Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 24.10.2018 Exécuté par Jean-Marie (administrateur) sur LFS_HYPER_UEFM (05-11-2018 08:46:03) Exécuté depuis C:\Users\Jean-Marie\Desktop Profils chargés: Jean-Marie & postgres (Profils disponibles: Jean-Marie & postgres) Platform: Windows 8 (X64) Langue: Français (France) Internet Explorer Version 10 (Navigateur par défaut: "C:\Program Files\Firefox Nightly\firefox.exe" -osint -url "%1") Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCAvSvc.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe (arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe () C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe (Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\Monitor.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON\MyEpson Portal\mep.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe (Corel Corporation) C:\Program Files\WinZip\WinZip Smart Monitor\WinZipCompressionSmartMonitor.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCService.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mathias Svensson) Z:\MultiCommander_x64_Portable_(8.3.0.2469)\MultiCommander.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Symantec Corporation) C:\Program Files (x86)\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\A5E82D02\20.6.0.27\inststub.exe (Symantec Corporation) C:\Users\Jean-Marie\Downloads\NRnR(1).exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17516_none_6276a5b950d43361\TiWorker.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2670056 2018-09-10] (Adobe Systems, Incorporated) HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [117760 2017-11-02] (WinZip Computing, S.L.) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3268176 2018-09-10] (Dominik Reichl) HKLM-x32\...\Run: [SDTray] => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2018-09-13] (Adobe Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3785536 2018-10-31] (Dropbox, Inc.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [YouCam Service8] => C:\Program Files (x86)\CyberLink\YouCam8\YouCamService8.exe [405176 2018-09-27] (CyberLink Corp.) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILPE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Run: [WallpaperHd] => C:\Users\Jean-Marie\AppData\Local\WallpaperHd\WallpaperHd.exe [1830912 2018-06-28] (WallpaperHd) HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Run: [Chromium] => c:\users\jean-marie\appdata\local\chromium\application\chrome.exe [4149760 2017-09-22] (The Chromium Authors) HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Run: [GoogleChromeAutoLaunch_E9AFBAF478AF4722057287C56E730AF4] => C:\Users\Jean-Marie\AppData\Local\chromium\Application\chrome.exe [4149760 2017-09-22] (The Chromium Authors) HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Run: [Advanced SystemCare Ultimate] => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCTray.exe [3703568 2018-08-15] (IObit) HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Policies\Explorer: [TaskbarNoResize] 1 HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Policies\Explorer: [ConfirmFileDelete] 1 HKU\S-1-5-21-324915258-2866797553-3726413251-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 AppInit_DLLs: C:\PROGRA~2\KEYCRY~1\KEYCRY~4.DLL => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll [94568 2017-01-19] (Zemana Ltd.) AppInit_DLLs-x32: C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt32(1).dll [85864 2017-01-19] (Zemana Ltd.) Startup: C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Baidu PC Faster Uninstall 4.0.0.0.lnk [2018-10-31] ShortcutTarget: Baidu PC Faster Uninstall 4.0.0.0.lnk -> C:\Users\Jean-Marie\AppData\Roaming\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall\0\InstallUtility.dll", _OpenUrl -run "Baidu PC Faster Uninstall" -ini "OpenUrl.ini (Pas de fichier) Startup: C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Baidu PC Faster Uninstall HK 4.0.0.0.lnk [2018-10-31] ShortcutTarget: Baidu PC Faster Uninstall HK 4.0.0.0.lnk -> C:\Users\Jean-Marie\AppData\Roaming\Baidu Security\PC Faster\4.0.0.0\Uninstall\Baidu PC Faster Uninstall HK\0\InstallUtility.dll", _OpenUrl -run "Baidu PC Faster Uninstall HK" -ini "OpenUrl.ini (Pas de fichier) Startup: C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Continue repair 2018-09-25 08.59.58.273.lnk [2018-09-25] GroupPolicy: Restriction ? <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => Pas de fichier Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B389AB24-C362-4FAB-B29C-601C91B5A911}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/CQDSK13/3 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/CQDSK13/3 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/3 HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-324915258-2866797553-3726413251-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-324915258-2866797553-3726413251-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://samsung17win10.msn.com/?pc=SMTE HKU\S-1-5-21-324915258-2866797553-3726413251-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/CQDSK13/3 HKU\S-1-5-21-324915258-2866797553-3726413251-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/CQDSK13/3 URLSearchHook: [S-1-5-21-324915258-2866797553-3726413251-1001] ATTENTION => URLSearchHook par défaut est absent URLSearchHook: [S-1-5-21-324915258-2866797553-3726413251-1004] ATTENTION => URLSearchHook par défaut est absent SearchScopes: HKLM -> DefaultScope la valeur est absente SearchScopes: HKLM -> {5BD8BA7A-83E9-4F8F-B045-4ACBBE3EDF7D} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPDTDF SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente SearchScopes: HKLM-x32 -> {5BD8BA7A-83E9-4F8F-B045-4ACBBE3EDF7D} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPDTDF SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} SearchScopes: HKU\S-1-5-21-324915258-2866797553-3726413251-1001 -> {5BD8BA7A-83E9-4F8F-B045-4ACBBE3EDF7D} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKU\S-1-5-21-324915258-2866797553-3726413251-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPDTDF SearchScopes: HKU\S-1-5-21-324915258-2866797553-3726413251-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} SearchScopes: HKU\S-1-5-21-324915258-2866797553-3726413251-1004 -> {5BD8BA7A-83E9-4F8F-B045-4ACBBE3EDF7D} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKU\S-1-5-21-324915258-2866797553-3726413251-1004 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPDTDF SearchScopes: HKU\S-1-5-21-324915258-2866797553-3726413251-1004 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms} BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-05-02] (IObit) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-09-13] (Oracle Corporation) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-09-13] (Oracle Corporation) BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION) BHO-x32: Pas de nom -> {53707962-6F74-2D53-2644-206D7942484F} -> Pas de fichier BHO-x32: Pas de nom -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> Pas de fichier BHO-x32: Pas de nom -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Pas de fichier Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation) Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION) FireFox: ======== FF DefaultProfile: 5786dgji.default FF DefaultProfile: yl1whhtm.default FF ProfilePath: C:\Users\Jean-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\5786dgji.default [2018-11-05] FF Homepage: Mozilla\Firefox\Profiles\5786dgji.default -> moz-extension://382c7132-4974-47bd-b630-f7984773f2b9/newtab/newtab.html FF HomepageOverride: Mozilla\Firefox\Profiles\5786dgji.default -> Enabled: web@10722358-d56d-4f5e-a89c-d4534d7c5565 FF NewTabOverride: Mozilla\Firefox\Profiles\5786dgji.default -> Enabled: web@10722358-d56d-4f5e-a89c-d4534d7c5565 FF Extension: (Search Encrypt - A Private Search Engine) - C:\Users\Jean-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\5786dgji.default\Extensions\@searchencrypt.xpi [2018-11-04] FF Extension: (MonConvertisseur) - C:\Users\Jean-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\5786dgji.default\Extensions\web@10722358-d56d-4f5e-a89c-d4534d7c5565.xpi [2018-11-04] FF Extension: (Telemetry coverage) - C:\Users\Jean-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\5786dgji.default\features\{d909af51-744b-4b7e-939a-cc23d1b5d116}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-25] [Legacy] FF ProfilePath: C:\Users\Jean-Marie\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\yl1whhtm.default [2018-10-31] FF ProfilePath: C:\Users\Jean-Marie\AppData\Roaming\K-Meleon\ryv5qnk7.default [2018-09-18] FF user.js: detected! => C:\Users\Jean-Marie\AppData\Roaming\K-Meleon\ryv5qnk7.default\user.js [2006-04-06] FF Extension: (NewsFox) - C:\Program Files (x86)\K-Meleon\browser\extensions\{899DF1F8-2F43-4394-8315-37F6744E6319}.xpi [2015-03-12] [Legacy] [non signé] FF HKLM-x32\...