:23 - 2018-01-20 19:22 - 000002087 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk 2018-01-20 19:21 - 2018-01-20 19:28 - 000000000 ____D C:\Program Files\Kaspersky Lab 2018-01-20 19:20 - 2018-01-20 19:20 - 000835264 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys 2018-01-20 19:20 - 2018-01-20 19:20 - 000229592 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys 2018-01-20 19:20 - 2018-01-20 19:20 - 000164056 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys 2018-01-19 18:33 - 2018-01-19 18:33 - 000000000 ____D C:\Users\digital land\Desktop\Perfect Uninstaller 2018-01-19 18:32 - 2018-01-19 18:32 - 000202557 _____ C:\Users\digital land\Downloads\Perfect_Uninstaller_v4.x_by_AT4RE.zip 2018-01-19 15:58 - 2018-01-19 18:29 - 000000000 ____D C:\MauiMETA_LOG 2018-01-19 15:53 - 2018-01-19 15:53 - 000001093 _____ C:\Users\Invité\Desktop\Maui META ver 9.1604.02.00.lnk 2018-01-19 15:53 - 2018-01-19 15:53 - 000001093 _____ C:\Users\digital land\Desktop\Maui META ver 9.1604.02.00.lnk 2018-01-19 15:53 - 2018-01-19 15:53 - 000000000 ____D C:\Users\digital land\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maui META 9.1604.02.00 2018-01-19 15:53 - 2018-01-19 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maui META 9.1604.02.00 2018-01-19 15:53 - 2018-01-19 15:53 - 000000000 ____D C:\Program Files\Maui META ver 9.1604.02.00 2018-01-19 10:37 - 2014-12-03 03:02 - 000153672 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdmdm.sys 2018-01-19 10:37 - 2014-12-03 03:02 - 000136776 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdbus.sys 2018-01-19 10:37 - 2014-12-03 03:02 - 000130248 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdserd.sys 2018-01-19 10:37 - 2014-12-03 03:02 - 000017864 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdmdfl.sys 2018-01-19 10:37 - 2014-12-03 03:02 - 000015560 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdcmnt.sys 2018-01-19 10:37 - 2014-12-03 03:02 - 000015560 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdcm.sys 2018-01-19 10:37 - 2014-12-03 03:02 - 000015304 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdwhnt.sys 2018-01-19 10:37 - 2014-12-03 03:02 - 000015304 _____ (MCCI Corporation) C:\Windows\system32\Drivers\sscdwh.sys 2018-01-18 17:19 - 2018-01-21 12:08 - 000000000 ____D C:\Users\digital land\AppData\Roaming\DMCache 2018-01-18 17:19 - 2018-01-20 16:20 - 000000000 ____D C:\Users\digital land\AppData\Roaming\IDM 2018-01-18 17:19 - 2018-01-18 17:19 - 000000000 ____D C:\Users\digital land\Downloads\Video 2018-01-18 17:19 - 2018-01-18 17:19 - 000000000 ____D C:\Users\digital land\Downloads\Compressed 2018-01-18 17:19 - 2018-01-18 17:19 - 000000000 ____D C:\ProgramData\IDM 2018-01-18 17:18 - 2018-01-18 17:21 - 000000000 ____D C:\Program Files\Internet Download Manager 2018-01-18 17:18 - 2018-01-18 17:18 - 000000979 _____ C:\Users\digital land\Desktop\Internet Download Manager.lnk 2018-01-18 17:18 - 2018-01-18 17:18 - 000000000 ____D C:\Users\digital land\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2018-01-18 17:18 - 2018-01-18 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2018-01-18 