Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-05.2019 Exécuté par pc (administrateur) sur PC-PC (Hewlett-Packard HP Pavilion dv7 Notebook PC) (31-05-2019 14:57:33) Exécuté depuis C:\Users\pc\Desktop Profils chargés: pc (Profils disponibles: pc) Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 8 (Navigateur par défaut: Opera) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Windows\System32\valWBFPolicyService.exe (Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE (Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\pc\AppData\Roaming\Dashlane\Dashlane.exe (Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\pc\AppData\Roaming\Dashlane\DashlanePlugin.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\73.4.118\QtWebEngineProcess.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\73.4.118\QtWebEngineProcess.exe (Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Mega Limited -> Mega Limited) C:\Users\pc\AppData\Local\MEGAsync\MEGAsync.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (pCloud AG -> pCloud AG) C:\Program Files (x86)\pCloud Drive\pCloud.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [262024 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobePSE17AutoAnalyzer] => C:\Program Files\Adobe\Elements 2019 Organizer\Elements Auto Creations 2019.exe [3058696 2018-08-30] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5461312 2019-05-21] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare) HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2138272 2016-10-08] (Shenzhen Yi Xing Investment Co., Ltd. -> iSkySoft) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [pCloud] => C:\Program Files (x86)\pCloud Drive\pCloud.exe [4367488 2019-03-08] (pCloud AG -> pCloud AG) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46506040 2019-04-09] (Google LLC -> ) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-03-13] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22588760 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [Dashlane] => C:\Users\pc\AppData\Roaming\Dashlane\Dashlane.exe [390736 2019-05-13] (Dashlane USA, Inc. -> Dashlane, Inc.) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [DashlanePlugin] => C:\Users\pc\AppData\Roaming\Dashlane\DashlanePlugin.exe [413264 2019-05-13] (Dashlane USA, Inc. -> Dashlane, Inc.) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-03-13] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-03-13] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-03-13] (Apple Inc. -> Apple Inc.) HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [67384 2019-03-13] (Apple Inc. -> Apple Inc.) HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-23] (Google LLC -> Google Inc.) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2016-01-28] (Broadcom Corporation -> Broadcom Corporation.) HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll [2016-01-28] (Broadcom Corporation -> Broadcom Corporation.) Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-12-14] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.) Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-01-26] ShortcutTarget: MEGAsync.lnk -> C:\Users\pc\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1329E196-B9D5-4925-916A-3569B0FD1FE3} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\pc\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {1B2B6BF1-194F-44B8-A810-FEEED8A8716D} - System32\Tasks\{B5B18A1F-8E4F-4322-AF17-BA096ED243D3} => C:\Windows\system32\pcalua.exe -a C:\Users\pc\Downloads\Dacty5SU.exe -d C:\Users\pc\Downloads Task: {26F6BE13-ADFA-4AAE-B7BF-E46FAFBA5529} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [1659000 2019-05-22] (AVAST Software s.r.o. -> AVAST Software) Task: {2EC665BF-B2C1-4887-B006-9AB889844AD8} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2934152 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) Task: {38268732-5EB2-4A26-95AD-3185C1D3C83A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {3D893C6A-694E-4AF8-8C34-D60836D15FFF} - System32\Tasks\RogueKiller Anti-Malware => C:\Program Files\RogueKiller\RogueKiller64.exe [33953848 2019-04-24] (Adlice -> ) Task: {45E4A2EF-1C88-428D-A02F-010EC5AB8A03} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000Core => C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe Task: {4C376E64-2157-4DF4-967E-344A897DDD65} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000UA1d2583fbf131228 => C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe Task: {52D570AC-8CC2-4F6B-9B36-66C9F7FA1BBD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000UA => C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe Task: {5FA40303-5F24-4854-83FE-B7172C2E0E74} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-15] (Dropbox, Inc -> Dropbox, Inc.) Task: {60169CE7-1BBD-4EA0-91B1-FC7C1B96494F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-14] (Adobe Inc. -> Adobe) Task: {64C728FD-4694-4CF0-AC84-E9712841B4C5} - System32\Tasks\{6F776160-313D-4734-A1FA-A75DB987D44F} => C:\Windows\system32\pcalua.exe -a C:\Users\pc\Downloads\HPSupportSolutionsFramework-12.5.26.37.exe -d C:\Users\pc\Downloads Task: {657973D0-8BB8-40C9-8925-89BFD751FBB3} - System32\Tasks\AdobeGCInvoker-1.0-pc-PC-pc => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {6728E7BB-52F1-434C-8168-5449AE448FCD} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-15] (Dropbox, Inc -> Dropbox, Inc.) Task: {7587AFCA-FADC-4676-B9AD-0F52CD4F99D6} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2019-03-13] (Apple Inc. -> Apple Inc.) Task: {844364A7-91C0-45B0-B2FB-8B28C3D9831F} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1012815529-2061845617-3691767934-1000 => C:\ProgramData\MEGAsync\MEGAupdater.exe [760696 2018-01-19] (Mega Limited -> Mega Limited) Task: {8A03ECD1-B609-4B90-90DC-0B41D1B18E7F} - System32\Tasks\{1CA77D12-904D-4E16-81DF-F469A057BBF0} => C:\Users\pc\Downloads\picasa.exe