\Firefox\Extensions: [{4963C948-9C4E-40B8-9291-CE0234B47210}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2018-10-28] [Legacy] [non signé] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-13] () FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-09-13] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-09-13] (Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-13] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_45 -> C:\Windows\SysWOW64\npdeployJava1.dll [2018-10-09] (Sun Microsystems, Inc.) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-28] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-09-08] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-09-08] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-08-02] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems) StartMenuInternet: Firefox-6F193CCC56814779 - C:\Program Files\Firefox Nightly\firefox.exe Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://search.mysearch.com/web?q={searchTerms}&redirect=CYV CHR DefaultSearchKeyword: Default -> Mysearch CHR DefaultSuggestURL: Default -> hxxps://lss.sse-iacapps.com/lss/api?token=be3b0df7-25c9-39e3-86fb-ba89d85a0912&q={searchTerms} CHR Profile: C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default [2018-11-04] CHR Extension: (Slides) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-03] CHR Extension: (Docs) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-03] CHR Extension: (Google Drive) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-03] CHR Extension: (Norton Security Toolbar) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc [2018-11-03] CHR Extension: (YouTube) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-03] CHR Extension: (MySearch) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcebahaopmklkfaaacddffiomjjldmkk [2018-11-03] CHR Extension: (Sheets) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-03] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-11-03] CHR Extension: (Google Docs hors connexion) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-03] CHR Extension: (Gmail) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-11-03] CHR Extension: (Chrome Media Router) - C:\Users\Jean-Marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-03] CHR HKLM\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx CHR HKLM\...\Chrome\Extension: [fcebahaopmklkfaaacddffiomjjldmkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-324915258-2866797553-3726413251-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcebahaopmklkfaaacddffiomjjldmkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx CHR HKLM-x32\...\Chrome\Extension: [fcebahaopmklkfaaacddffiomjjldmkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) HKLM\SYSTEM\CurrentControlSet\Services\avgSP <==== ATTENTION (Rootkit!) HKLM\SYSTEM\CurrentControlSet\Services\avgMonFlt <==== ATTENTION (Rootkit!) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Inc.) R2 AdvancedSystemCareService11; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASCService.exe [1066256 2018-03-28] (IObit) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2910696 2018-09-10] (Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2704872 2018-09-10] (Adobe Systems, Incorporated) R2 ASCAntivirusSrv; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ascavsvc.exe [1990928 2018-01-18] (IObit) S3 BitlockerAnywhere; C:\Program Files\Hasleo\BitLocker Anywhere\bin\BitlockerAnywhereService.exe [1665536 2018-09-29] (Hasleo Software) [Fichier non signé] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-11] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-11] (Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-10-31] (Dropbox, Inc.) R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe [1841344 2018-01-19] (Disc Soft Ltd) R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [3065608 2018-10-17] (Comodo) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation) S3 GSService; C:\Windows\SysWOW64\GSService.exe [490208 2013-05-15] () S3 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [136512 2018-09-12] (SurfRight B.V.) R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [85504 2012-08-15] (Hewlett-Packard Company) [Fichier non signé] S3 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard) S3 HPRegistrationSvc; c:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe [205216 2012-07-18] (Hewlett-Packard) S3 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] () [Fichier non signé] S3 imdsksvc; C:\Windows\system32\imdsksvc.exe [22024 2018-01-08] (Olof Lagerkvist) S3 imdsksvc; C:\Windows\SysWOW64\imdsksvc.exe [22024 2018-01-08] (Olof Lagerkvist) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [149776 2018-06-28] (IObit) S3 KvAppService; C:\Program Files (x86)\Keepvid\KAF\2.4.2.222\KvAppService.exe [474824 2017-03-10] (Keepvid) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION) S3 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [432776 2018-06-28] (Geek Software GmbH) R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (arvato digital services llc) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc) S3 QFXUpdateService; C:\Program Files (x86)\KeyScrambler\x64\QFXUpdateService.exe [86544 2017-04-23] () R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [628920 2018-09-03] (CyberLink) S3 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [328344 2018-07-09] (Sandboxie Holdings, LLC) S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-08-13] (TeamViewer GmbH) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation) R2 WinZip Compression Smart Monitor Service; C:\Program Files\WinZip\WinZip Smart Monitor\WinZip Compression Smart Monitor Service.exe [495872 2017-09-01] () S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe [474768 2017-03-01] (Wondershare) S3 WsDrvInst; C:\Program Files (x86)\Keepvid\KeepVid Music\DriverInstall.exe [109688 2018-02-03] (Wondershare) S3 ZAMSvc; C:\Program Files (x86)\Zemana AntiLogger\ZAM.exe [15775888 2017-08-09] (Copyright 2017.) S2 ZinstallBackupService; C:\Program Files (x86)\Zinstall Backup\ZinstallBackupService.exe [14858512 2017-11-21] (Zinstall.com) S3 AQFileRestoreSrv; "C:\Program Files (x86)\Avanquest\SystemSuite\AQFileRestoreSrv.exe" [X] S3 postgresql-x64-9.5; "C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.5" -D "C:\Program Files\PostgreSQL\9.5\data" -w S2 SDWSCService; "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe" [X] S3 SystemSuite Task Manager; C:\PROGRA~2\AVANQU~1\SYSTEM~1\MxTask.exe -Service [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [163392 2018-03-16] (RedFox) S3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [163392 2018-03-16] (RedFox) R0 apmwin; C:\Windows\System32\DRIVERS\apmwin.sys [39568 2017-08-31] (Paragon Software Group) U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2013-03-05] (Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL) S3 AQFileRestore; C:\Windows\System32\DRIVERS\AQFileRestore.sys [22088 2015-07-20] () S2 Aspi32; C:\Windows\SysWow64\Drivers\Aspi32.sys [25244 1999-09-10] (Adaptec) S3 awealloc; C:\Windows\system32\drivers\awealloc.sys [28256 2018-01-08] (Olof Lagerkvist) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink) R3 clwvd8; C:\Windows\system32\DRIVERS\clwvd8.sys [61056 2018-08-23] (CyberLink Corporation) R3 cpuz143; C:\Windows\temp\cpuz143\cpuz143_x64.sys [48960 2018-11-04] (CPUID) S2 csvol; C:\Windows\system32\DRIVERS\csvol.sys [37200 2017-08-31] (Paragon Software Group) S3 DFX11_1; C:\Windows\system32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows (R) Win 7 DDK provider) R3 