17:18 - 2017-12-29 02:47 - 000149168 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys 2018-01-18 17:15 - 2018-01-18 17:18 - 000000000 ____D C:\Users\digital land\Desktop\IDM 2018-01-18 16:49 - 2018-01-18 16:49 - 005712670 _____ C:\Users\digital land\Downloads\IDM.TNSAT.EDITION.v6.30.6.rar 2018-01-18 16:32 - 2018-01-18 16:51 - 045961144 _____ (Acresso Software Inc. ) C:\Users\digital land\Downloads\downloadstudio-setup.exe 2018-01-16 21:19 - 2018-01-20 16:02 - 000001871 _____ C:\Users\digital land\AppData\Roaming\Microsoft\Windows\Start Menu\AdresseIP.lnk 2018-01-16 21:19 - 2018-01-20 16:02 - 000001847 _____ C:\Users\digital land\Desktop\AdresseIP.lnk 2018-01-15 17:52 - 2018-01-15 17:52 - 000000000 ____D C:\Users\digital land\Desktop\phonix 2018-01-15 17:52 - 2018-01-15 17:52 - 000000000 ____D C:\Users\digital land\Desktop\PhoenixCard_V3.0.9_20121211 2018-01-15 09:21 - 2018-01-15 09:22 - 000000000 ____D C:\Users\digital land\Desktop\galaxy s3 mini 2018-01-14 18:20 - 2018-01-14 21:08 - 787713086 _____ C:\Users\digital land\Downloads\TUN-I8200XXUANH3-20141106120508.zip 2018-01-14 13:06 - 2018-01-14 13:06 - 000000000 _____ C:\Users\digital land\Downloads\Non confirmé 47886.crdownload 2018-01-14 12:55 - 2018-01-14 12:55 - 000783104 ____C (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2018-01-14 12:55 - 2018-01-14 12:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2018-01-14 12:54 - 2018-01-14 12:54 - 000276696 ____C (AVAST Software) C:\Windows\system32\Drivers\aswblogx.sys 2018-01-14 12:54 - 2018-01-14 12:54 - 000255584 ____C (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriverx.sys 2018-01-14 12:54 - 2018-01-14 12:54 - 000157376 ____C (AVAST Software) C:\Windows\system32\Drivers\aswbidshx.sys 2018-01-14 12:54 - 2018-01-14 12:54 - 000118144 ____C (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2018-01-14 12:54 - 2018-01-14 12:54 - 000050344 ____C (AVAST Software) C:\Windows\system32\Drivers\aswbunivx.sys 2018-01-14 12:50 - 2018-01-14 12:51 - 000000000 ____D C:\Users\digital land\AppData\Roaming\ROSTPAY LTD 2018-01-14 12:49 - 2018-01-14 12:49 - 000000000 ____D C:\Users\digital land\AppData\Local\ROSTPAY LTD 2018-01-14 12:49 - 2018-01-14 12:49 - 000000000 ____D C:\Program Files\AVAST Software 2018-01-14 12:47 - 2018-01-14 12:48 - 022223808 _____ C:\Users\digital land\Downloads\drvhub-1.0.2.3611.exe 2018-01-14 12:39 - 2018-01-14 12:41 - 039051436 _____ C:\Users\digital land\Downloads\TechnisatDrivers4.5.1.zip 2018-01-13 18:45 - 2018-01-13 18:46 - 000000000 ____D C:\Users\digital land\Desktop\skaystar2 2018-01-13 18:42 - 2018-01-13 18:44 - 051711982 _____ C:\Users\digital land\Downloads\SkyStar12_TV_001.zip 2018-01-13 18:39 - 2018-01-13 18:39 - 000753560 _____ (Probit Software LTD) C:\Users\digital land\Downloads\EasyDriverPro.exe 2018-01-13 18:39 - 2018-01-13 18:39 - 000000000 ____D C:\Program Files\Probit Software 2018-01-12 15:42 - 2018-01-12 15:42 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf 2018-01-12 12:20 - 2018-01-12 12:21 - 000000000 ____D C:\Users\digital land\Desktop\y336 2018-01-11 18:00 - 2018-01-11 22:20 - 1485376451 _____ C:\Users\digital land\Downloads\Y336-U02V100R001C328B106.rar 2018-01-05 17:05 - 2018-01-05 17:05 - 000010390 _____ C:\Users\digital land\Desktop\LISTE-DES-PRIX.xlsx 2018-01-04 12:00 - 2018-01-05 16:24 - 000000000 ____D C:\Users\digital land\AppData\Roaming\SystemProcess 2018-01-04 12:00 - 2018-01-04 12:00 - 000000290 __RSH C:\ProgramData\ntuser.pol 2018-01-04 10:41 - 2018-01-17 22:45 - 000000000 ____D C:\Users\digital land\AppData\Local\4CD5DFCC-86B0-4026-9CCF-5852292BA7CF.aplzod 2018-01-04 10:40 - 2018-01-21 12:04 - 000000000 ___RD C:\Users\digital land\iCloudDrive 2018-01-04 10:40 - 2018-01-04 10:40 - 000000000 ____D C:\Users\digital land\AppData\Local\Apple Inc 2018-01-03 18:52 - 2018-01-20 19:03 - 000162299 _____ C:\Users\digital land\Desktop\caisse janvier 2018.xlsx 2018-01-02 18:08 - 2018-01-03 18:14 - 1631005167 _____ C:\Users\digital land\Downloads\TUN-I9500XXUHOH6-20150921134030.zip 2017-12-31 13:05 - 2017-12-31 15:55 - 802344400 _____ C:\Users\digital land\Downloads\TUN-G530HXCS1BQD6-20170523190640.zip 2017-12-27 11:33 - 2017-12-27 11:31 - 000024450 _____ C:\Users\digital land\Desktop\Cv-mohamed-arabe (1).docx.lnk 2017-12-26 01:26 - 2018-01-16 21:50 - 025385712 _____ C:\Users\digital land\Downloads\Maui_META_v9.1604.02.00.exe 2017-12-25 18:33 - 2017-12-25 18:33 - 004653202 _____ C:\Users\digital land\Downloads\KingoRoot (1).apk 2017-12-25 15:55 - 2017-12-25 16:30 - 752511202 _____ C:\Users\digital land\Downloads\[firmware27]H30-U10_V100R001C900B108.7z 2017-12-24 21:18 - 2017-12-24 21:18 - 000165088 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kneps.sys 2017-12-24 21:18 - 2017-12-24 21:18 - 000120544 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys 2017-12-24 21:18 - 2017-12-24 21:18 - 000097512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupflt.sys 2017-12-24 21:18 - 2017-12-24 21:18 - 000075760 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kltdi.sys 2017-12-24 21:18 - 2017-12-24 21:18 - 000062184 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupdisk.sys 2017-12-24 21:18 - 2017-12-24 21:18 - 000045552 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpd.sys 2017-12-23 15:30 - 2015-09-15 10:15 - 006291456 _____ C:\Users\digital land\Downloads\Carliv_Touch_Recovery.v2.7.img 2017-12-23 15:30 - 2015-09-11 13:49 - 000356183 _____ C:\Users\digital land\Downloads\Chamelephon IMEI.apk 2017-12-23 15:30 - 2015-08-29 11:05 - 003292844 ____N C:\Users\digital land\Downloads\BusyBox Pro v1.21.1 - android-zone.org.apk 2017-12-23 15:30 - 2013-01-01 01:21 - 005803213 ____N C:\Users\digital land\Downloads\ES Explorateur de Fichiers_4.0.1_com.estrongs.android.pop_231.apk 2017-12-23 15:30 - 2013-01-01 01:21 - 000993782 ____N C:\Users\digital land\Downloads\ES Gestionnaire de tâches_2.0.0_com.estrongs.android.taskmanager_32.apk 2017-12-23 15:30 - 2013-01-01 01:21 - 000066150 ____N C:\Users\digital land\Downloads\Advanced Task Killer Pro_2.0.0B200_com.rechild.advancedtaskkillerpro_200.apk 2017-12-23 15:24 - 2017-12-23 15:25 - 005009936 _____ C:\Users\digital land\Downloads\Carliv_Touch_Recovery.v2.7 (1).rar 2017-12-23 15:24 - 2017-12-23 15:24 - 004052069 _____ C:\Users\digital land\Downloads\UPDATE-SuperSUPro-v2.40.zip 2017-12-23 15:18 - 2017-12-23 15:19 - 006949127 _____ C:\Users\digital land\Downloads\Chamelephon-IMEI.apk_BusyBox-Pro.rar 2017-12-23 15:18 - 2017-12-23 15:19 - 005009936 _____ C:\Users\digital land\Downloads\Carliv_Touch_Recovery.v2.7.rar 2017-12-23 14:47 - 2017-12-23 14:47 - 000356183 _____ C:\Users\digital land\Downloads\Chamelephon_v1.0_apkpure.com.apk 2017-12-23 14:46 - 2017-12-23 14:46 - 000356183 _____ C:\Users\digital land\Downloads\com.cryptotel.chamelephon_1 (1).apk 2017-12-23 14:45 - 2017-12-23 14:46 - 000356183 _____ C:\Users\digital land\Downloads\com.cryptotel.chamelephon_1.apk 2017-12-22 17:49 - 2017-12-22 17:50 - 386713392 _____ C:\Users\digital land\Downloads\EverGlow D35 (1).rar ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-01-21 16:29 - 2017-05-25 19:04 - 000000000 ____D C:\Users\digital land\AppData\Local\Google 2018-01-21 16:28 - 2017-06-24 12:53 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2018-01-21 16:28 - 2017-05-25 19:04 - 000000000 ____D C:\Program Files\Google 2018-01-21 16:26 - 2017-06-24 01:36 - 000000000 ____D C:\Users\digital land\AppData\Roaming\Google 2018-01-21 16:14 - 2017-09-09 20:14 - 000000284 _____ C:\Windows\Tasks\{58A091AB-EF46-2B07-9C39-22FA7A727B36}.job 2018-01-21 16:10 - 2009-07-14 05:34 - 000014576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-01-21 16:10 - 2009-07-14 05:34 - 000014576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-01-21 13:08 - 2017-07-04 15:15 - 000000000 ____D C:\Windows\Minidump 2018-01-21 13:08 - 2017-05-25 18:06 - 000000000 ____D C:\Windows\Panther 2018-01-21 13:08 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\ModemLogs 2018-01-21 13:08 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf 2018-01-21 13:06 - 2017-05-27 14:19 - 000000000 ____D C:\Users\digital land\AppData\Local\ElevatedDiagnostics 2018-01-21 12:07 - 2017-05-25 18:37 - 000000000 ____D C:\Users\digital land\AppData\Roaming\Skype 2018-01-21 12:05 - 2017-12-09 18:56 - 000000000 ____D C:\Users\digital land\Documents\Fichiers Outlook 2018-01-21 12:00 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-01-21 11:39 - 2017-06-27 19:35 - 000000000 ____D C:\Users\digital land\Desktop\bilel 2018-01-21 11:26 - 2017-05-25 18:36 - 000000000 ____D C:\XDNVS 2018-01-21 11:26 - 2017-05-25 18:11 - 000000000 ____D C:\Users\digital land\AppData\Local\VirtualStore 2018-01-21 10:18 - 2017-11-18 14:18 - 000000000 ____D C:\Program Files\AdresseIP 2018-01-21 09:47 - 2017-07-25 11:56 - 000000022 _____ C:\Users\digital land\Downloads\[RapidFiles]_63086.zip 2018-01-21 09:47 - 2017-06-18 12:55 - 000006668 _____ C:\Users\digital land\Downloads\Unlock_pattern_lock_samsung_galaxy_star.zip 2018-01-20 19:24 - 2017-06-09 11:32 - 000000000 ____D C:\Program Files\Common Files\AV 2018-01-20 19:22 - 2017-06-30 10:53 - 000262144 _____ C:\Windows\system32\config\elam 2018-01-20 19:18 - 2017-05-25 18:19 - 001573338 _____ C:\Windows\system32\PerfStringBackup.INI 2018-01-20 19:18 - 2009-07-14 09:39 - 