DFX12; C:\Windows\system32\drivers\dfx12x64.sys [29688 2018-03-08] (Windows (R) Win 7 DDK provider) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.) R3 dtproscsibus; C:\Windows\System32\drivers\dtproscsibus.sys [30264 2018-09-15] (Disc Soft Ltd) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2018-09-15] (Disc Soft Ltd) R1 epp; C:\EEK\bin64\epp.sys [142952 2018-10-04] (Emsisoft Ltd) R1 googledrivefs2454; C:\Windows\System32\DRIVERS\googledrivefs2454.sys [106232 2018-07-18] (Google, Inc.) R0 gpt_loader; C:\Windows\System32\DRIVERS\gpt_loader.sys [70480 2017-08-31] () R1 GUSBootStartup; C:\Windows\System32\drivers\GUSBootStartup.sys [28936 2018-09-08] (Glarysoft Ltd) S3 hfsplus; C:\Windows\System32\DRIVERS\hfsplus.sys [208208 2017-08-31] (Paragon Software Group) R2 HfsplusRec; C:\Windows\System32\DRIVERS\hfsplusrec.sys [25936 2017-08-31] (Paragon Software Group) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-04-20] (Huawei Technologies Co., Ltd.) S3 imdisk; C:\Windows\system32\drivers\imdisk.sys [64096 2018-01-08] (Olof Lagerkvist) R3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\Monitor_win7_x64.sys [14680 2016-12-21] (IObit) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19312 2018-05-12] (IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [25488 2018-05-15] (IObit) R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [161408 2017-03-22] (Zemana Ltd.) R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [233248 2017-02-19] (QFX Software Corporation) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [260480 2018-11-04] (Malwarebytes) R0 mounthlp; C:\Windows\System32\DRIVERS\mounthlp.sys [57488 2017-08-31] (Paragon Software Group) R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2010-07-16] (CACE Technologies, Inc.) S3 rzc7359za; C:\Windows\system32\drivers\zinstall_z77\rzc7359za.sys [255072 2018-01-08] (rzc7359za Foundation) S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [228176 2018-07-09] (Sandboxie Holdings, LLC) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.) U3 TrueSight; C:\Windows\System32\Drivers\truesight.sys [28272 2018-09-16] () S3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [520032 2016-11-02] (BitDefender S.R.L.) R2 UI5IFS; C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 7\IFS64.sys [30016 2017-11-17] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation) R3 WsAudio_Device; C:\Windows\system32\drivers\VirtualAudio.sys [39112 2018-01-19] (Wondershare) R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-10-04] (Zemana Ltd.) R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-10-04] (Zemana Ltd.) S3 ardrv; \??\C:\Users\Jean-Marie\AppData\Local\Temp\ardrv.sys [X] <==== ATTENTION U1 aswbdisk; pas de ImagePath U3 avgbdisk; pas de ImagePath S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X] S3 catchme; \??\C:\combofix_18.8.8.1\catchme.sys [X] U0 Compbatt; pas de ImagePath U2 ERSvc; pas de ImagePath S3 GUMHFilters; \??\C:\Program Files (x86)\Glarysoft\Malware Hunter\Native\winxp_x64\GUMHFilter.sys [X] U2 IAStorDataMgrsvc; pas de ImagePath S1 IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit MBR Guard\drivers\win7_amd64\IMFMBRProtect.sys [X] S3 mfesapsn; \??\C:\Program Files\McAfee\WebAdvisor\mfesapsn.sys [X] U2 NIHardwareService; pas de ImagePath U2 NVSvc; pas de ImagePath U2 Parvdm; pas de ImagePath U2 srService; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-11-05 08:41 - 2018-11-05 08:41 - 000000000 ____D C:\Windows\System32\Tasks\Norton Remove and Reinstall 2018-11-05 08:38 - 2018-11-05 08:38 - 012751888 _____ (Symantec Corporation) C:\Users\Jean-Marie\Downloads\NRnR(1).exe 2018-11-05 08:38 - 2018-11-05 08:38 - 000000000 ____D C:\ProgramData\NortonRnR 2018-11-05 08:36 - 2018-11-05 08:36 - 014797392 _____ (Symantec Corporation) C:\Users\Jean-Marie\Downloads\NRnR.exe 2018-11-04 19:31 - 2018-11-04 19:34 - 000077381 _____ C:\Users\Jean-Marie\Desktop\Addition.txt 2018-11-04 19:28 - 2018-11-05 08:46 - 000032870 _____ C:\Users\Jean-Marie\Desktop\FRST.txt 2018-11-04 19:28 - 2018-11-05 08:46 - 000000000 ____D C:\FRST 2018-11-04 19:28 - 2018-11-04 19:35 - 002414592 _____ (Farbar) C:\Users\Jean-Marie\Downloads\FRST64.exe 2018-11-04 19:27 - 2018-11-04 19:27 - 002414592 _____ (Farbar) C:\Users\Jean-Marie\Desktop\FRST64.exe 2018-11-04 13:49 - 2018-11-04 13:49 - 000002428 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Jean-Marie 2018-11-04 13:49 - 2018-11-04 13:49 - 000001367 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk 2018-11-04 13:49 - 2018-11-04 13:49 - 000001355 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk 2018-11-04 13:49 - 2018-11-04 13:49 - 000000318 _____ C:\Windows\Tasks\Uninstaller_SkipUac_Jean-Marie.job 2018-11-04 13:49 - 2018-11-04 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller 2018-11-04 13:38 - 2018-11-04 13:38 - 000715810 ____R C:\QuickDiag_04_11_2018_13_38_13.txt 2018-11-04 13:15 - 2018-11-04 13:38 - 000715810 ____R C:\Users\Jean-Marie\Desktop\QuickDiag_04_11_2018_13_38_13.txt 2018-11-04 13:15 - 2018-11-04 13:38 - 000000000 ____D C:\QuickDiag 2018-11-04 12:41 - 2018-11-04 12:41 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\AVG 2018-11-04 12:36 - 2018-11-04 12:36 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\Avg 2018-11-04 12:33 - 2018-11-04 12:33 - 000007208 _____ C:\Users\Jean-Marie\Desktop\AdwCleaner[C02].txt 2018-11-04 12:33 - 2018-11-03 10:18 - 000467760 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw 7ba4fe62625b04d.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000380992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw283862b9f3b48851.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000208488 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw8e2015001e2a241d.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000201264 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswf0e62103903f6271.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000163224 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw1605449d23bac19a.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000111816 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw24e4570c8f475f49.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000087968 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw864914e2acaf5bf7.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000046920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw8348f342f4c93517.tmp 2018-11-04 12:33 - 2018-11-03 10:18 - 000042312 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswcd0fc0bb87a11d93.tmp 2018-11-04 12:33 - 2018-11-03 10:17 - 001028696 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw9c272968b28f48e9.tmp 2018-11-04 12:33 - 2018-11-03 10:16 - 000346616 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw257c088bd984c913.tmp 2018-11-04 12:33 - 2018-11-03 10:16 - 000230880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw48fef9159eb53c52.tmp 2018-11-04 12:33 - 2018-11-03 10:16 - 000202296 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswcf6bee32d65b4bf0.tmp 2018-11-04 12:33 - 2018-11-03 10:16 - 000059520 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswb2cd8d92aa1e50ad.tmp 2018-11-04 12:32 - 2018-11-04 12:32 - 000000000 ____D C:\ProgramData\ProcessLasso 2018-11-04 12:31 - 2018-11-04 12:31 - 000260480 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2018-11-04 12:30 - 2018-11-05 08:46 - 000242472 _____ C:\Windows\ZAM.krnl.trace 2018-11-04 12:30 - 2018-11-05 08:46 - 000214820 _____ C:\Windows\ZAM_Guard.krnl.trace 2018-11-04 11:57 - 2018-11-04 11:57 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Jean-Marie\Downloads\rkill(1).exe 2018-11-04 01:03 - 2018-11-04 12:28 - 000000000 ____D C:\Users\Default\AppData\Roaming\IObit 2018-11-04 01:03 - 2018-11-04 12:28 - 000000000 ____D C:\Users\Default User\AppData\Roaming\IObit 2018-11-03 14:47 - 2018-11-03 14:47 - 009314127 _____ C:\Users\Jean-Marie\Downloads\MultiCommander_x64_Portable_(8.3.0.2469).zip 2018-11-03 14:47 - 2018-11-03 14:47 - 000001790 _____ C:\Users\Public\Desktop\MultiCommander (x64).lnk 2018-11-03 14:46 - 2018-11-03 14:46 - 000000000 ____D C:\Users\Jean-Marie\Downloads\explorer++_1.3.5_x64 2018-11-03 14:45 - 2018-11-03 14:45 - 000709805 _____ C:\Users\Jean-Marie\Downloads\explorer++_1.3.5_x64.zip 2018-11-03 14:36 - 2018-11-03 14:36 - 000000802 _____ C:\Users\Public\Desktop\DiskGenius.lnk 2018-11-03 14:36 - 2018-11-03 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskGenius 2018-11-03 14:36 - 2018-11-03 14:36 - 000000000 ____D C:\Program Files\DiskGenius 2018-11-03 13:01 - 2018-11-04 13:49 - 000000000 ____D C:\ProgramData\ProductData 2018-11-03 13:01 - 2018-11-03 13:01 - 000003066 _____ C:\Windows\System32\Tasks\ASCU11_PerformanceMonitor 2018-11-03 13:01 - 2018-11-03 13:01 - 000000000 ____D C:\ProgramData\BDLogging 2018-11-03 13:01 - 2016-11-02 19:11 - 000520032 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2018-11-03 13:00 - 2018-11-04 12:34 - 000000000 ____D C:\Users\Jean-Marie\AppData\LocalLow\IObit 2018-11-03 13:00 - 2018-11-03 13:00 - 000002866 _____ C:\Windows\System32\Tasks\ASCU11_SkipUac_Jean-Marie 2018-11-03 13:00 - 2018-11-03 13:00 - 000000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} 2018-11-03 13:00 - 2018-11-03 13:00 - 000000000 ____D C:\ProgramData\{7F40DE3E-8294-4E24-B2EA-80F6C6BB173C} 2018-11-03 12:59 - 2018-11-04 12:34 - 000002383 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 11.lnk 2018-11-03 12:59 - 2018-11-03 12:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 2018-11-03 12:56 - 2018-11-04 13:48 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\IObit 2018-11-03 12:56 - 2018-11-04 13:48 - 000000000 ____D C:\Program Files (x86)\IObit 2018-11-03 12:46 - 2018-11-04 13:49 - 000000000 ____D C:\ProgramData\IObit 2018-11-03 12:36 - 2018-11-03 12:36 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\Remove_Empty_Directories 2018-11-03 11:27 - 2018-11-03 12:21 - 001174200 _____ (CyberLink) C:\Users\Jean-Marie\Downloads\CyberLink_YouCam_Downloader.exe 2018-11-03 10:32 - 2018-11-03 10:32 - 000001883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk 2018-11-03 10:32 - 2018-11-03 10:32 - 000001783 _____ C:\Users\Public\Desktop\WinZip.lnk 2018-11-03 10:29 - 2018-11-03 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 22.0 2018-11-03 10:29 - 2018-11-03 10:32 - 000000000 ____D C:\Program Files\WinZip 2018-11-03 10:29 - 2018-11-03 10:29 - 000000000 ____D C:\Windows\System32\Tasks\AVG 2018-11-03 10:20 - 2018-11-03 10:18 - 000467760 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswdb2b58bacd948b2a.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000380992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw98051779f9369736.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000208488 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw9143c99b5dc5a0bb.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000201264 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswd19cd08bc56bb5b8.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000163224 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw89df356a29fdc7c6.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000111816 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswf459de99217e938b.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000087968 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw5599c699d365287b.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000046920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw12b44cd370f61f46.tmp 2018-11-03 10:20 - 2018-11-03 10:18 - 000042312 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswa63611fb7774304d.tmp 2018-11-03 10:20 - 2018-11-03 10:17 - 001028696 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\aswd40fe084d5a679a8.tmp 2018-11-03 10:20 - 2018-11-03 10:16 - 000346616 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw4cd23b6be8c02440.tmp 2018-11-03 10:20 - 2018-11-03 10:16 - 000230880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw 48f7cdf22458e80.tmp 2018-11-03 10:20 - 2018-11-03 10:16 - 000202296 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw42201c13d240c199.tmp 2018-11-03 10:20 - 2018-11-03 10:16 - 000059520 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw45be055686bca11b.tmp 2018-11-03 10:19 - 2018-11-03 10:19 - 000000000 ____D C:\Program Files\Common Files\AVG 2018-11-03 10:17 - 2018-11-03 10:17 - 000002294 _____ C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk 2018-11-03 10:17 - 2018-11-03 10:17 - 000002286 _____ C:\Users\Jean-Marie\Desktop\Chromium.lnk 2018-11-03 10:16 - 2018-11-03 10:19 - 000000000 ____D C:\Program Files\TAP-Windows 2018-11-03 10:15 - 2018-11-03 10:17 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\chromium 2018-11-03 10:13 - 2018-11-05 08:31 - 000000000 ____D C:\Program Files\AVG 2018-11-03 10:13 - 2018-11-04 14:28 - 000000000 ____D C:\ProgramData\AVG 2018-11-03 10:13 - 2018-11-03 10:18 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\{C4B6F2EA-E01E-9E52-8D86-BBBAA9EE4722} 2018-11-03 10:13 - 2018-11-03 10:13 - 000001383 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HowToRemove.lnk 2018-11-03 10:12 - 2018-11-03 10:12 - 000000806 _____ C:\Users\Jean-Marie\Desktop\cyberlink_youcam.lnk 2018-11-03 10:11 - 2018-11-03 10:11 - 001167056 _____ (CyberLink) C:\Users\Jean-Marie\Downloads\cyberlink_youcam.exe 2018-11-03 10:11 - 2018-11-03 10:11 - 000003692 _____ C:\Windows\System32\Tasks\Goodgame Empire2 2018-11-03 10:11 - 2018-11-03 10:11 - 000003692 _____ C:\Windows\System32\Tasks\Goodgame Empire1 2018-11-03 10:11 - 2018-11-03 10:11 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Goodgame Empire 2018-11-03 10:11 - 2018-11-03 10:11 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Goodgame Empire 2018-11-01 19:13 - 2018-11-01 19:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2018-10-31 12:42 - 2018-10-31 12:42 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2018-10-31 12:42 - 2018-10-31 12:42 - 000047768 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2018-10-31 12:42 - 2018-10-31 12:42 - 000047768 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2018-10-31 12:42 - 2018-10-31 12:42 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2018-10-31 07:53 - 2018-10-31 07:53 - 000000000 ____D C:\ProgramData\ZiBackup 2018-10-31 07:36 - 2018-10-31 07:36 - 000000821 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall 6.lnk 2018-10-31 07:36 - 2018-10-31 07:36 - 000000809 _____ C:\Users\Public\Desktop\Total Uninstall 6.lnk 2018-10-31 07:36 - 2018-10-31 07:36 - 000000016 _____ C:\ProgramData\mntemp 2018-10-31 07:36 - 2018-10-31 07:36 - 000000000 ____D C:\ProgramData\Martau 2018-10-31 07:36 - 2018-10-31 07:36 - 000000000 ____D C:\Program Files\Total Uninstall 6 2018-10-31 07:34 - 2018-10-31 07:35 - 026284968 _____ (Gavrila Martau ) C:\Users\Jean-Marie\Documents\Total-Uninstall-Setup-6.26.0.exe 2018-10-31 03:20 - 2018-10-31 03:20 - 000079245 _____ C:\Users\Jean-Marie\Desktop\AdsFix_31_10_2018_03_20_35.txt 2018-10-30 15:30 - 2018-10-30 15:30 - 000002239 _____ C:\Users\Public\Desktop\Video Explosion Ultimate.lnk 2018-10-30 15:07 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2018-10-30 15:07 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2018-10-30 15:07 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2018-10-30 15:07 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2018-10-30 15:07 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2018-10-30 15:07 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2018-10-30 15:07 - 2008-07-12 08:18 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2018-10-30 15:07 - 2008-07-12 08:18 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2018-10-30 15:07 - 2008-07-12 08:18 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2018-10-30 15:07 - 2008-07-12 08:18 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2018-10-30 15:07 - 2008-07-12 08:18 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2018-10-30 15:07 - 2008-07-12 08:18 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2018-10-30 15:06 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2018-10-30 15:06 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2018-10-30 15:06 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2018-10-30 15:06 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2018-10-30 15:06 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2018-10-30 15:06 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2018-10-30 15:06 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2018-10-30 15:06 