000705428 _____ C:\Windows\system32\perfh00C.dat 2018-01-20 19:18 - 2009-07-14 09:39 - 000130680 _____ C:\Windows\system32\perfc00C.dat 2018-01-20 18:39 - 2017-06-24 12:43 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2018-01-20 17:23 - 2017-05-25 18:11 - 000000000 ____D C:\Users\digital land 2018-01-19 13:06 - 2017-06-09 11:35 - 000000000 ____D C:\Users\digital land\AppData\Local\tkdata 2018-01-19 12:37 - 2017-06-07 10:19 - 000000000 ____D C:\Program Files\TeamViewer 2018-01-16 09:54 - 2017-05-27 15:21 - 000000000 ____D C:\Users\digital land\AppData\Roaming\vlc 2018-01-15 17:43 - 2017-05-26 14:47 - 000000000 ____D C:\Program Files\DIFX 2018-01-14 12:55 - 2017-06-23 23:10 - 000000000 ____D C:\ProgramData\AVAST Software 2018-01-14 12:44 - 2017-06-08 13:30 - 000000000 ____D C:\Program Files\Common Files\InstallShield 2018-01-12 22:21 - 2017-09-02 13:35 - 000000000 ____D C:\Users\digital land\Desktop\MPlayer-1.0rc2 2018-01-10 18:15 - 2017-05-26 14:43 - 000000000 ____D C:\ProgramData\WebcamMax 2018-01-08 21:50 - 2017-11-18 14:18 - 000000000 ____D C:\Program Files\Uninstall 2018-01-06 18:54 - 2017-05-26 15:57 - 000000000 ____D C:\Users\digital land\AppData\Local\Microsoft Help 2018-01-06 17:34 - 2017-05-27 16:17 - 000007887 _____ C:\Windows\BRRBCOM.INI 2018-01-04 18:43 - 2017-12-09 19:10 - 000004096 ____H C:\Users\digital land\AppData\Local\keyfile3.drm 2018-01-04 12:00 - 2009-07-14 03:37 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2018-01-04 10:47 - 2017-06-08 12:40 - 000000000 ____D C:\Users\digital land\AppData\Local\Apple Computer 2018-01-04 10:40 - 2017-06-08 12:40 - 000000000 ____D C:\Users\digital land\AppData\Roaming\Apple Computer 2018-01-04 10:28 - 2017-06-09 11:32 - 000000000 ____D C:\Program Files\McAfee 2018-01-04 10:28 - 2017-06-09 11:20 - 000000000 ____D C:\Program Files\TrueKey 2018-01-02 09:36 - 2017-06-09 11:34 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk 2018-01-02 09:36 - 2017-06-09 11:34 - 000001151 _____ C:\Users\Public\Desktop\True Key.lnk 2018-01-01 16:29 - 2017-06-08 13:20 - 000000000 ____D C:\Program Files\Intel Driver Update Utility 2017-12-25 15:05 - 2017-05-26 14:38 - 000000000 ____D C:\ProgramData\SP_FT_Logs 2017-12-25 10:39 - 2017-06-07 10:19 - 000000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk 2017-12-25 10:39 - 2017-06-07 10:19 - 000000917 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk 2017-12-22 17:45 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\system32\NDF 2017-12-22 17:21 - 2017-06-03 17:40 - 000000000 ____D C:\Users\digital land\AppData\Local\Mediatek ==================== Fichiers à la racine de certains dossiers ======= 2017-12-09 19:10 - 2018-01-04 18:43 - 000004096 ____H () C:\Users\digital land\AppData\Local\keyfile3.drm 2017-07-19 20:35 - 2017-07-19 20:35 - 000000017 _____ () C:\Users\digital land\AppData\Local\resmon.resmoncfg Fichiers à déplacer ou supprimer: ==================== C:\Windows\Tasks\{58A091AB-EF46-2B07-9C39-22FA7A727B36}.job ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2018-01-20 17:08 ==================== Fin de FRST.txt ============================