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2018-10-30 15:06 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2018-10-30 15:06 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2018-10-30 15:06 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2018-10-30 15:06 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2018-10-30 15:06 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2018-10-30 15:06 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2018-10-30 15:06 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2018-10-30 15:06 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2018-10-30 15:06 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2018-10-30 15:06 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2018-10-30 15:06 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2018-10-30 15:06 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2018-10-30 15:05 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2018-10-30 15:05 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2018-10-30 15:05 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2018-10-30 15:05 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2018-10-30 15:05 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2018-10-30 15:05 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2018-10-30 15:05 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2018-10-30 15:05 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2018-10-30 15:05 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2018-10-30 15:05 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2018-10-30 15:05 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2018-10-30 15:05 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2018-10-30 15:05 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2018-10-30 15:05 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2018-10-30 15:05 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2018-10-30 15:05 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2018-10-30 15:05 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2018-10-30 15:05 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2018-10-30 15:05 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2018-10-30 15:05 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2018-10-30 15:05 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2018-10-30 15:05 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2018-10-30 15:04 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2018-10-30 15:04 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2018-10-30 15:04 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2018-10-30 15:04 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2018-10-30 15:04 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2018-10-30 15:04 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2018-10-30 15:04 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2018-10-30 15:04 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2018-10-30 15:04 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2018-10-30 15:04 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2018-10-30 15:04 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2018-10-30 15:04 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2018-10-30 15:03 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2018-10-30 15:03 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2018-10-30 15:03 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2018-10-30 15:03 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2018-10-30 15:03 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2018-10-30 15:03 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2018-10-30 15:03 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2018-10-30 15:03 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2018-10-30 15:03 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2018-10-30 15:03 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2018-10-30 15:03 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2018-10-30 15:03 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2018-10-30 15:03 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2018-10-30 15:03 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2018-10-30 15:03 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2018-10-30 15:03 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2018-10-30 15:02 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2018-10-30 15:02 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2018-10-30 15:02 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2018-10-30 15:02 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2018-10-30 15:02 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2018-10-30 15:02 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2018-10-30 15:02 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2018-10-30 15:02 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2018-10-30 15:02 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2018-10-30 15:02 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2018-10-30 15:02 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2018-10-30 15:02 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2018-10-30 15:02 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2018-10-30 15:02 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2018-10-30 15:02 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2018-10-30 15:02 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2018-10-30 15:01 - 2018-10-30 15:01 - 005726616 _____ (SosVirus) C:\Users\Jean-Marie\Desktop\adsfix_V5_04.09.18.1.exe 2018-10-30 15:00 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2018-10-30 15:00 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2018-10-30 15:00 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2018-10-30 15:00 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2018-10-30 15:00 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2018-10-30 15:00 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2018-10-30 15:00 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2018-10-30 15:00 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2018-10-30 15:00 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2018-10-30 15:00 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2018-10-30 15:00 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2018-10-30 15:00 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2018-10-30 15:00 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2018-10-30 15:00 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2018-10-30 15:00 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2018-10-30 14:59 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2018-10-30 14:59 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2018-10-30 14:59 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2018-10-30 14:55 - 2018-10-30 14:55 - 000000921 _____ C:\Users\Jean-Marie\Desktop\A4Desk.lnk 2018-10-30 14:55 - 2018-10-30 14:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A4Desk 2018-10-30 14:55 - 2018-10-30 14:55 - 000000000 ____D C:\Program Files (x86)\A4Desk 2018-10-30 14:46 - 2018-10-30 14:46 - 000001037 _____ C:\Users\postgres.LFS_Hyper_UEFM\Desktop\PDF-to-HTML Demo.lnk 2018-10-30 14:46 - 2018-10-30 14:46 - 000001037 _____ C:\Users\Jean-Marie\Desktop\PDF-to-HTML Demo.lnk 2018-10-30 14:46 - 2018-10-30 14:46 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PDF-to-Word 2018-10-30 14:46 - 2018-10-30 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-to-Word 2018-10-30 14:46 - 2018-10-30 14:46 - 000000000 ____D C:\Program Files (x86)\PDF-to-Word 2018-10-30 14:45 - 2018-10-30 14:45 - 000001177 _____ C:\Users\Public\Desktop\Online Video Recorder.lnk 2018-10-30 14:45 - 2018-10-30 14:45 - 000001100 _____ C:\Users\Public\Desktop\AnyMedia Player.lnk 2018-10-30 14:45 - 2018-10-30 14:45 - 000001037 _____ C:\Users\postgres.LFS_Hyper_UEFM\Desktop\PDF-to-Excel Demo.lnk 2018-10-30 14:45 - 2018-10-30 14:45 - 000001037 _____ C:\Users\Jean-Marie\Desktop\PDF-to-Excel Demo.lnk 2018-10-30 14:45 - 2018-10-30 14:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Video Recorder 2018-10-30 14:45 - 2018-10-30 14:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyMedia Player 2018-10-30 14:45 - 2018-10-30 14:45 - 000000000 ____D C:\Program Files (x86)\AnyMedia Player 2018-10-30 14:44 - 2018-10-30 14:45 - 000000000 ____D C:\Program Files (x86)\Online Video Recorder 2018-10-30 14:44 - 2013-05-15 18:34 - 000490208 _____ C:\Windows\SysWOW64\GSService.exe 2018-10-30 14:43 - 2018-10-30 14:43 - 000002657 _____ C:\ProgramData\Microsoft\Windows\Start Menu\NewsMailStudio.lnk 2018-10-30 14:43 - 2018-10-30 14:43 - 000002651 _____ C:\Users\Public\Desktop\NewsMailStudio.lnk 2018-10-30 14:43 - 2018-10-30 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ewaycom 2018-10-30 14:43 - 2018-10-30 14:43 - 000000000 ____D C:\ProgramData\Ewaycom 2018-10-30 14:43 - 2018-10-30 14:43 - 000000000 ____D C:\Program Files (x86)\Studio V5 2018-10-30 14:43 - 2018-10-30 14:43 - 000000000 ____D C:\Program Files (x86)\Ewaycom 2018-10-30 14:42 - 2018-10-30 14:42 - 000001273 _____ C:\Users\Jean-Marie\Desktop\eXpert PDF démo.lnk 2018-10-30 13:50 - 2018-10-30 13:50 - 000000000 ____D C:\Users\Jean-Marie\Documents\Avatar 2018-10-30 10:12 - 2018-10-30 10:13 - 000002054 _____ C:\Users\Public\Desktop\Digital Video Duplicator.lnk 2018-10-30 10:12 - 2018-10-30 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digital Video Duplicator 2018-10-30 10:12 - 2018-10-30 10:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XviD 2018-10-30 10:11 - 2018-10-30 10:12 - 000000000 ____D C:\Program Files (x86)\XviD 2018-10-30 10:11 - 2018-10-30 10:11 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Morgan Stream Switcher 2018-10-30 10:11 - 2018-10-30 10:11 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AC3Filter 2018-10-30 10:11 - 2018-10-30 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Morgan Stream Switcher 2018-10-30 10:11 - 2018-10-30 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter 2018-10-30 10:11 - 2018-10-30 10:11 - 000000000 ____D C:\Program Files (x86)\Morgan 2018-10-30 10:11 - 2018-10-30 10:11 - 000000000 ____D C:\Program Files (x86)\AC3Filter 2018-10-30 10:11 - 2003-04-02 23:17 - 000172032 _____ () C:\Windows\SysWOW64\ac3filter.cpl 2018-10-30 10:11 - 2002-11-08 15:18 - 000051712 _____ (Morgan Multimedia) C:\Windows\SysWOW64\MMSwitch.ax 2018-10-30 10:10 - 2018-10-30 10:10 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VobSub 2018-10-30 10:10 - 2018-10-30 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub 2018-10-30 10:10 - 2018-10-30 10:10 - 000000000 ____D C:\Program Files (x86)\WinASPI 2018-10-30 10:10 - 2018-10-30 10:10 - 000000000 ____D C:\Program Files (x86)\Gabest 2018-10-30 10:05 - 2003-03-19 05:44 - 000061440 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MFC71LOC.DLL 2018-10-30 10:05 - 1998-06-18 00:00 - 000089360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.DLL 2018-10-30 10:03 - 1998-06-17 18:07 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mfc42loc.dll 2018-10-30 08:51 - 2018-10-30 08:51 - 000000000 ____D C:\Users\Public\Documents\Cyberlink 2018-10-30 08:50 - 2018-10-30 10:08 - 000000000 ____D C:\Program Files (x86)\Digital Video Duplicator 2018-10-30 08:47 - 2018-10-30 08:47 - 000000000 ____D C:\Users\Jean-Marie\Documents\YouCam 2018-10-30 08:38 - 2018-10-30 08:38 - 000002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam 8.lnk 2018-10-30 08:38 - 2018-10-30 08:38 - 000001954 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam 8 Mirror.lnk 2018-10-30 08:38 - 2018-08-23 22:43 - 000061056 _____ (CyberLink Corporation) C:\Windows\system32\Drivers\clwvd8.sys 2018-10-30 08:31 - 2018-10-30 08:34 - 305486616 _____ C:\Users\Jean-Marie\Downloads\YouCam_8.0.0925.0a_Essential_Essential_YUC180820-01.exe 2018-10-30 07:17 - 2018-10-30 07:17 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\VOS 2018-10-28 12:32 - 2018-10-28 12:32 - 000000854 _____ C:\Users\Public\Desktop\Print CD.lnk 2018-10-28 12:31 - 2018-10-28 12:31 - 000002177 _____ C:\Users\Public\Desktop\Epson Easy Photo Print.lnk 2018-10-28 12:31 - 2018-10-28 12:31 - 000001386 _____ C:\Users\Public\Desktop\Manuels EPSON.lnk 2018-10-28 12:31 - 2018-10-28 12:31 - 000000000 ____D C:\ProgramData\UDL 2018-10-28 12:31 - 2018-10-28 12:31 - 000000000 ____D C:\ProgramData\Sony Corporation 2018-10-28 12:30 - 2018-10-28 12:30 - 000000932 _____ C:\Users\Public\Desktop\EPSON Scan.lnk 2018-10-28 12:30 - 2012-07-24 00:00 - 000466432 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll 2018-10-28 12:30 - 2012-05-17 00:00 - 000144560 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe 2018-10-28 12:29 - 2018-10-28 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2018-10-28 12:29 - 2018-10-28 12:29 - 000001068 _____ C:\Users\Public\Desktop\MyEpson Portal.lnk 2018-10-28 12:29 - 2018-10-28 12:29 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Epson 2018-10-28 12:21 - 2018-11-05 08:21 - 000000949 _____ C:\Windows\Tasks\EPSON XP-710 Series Update {2C6FA55B-2D45-4F1A-A7E2-2F5337CF461B}.job 2018-10-28 12:21 - 2018-11-05 08:21 - 000000763 _____ C:\Windows\Tasks\EPSON XP-710 Series Invitation {2C6FA55B-2D45-4F1A-A7E2-2F5337CF461B}.job 2018-10-28 12:21 - 2018-10-28 12:30 - 000000000 ____D C:\Program Files (x86)\EPSON 2018-10-28 12:21 - 2018-10-28 12:21 - 000003980 _____ C:\Windows\System32\Tasks\EPSON XP-710 Series Update {2C6FA55B-2D45-4F1A-A7E2-2F5337CF461B} 2018-10-28 12:21 - 2018-10-28 12:21 - 000003794 _____ C:\Windows\System32\Tasks\EPSON XP-710 Series Invitation {2C6FA55B-2D45-4F1A-A7E2-2F5337CF461B} 2018-10-28 11:05 - 2013-10-22 04:04 - 000179712 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMBLPE.DLL 2018-10-28 11:05 - 2011-03-15 03:03 - 000083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ID4BLPE.DLL 2018-10-28 11:05 - 2007-04-10 01:06 - 000010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL 2018-10-28 10:50 - 2018-10-28 10:50 - 000000000 ___RD C:\Users\Jean-Marie\Documents\Scanned Documents 2018-10-28 10:50 - 2018-10-28 10:50 - 000000000 ____D C:\Users\Jean-Marie\Documents\Fax 2018-10-27 08:51 - 2018-10-27 08:51 - 000003000 _____ C:\Windows\System32\Tasks\Process Lasso Core Engine Only 2018-10-27 08:51 - 2018-10-27 08:51 - 000002994 _____ C:\Windows\System32\Tasks\Process Lasso Management Console (GUI) 2018-10-25 12:46 - 2018-10-25 12:46 - 000000941 _____ C:\Users\Public\Desktop\PotPlayer 64 bit.lnk 2018-10-25 12:11 - 2018-10-25 12:11 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2018-10-16 04:46 - 2018-10-16 04:46 - 000003065 _____ C:\Users\Jean-Marie\Desktop\Zinstall Backup.lnk 2018-10-16 04:46 - 2018-10-16 04:46 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zinstall Backup 2018-10-16 04:44 - 2018-10-31 07:53 - 000000000 ____D C:\Program Files (x86)\Zinstall Backup 2018-10-16 04:41 - 2018-10-16 04:41 - 000000000 ____D C:\Windows\SysWOW64\Drivers\zinstall_z77 2018-10-16 04:41 - 2018-10-16 04:41 - 000000000 ____D C:\Windows\system32\Drivers\zinstall_z77 2018-10-16 04:41 - 2018-01-08 13:39 - 000022024 _____ (Olof Lagerkvist) C:\Windows\SysWOW64\imdsksvc.exe 2018-10-16 04:41 - 2018-01-08 13:39 - 000022024 _____ (Olof Lagerkvist) C:\Windows\system32\imdsksvc.exe 2018-10-16 04:41 - 2018-01-08 03:59 - 000064096 _____ (Olof Lagerkvist) C:\Windows\system32\Drivers\imdisk.sys 2018-10-16 04:41 - 2018-01-08 03:59 - 000028256 _____ (Olof Lagerkvist) C:\Windows\system32\Drivers\awealloc.sys 2018-10-16 04:38 - 2018-10-31 07:53 - 000000000 ____D C:\ProgramData\Zinstall 2018-10-15 07:17 - 2018-10-21 07:17 - 000000000 ____D C:\Users\Jean-Marie\Downloads\opera autoupdate 2018-10-13 06:00 - 2018-10-13 06:00 - 000000774 _____ C:\Users\Jean-Marie\Desktop\TeraCopy.lnk 2018-10-13 06:00 - 2018-10-13 06:00 - 000000000 ____D C:\Program Files\TeraCopy 2018-10-11 13:40 - 2018-10-11 13:40 - 000000290 __RSH C:\ProgramData\ntuser.pol 2018-10-11 08:06 - 2017-03-09 12:53 - 000030744 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys 2018-10-11 08:06 - 2016-03-25 13:33 - 000128288 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll 2018-10-11 08:06 - 2016-03-22 10:02 - 000036288 _____ (IObit) C:\Windows\system32\SmartDefragBootTime.exe 2018-10-11 07:58 - 2018-10-11 07:58 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled 2018-10-11 07:56 - 2018-10-11 07:57 - 031567080 _____ (IObit ) C:\Users\Jean-Marie\Downloads\advanced-systemcare-free_11-5-0-242_fr_403234.exe 2018-10-11 07:56 - 2018-10-11 07:57 - 031567080 _____ (IObit ) C:\Users\Jean-Marie\Downloads\advanced-systemcare-free_11-5-0-242_fr_403234(1).exe 2018-10-10 19:12 - 2018-10-10 19:13 - 010841808 _____ C:\Users\Jean-Marie\Downloads\OpenCodecSetup64(1).exe 2018-10-10 13:52 - 2018-10-10 13:52 - 003281280 _____ C:\Users\Jean-Marie\Desktop\ZHPCleaner(1).exe 2018-10-10 13:49 - 2018-10-10 13:49 - 010969720 _____ (ESET) C:\Users\Jean-Marie\Downloads\avremover_nt64_enu.exe 2018-10-10 13:37 - 2018-10-10 13:37 - 000002070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 10 (64-bit).lnk 2018-10-10 13:34 - 2018-10-10 13:34 - 000001982 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 17 (64-bit).lnk 2018-10-10 13:32 - 2018-10-10 13:32 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink ColorDirector 7 (64-bit).lnk 2018-10-10 13:30 - 2018-10-10 13:30 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink AudioDirector 9 (64-bit).lnk 2018-10-10 12:57 - 2018-10-10 13:27 - 1035970816 _____ C:\Users\Jean-Marie\Downloads\CyberLinkDirectorSuite7.0_Trial_DRS180831-01_TR180913-025.exe 2018-10-10 12:56 - 2018-10-10 12:56 - 001174200 _____ (CyberLink) C:\Users\Jean-Marie\Downloads\CyberLink_Director_Suite_Downloader(1).exe 2018-10-10 11:28 - 2018-10-10 11:28 - 000002225 _____ C:\Users\Jean-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk 2018-10-10 11:28 - 2018-10-10 11:28 - 000000000 ___RD C:\Users\Jean-Marie\SkyDrive 2018-10-10 11:21 - 2018-10-10 11:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasleo WinToUSB 2018-10-10 11:20 - 2018-10-10 11:20 - 005611432 _____ (Hasleo Software. ) C:\Users\Jean-Marie\Downloads\WinToUSB_Free.exe 2018-10-10 11:17 - 2018-10-10 11:17 - 001027128 _____ (Akeo Consulting) C:\Users\Jean-Marie\Downloads\rufus-3.3(1).exe 2018-10-10 10:40 - 2018-10-10 10:41 - 000000316 _____ C:\Windows\Tasks\Start InstallSafe Update.job 2018-10-10 10:40 - 2018-10-10 10:40 - 000000290 _____ C:\Windows\Tasks\Start InstallSafe Schedule.job 2018-10-10 10:39 - 2018-10-10 10:39 - 006732200 _____ (Corel Corporation) C:\Users\Jean-Marie\Downloads\StartMenuReviverSetup.exe 2018-10-10 10:38 - 2018-10-10 10:39 - 013740336 _____ (Corel Corporation) C:\Users\Jean-Marie\Downloads\InstallSafeSetup.exe 2018-10-09 06:20 - 2018-10-09 06:53 - 000000000 ____D C:\Users\Jean-Marie\Documents\WireShare 2018-10-09 05:24 - 2018-10-09 05:23 - 000477616 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\npdeployJava1.dll 2018-10-09 05:24 - 2018-10-09 05:23 - 000473520 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll 2018-10-09 05:14 - 2018-10-09 05:17 - 019119064 _____ (Microsoft Corporation) C:\Users\Jean-Marie\Downloads\MediaCreationTool1803.exe 2018-10-09 05:02 - 2018-10-09 05:09 - 017126066 _____ C:\Users\Jean-Marie\Downloads\WireShareWin-v5.6.6.zip 2018-10-09 01:41 - 2018-10-09 01:41 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\mbamtray 2018-10-09 01:28 - 2018-10-09 01:28 - 000001829 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2018-10-09 01:28 - 2018-10-09 01:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2018-10-09 01:27 - 2018-10-31 13:04 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2018-10-08 07:31 - 2018-10-08 07:32 - 000000000 ____D C:\ProgramData\Protexis64 2018-10-07 07:28 - 2018-10-07 07:28 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Corel ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-11-05 08:44 - 2018-09-28 04:07 - 000003980 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{894F9756-3BDE-4E8A-AC50-A7CC1E86F4AD} 2018-11-05 08:40 - 2013-03-05 00:49 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared 2018-11-05 08:40 - 2013-03-05 00:48 - 000000000 ____D C:\ProgramData\Norton 2018-11-05 08:40 - 2013-03-05 00:48 - 000000000 ____D C:\Program Files (x86)\Norton Internet Security 2018-11-05 08:39 - 2013-03-05 00:47 - 000000000 ____D C:\Program Files (x86)\NortonInstaller 2018-11-05 08:37 - 2018-09-06 19:36 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\CrashDumps 2018-11-05 08:26 - 2018-09-14 09:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2018-11-05 08:24 - 2018-09-11 04:59 - 000001224 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2018-11-05 08:23 - 2013-03-05 00:47 - 000000000 ____D C:\ProgramData\NortonInstaller 2018-11-05 08:21 - 2012-07-26 09:12 - 000000000 ____D C:\Windows\system32\FxsTmp 2018-11-04 14:09 - 2018-09-03 19:13 - 000000000 ____D C:\ProgramData\Package Cache 2018-11-04 12:47 - 2018-09-03 22:57 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2018-11-04 12:47 - 2018-09-03 18:18 - 000000000 ____D C:\Users\Jean-Marie\AppData\LocalLow\Mozilla 2018-11-04 12:36 - 2018-09-04 00:32 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\AVAST Software 2018-11-04 12:36 - 2013-03-05 08:54 - 000768504 _____ C:\Windows\system32\perfh00C.dat 2018-11-04 12:36 - 2013-03-05 08:54 - 000163926 _____ C:\Windows\system32\perfc00C.dat 2018-11-04 12:36 - 2012-07-26 08:28 - 001778962 _____ C:\Windows\system32\PerfStringBackup.INI 2018-11-04 12:36 - 2012-07-26 06:37 - 000000000 ____D C:\Windows\Inf 2018-11-04 12:32 - 2018-09-11 04:59 - 000001220 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2018-11-04 12:31 - 2012-07-26 08:22 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-11-04 12:29 - 2012-07-26 06:26 - 000262144 ___SH C:\Windows\system32\config\BBI 2018-11-04 12:00 - 2018-09-07 15:13 - 000003468 _____ C:\Users\Jean-Marie\Desktop\Rkill.txt 2018-11-03 15:24 - 2018-09-11 04:58 - 000000000 ____D C:\Program Files (x86)\Dropbox 2018-11-03 14:48 - 2018-09-08 07:14 - 000000000 ____D C:\Program Files (x86)\Google 2018-11-03 14:47 - 2018-09-09 16:37 - 000000000 ____D C:\Program Files\MultiCommander (x64) 2018-11-03 14:24 - 2018-10-04 13:39 - 000000000 ____D C:\AdsFix 2018-11-03 14:24 - 2018-10-04 09:15 - 000000000 ____D C:\EEK 2018-11-03 14:24 - 2018-09-25 10:37 - 000000000 ____D C:\ProgramData\COMODO 2018-11-03 14:24 - 2018-09-13 19:44 - 000000000 ____D C:\eclipse 2018-11-03 14:24 - 2018-09-13 17:40 - 000000000 ____D C:\Program Files (x86)\KeePass Password Safe 2 2018-11-03 14:24 - 2018-09-13 09:25 - 000000000 ____D C:\Program Files\CCleaner 2018-11-03 14:24 - 2018-09-13 09:20 - 000000000 ____D C:\Program Files\Wireshark 2018-11-03 14:24 - 2018-09-13 08:42 - 000000000 ____D C:\ProgramData\UCheck 2018-11-03 14:24 - 2018-09-12 08:57 - 000000000 ____D C:\ProgramData\RogueKiller 2018-11-03 14:24 - 2018-09-11 14:45 - 000000000 ____D C:\Pre_Scan 2018-11-03 14:24 - 2018-09-10 22:16 - 000000000 ____D C:\Program Files\Remo Repair MOV 2.0 2018-11-03 14:24 - 2018-09-10 10:31 - 000000000 ____D C:\Program Files (x86)\ProgDVB 2018-11-03 14:24 - 2018-09-09 14:13 - 000000000 ____D C:\Program Files (x86)\SeaMonkey 2018-11-03 14:24 - 2018-09-06 13:37 - 000000000 ____D C:\ProgramData\EPSON 2018-11-03 14:24 - 2018-09-05 05:27 - 000000000 ____D C:\ProgramData\Baidu 2018-11-03 14:24 - 2018-09-03 22:43 - 000000000 ____D C:\ProgramData\AVAST Software 2018-11-03 14:24 - 2018-09-03 19:11 - 000000000 ____D C:\ProgramData\install_backup 2018-11-03 14:24 - 2018-09-03 18:28 - 000000000 ____D C:\ProgramData\Wondershare 2018-11-03 14:24 - 2013-03-05 00:30 - 000000000 ____D C:\ProgramData\WildTangent 2018-11-03 14:24 - 2013-03-05 00:30 - 000000000 ____D C:\Program Files (x86)\HP Games 2018-11-03 14:24 - 2012-08-01 18:09 - 000000000 ____D C:\inetpub 2018-11-03 14:24 - 2012-07-26 09:12 - 000000000 ____D C:\Program Files\Common Files\System 2018-11-03 14:24 - 2012-07-26 09:12 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2018-11-03 10:33 - 2018-09-07 12:26 - 000000000 ____D C:\ProgramData\WinZip 2018-11-03 10:11 - 2018-09-07 12:17 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\WallpaperHd 2018-11-03 09:16 - 2018-09-21 11:25 - 000000000 ___RD C:\Users\Jean-Marie\Desktop\LFS Hyper & UEFM Suite 2018.20 2018-11-02 23:50 - 2018-09-11 04:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google 2018-11-01 19:15 - 2018-09-11 11:01 - 000000000 ___RD C:\Users\Jean-Marie\Dropbox 2018-11-01 08:06 - 2018-09-02 17:46 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\VirtualStore 2018-10-31 08:01 - 2018-09-02 17:55 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-324915258-2866797553-3726413251-1001 2018-10-31 07:50 - 2018-09-06 13:28 - 000376024 _____ C:\Windows\system32\FNTCACHE.DAT 2018-10-31 07:36 - 2012-07-26 09:12 - 000000000 ____D C:\Windows\System 2018-10-31 03:20 - 2018-10-04 13:41 - 000079245 _____ C:\AdsFix_31_10_2018_03_20_35.txt 2018-10-31 01:33 - 2018-09-06 14:27 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\Sunbelt Software 2018-10-31 01:19 - 2018-09-02 17:45 - 000000000 ____D C:\Users\Jean-Marie 2018-10-31 00:54 - 2018-09-21 13:23 - 000000000 ____D C:\Program Files (x86)\Photo Explosion 6.0 2018-10-30 15:07 - 2018-10-04 13:56 - 000001156 _____ C:\Users\Jean-Marie\Desktop\AdsFix_Donate.lnk 2018-10-30 14:53 - 2013-03-05 00:18 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2018-10-30 08:47 - 2018-09-03 19:12 - 000000000 ____D C:\Users\Jean-Marie\AppData\Local\CyberLink 2018-10-30 08:46 - 2018-09-03 19:12 - 000000000 ____D C:\ProgramData\SUPPORTDIR 2018-10-30 08:38 - 2018-09-03 19:41 - 000000000 ____D C:\Program Files (x86)\NSIS Uninstall Information 2018-10-30 08:35 - 2018-09-03 19:10 - 000000000 ____D C:\ProgramData\CLSK 2018-10-30 08:35 - 2013-03-05 00:28 - 000000000 ____D C:\ProgramData\install_clap 2018-10-30 08:35 - 2013-03-05 00:28 - 000000000 ____D C:\Program Files (x86)\CyberLink 2018-10-28 12:32 - 2018-09-06 14:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software 2018-10-28 12:32 - 2018-09-06 14:56 - 000000000 ____D C:\Program Files (x86)\EPSON Software 2018-10-28 12:32 - 2012-07-26 10:45 - 000000000 ____D C:\Windows\ShellNew 2018-10-27 16:06 - 2018-09-05 15:10 - 000000000 ____D C:\Windows\system32\MRT 2018-10-27 15:46 - 2018-09-05 15:10 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-10-27 08:51 - 2018-09-09 14:14 - 000000000 ____D C:\Program Files\Process Lasso 2018-10-22 15:12 - 2018-09-10 05:21 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\vlc 2018-10-22 13:14 - 2018-09-10 22:10 - 000001320 _____ C:\Users\Jean-Marie\Desktop\UTILILAB NitroBROWSER.lnk 2018-10-22 13:04 - 2018-09-14 10:53 - 000000000 ____D C:\ProgramData\Log 2018-10-21 07:18 - 2018-09-03 22:59 - 000004162 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1536011848 2018-10-13 06:00 - 2018-09-05 05:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy 2018-10-11 15:59 - 2018-09-07 16:23 - 000000000 ____D C:\Windows\Minidump 2018-10-11 08:04 - 2018-09-14 08:27 - 000000000 ____D C:\Program Files\Firefox Nightly 2018-10-11 08:01 - 2018-09-14 11:14 - 000000000 ____D C:\ProgramData\Lavasoft 2018-10-10 18:12 - 2018-09-07 12:47 - 000036153 _____ C:\Users\Jean-Marie\Desktop\ZHPCleaner.txt 2018-10-10 18:12 - 2018-09-03 18:39 - 000000000 ____D C:\Users\Jean-Marie\AppData\Roaming\ZHP 2018-10-10 13:52 - 2018-09-25 10:09 - 000000000 ____D C:\Program Files (x86)\Comodo 2018-10-10 13:52 - 2018-09-13 09:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo 2018-10-10 13:36 - 2018-09-20 08:12 - 000000000 ____D C:\Program Files\CyberLink 2018-10-10 13:34 - 2018-09-20 14:22 - 000000274 _____ C:\Windows\Tasks\Cyberlink Trigger Task.job 2018-10-10 13:28 - 2013-03-05 00:28 - 000000000 ____D C:\ProgramData\CyberLink 2018-10-10 11:28 - 2013-03-05 00:45 - 000002146 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk 2018-10-10 11:28 - 2013-03-05 00:45 - 000002146 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk 2018-10-10 11:21 - 2018-09-10 22:11 - 000000000 ____D C:\Program Files\Hasleo 2018-10-09 11:16 - 2018-09-13 09:26 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2018-10-09 11:15 - 2018-09-10 22:12 - 000000128 ___SH C:\Windows\system32\phddpaxcplhjwxbm.dat 2018-10-07 07:32 - 2018-10-05 07:25 - 000000000 ____D C:\Program Files (x86)\Corel 2018-10-07 07:28 - 2018-10-05 07:03 - 000000000 ____D C:\ProgramData\Corel ==================== Fichiers à la racine de certains dossiers ======= 2018-09-14 10:47 - 2010-01-26 09:11 - 000444283 _____ () C:\Program Files\Common Files\WinPcapNmap.exe 2018-09-28 00:46 - 2018-09-28 00:46 - 000000000 _____ () C:\Users\Jean-Marie\AppData\Local\oobelibMkey.log ZeroAccess: C:\Users\Jean-Marie\AppData\Local\CyberLink C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\build.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\CEIPU.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\fonts.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\hw.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\koan.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\settings.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\Tzan\Loveland.CAL1.4.1741(VM..bin C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\Log\181030-084701.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\Log\181030-084719-PyYouCam.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\Log\181030-084720-CLWVDA.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\Log\181030-084720-FxRec.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\Log\181030-084721-CLWCS.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\Log\181031-075145-Mirage.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\EffectManualOrder\ManualOrder_Avatar.xml C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\EffectManualOrder\ManualOrder_Emotion.xml C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\EffectManualOrder\ManualOrder_Filter.xml C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\EffectManualOrder\ManualOrder_Frame.xml C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\EffectManualOrder\ManualOrder_FunnyScene.xml C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\EffectManualOrder\ManualOrder_Gadget.xml C:\Users\Jean-Marie\AppData\Local\CyberLink\YouCam8\EffectManualOrder\ManualOrder_Particle.xml C:\Users\Jean-Marie\AppData\Local\CyberLink\UWebinar\2.0\config.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\U\build.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\U\fonts.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\U\hw.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\U\koan.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\U\pou.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\U\settings.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\U\dmp\logger-180903-201224.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\DA\8.0\DA_F_TCA C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\8.0 Live\cloud.db C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\8.0\config.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\8.0\FeaturedPhoto_0.jpg C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\8.0\FeaturedPhoto_1.jpg C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\8.0\FeaturedPhoto_2.jpg C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\8.0\FeaturedPhoto_3.jpg C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\8.0\PHDPresetStyles.dat C:\Users\Jean-Marie\AppData\Local\CyberLink\PhotoDirector\10.0\config.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\7z.dll C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\7z.exe C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\Custom.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\Define.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\info.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\Product_20180903_201038_5996.ico C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\Setup.exe C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\SKUtil.dll C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\SKUtil2008.dll C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\UReg.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\NSIS Uninstall Information\{BF604C80-05EA-4DCC-BB72-33AB46A869C9}\Setup\SKRSet.skr C:\Users\Jean-Marie\AppData\Local\CyberLink\ColorDirector\7.0\config.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\ColorDirector\7.0\Jean-Marie.cds C:\Users\Jean-Marie\AppData\Local\CyberLink\ColorDirector\7.0\Session.cache C:\Users\Jean-Marie\AppData\Local\CyberLink\AudioDirector\9.0\config.ini C:\Users\Jean-Marie\AppData\Local\CyberLink\AudioDirector\9.0\Session.cache C:\Users\Jean-Marie\AppData\Local\CyberLink\AppManager\LicenseList.txt C:\Users\Jean-Marie\AppData\Local\CyberLink\AppManager\Setting.ini Certains fichiers dans TEMP: ==================== 2018-10-31 07:46 - 2018-09-14 10:22 - 000444098 _____ (Denzi) C:\Users\Jean-Marie\AppData\Local\Temp\nsi29A3.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2018-11-05 03:00 ==================== Fin de FRST.txt ============================