Task: {8BD1EF49-3183-46E2-A3CC-F1EA20BCE0E8} - System32\Tasks\AdobeAAMUpdater-1.0-pc-PC-pc => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {8D8B0471-47DB-4128-9027-10E59E062A91} - System32\Tasks\{A6BE1968-2260-4AB2-AA16-207688037630} => C:\Users\pc\Downloads\picasa.exe Task: {A11648FD-F0C7-4647-B4F7-3589EB69D65F} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-20] (Microsoft Windows -> Microsoft Corporation) Task: {A58F1B73-E6BF-4BE6-8056-DF529756C4FF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd) Task: {A996A1D7-503B-4EB8-8352-387E112F8AE5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2380088 2019-04-03] (AVAST Software s.r.o. -> AVAST Software) Task: {B257A55A-F982-4764-BCA1-3422A836E4A3} - System32\Tasks\Opera scheduled Autoupdate 1545396780 => C:\Program Files\Opera\launcher.exe [1493592 2019-05-23] (Opera Software AS -> Opera Software) Task: {C2273884-52E6-4E89-838C-6045CD201461} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd) Task: {C61F94CD-67BC-4FE6-AE8F-24B635434AAE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [652664 2019-04-17] (HP Inc. -> HP Inc.) Task: {D01DB314-5915-49AF-A15D-2856A1B008B2} - System32\Tasks\{7ABA6363-2958-4BAB-9A7D-FFEE15979650} => C:\Windows\system32\pcalua.exe -a C:\Users\pc\Downloads\sp60754(1).exe -d C:\Users\pc\Downloads Task: {D2B3973C-FF21-4538-9882-ED53CF5181CA} - System32\Tasks\{2849F1F8-E529-4A47-BD4E-90149B4F8606} => C:\Windows\system32\pcalua.exe -a C:\Users\pc\Downloads\sp55093.exe -d C:\Users\pc\Downloads Task: {D7649218-45FF-4892-93EF-F4066E63DC4B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.) Task: {DACD9A33-E6FE-4AC6-8F26-EBBFEA67981B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000Core1d2583fbee68341 => C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe Task: {DEA73E81-C54C-45D7-8063-83BFCA73CA2A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-14] (Google Inc -> Google Inc.) Task: {ECFCE58B-A239-4445-BF2C-4206F5287209} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-14] (Google Inc -> Google Inc.) Task: {F7F0AAFD-BC52-44A3-AE8C-4529C8262B2B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_pepper.exe [1452600 2019-05-14] (Adobe Inc. -> Adobe) Task: {FF9663AB-9D22-41B9-B44A-B55A422634E9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000Core.job => C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000UA.job => C:\Users\pc\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2 Tcpip\..\Interfaces\{413C9861-432C-44C8-A2A7-F523A9D0A11B}: [DhcpNameServer] 89.2.0.1 89.2.0.2 Tcpip\..\Interfaces\{63708C65-98CD-4111-AB0F-336ED02F1897}: [DhcpNameServer] 89.2.0.1 89.2.0.2 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\pc\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2019-05-13] (Dashlane USA, Inc. -> Dashlane, Inc.) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKLM-x32 - Pas de nom - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - Pas de fichier Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\pc\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2019-05-13] (Dashlane USA, Inc. -> Dashlane, Inc.) Toolbar: HKU\S-1-5-21-1012815529-2061845617-3691767934-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\syswow64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\syswow64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: nbs0bgc6.default-1555145499961 FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961 [2019-05-31] FF Homepage: Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961 -> hxxps://www.msn.com/fr-fr?AR=2 FF Extension: (Hoxx VPN Proxy) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\@hoxx-vpn.xpi [2019-05-10] FF Extension: (ETP Search Volume Study) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-04-14] FF Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\firefox@ghostery.com.xpi [2019-05-10] FF Extension: (HTTPS partout) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\https-everywhere@eff.org.xpi [2019-05-31] FF Extension: (Avast Passwords) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2019-05-11] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json] FF Extension: (RoboForm Password Manager) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\rf-firefox@siber.com.xpi [2019-04-18] FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\sp@avast.com.xpi [2019-04-14] FF Extension: (Avast Online Security) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\wrc@avast.com.xpi [2019-05-31] FF Extension: (NoScript) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2019-05-31] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\nbs0bgc6.default-1555145499961\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-05-10] FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Fichier non signé] FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin HKU\S-1-5-21-1012815529-2061845617-3691767934-1000: @tools.google.com/Google Update;version=3 -> C:\Users\pc\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [Pas de fichier] FF Plugin HKU\S-1-5-21-1012815529-2061845617-3691767934-1000: @tools.google.com/Google Update;version=9 -> C:\Users\pc\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [Pas de fichier] Chrome: ======= CHR HomePage: Default -> hxxps://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.msn.com/fr-fr?AR=5" CHR DefaultSearchKeyword: Default -> cal CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2019-05-31] CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-01] CHR Extension: (Tv-replay) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfgogkjjjedakfeibebkfmlbmagifci [2017-07-01] CHR Extension: (iCloud) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdilfkhpgihcibbahmoggdaeciachopd [2017-07-01] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-05-10] CHR Extension: (Privatix - VPN gratuit et illimité Proxy) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmolbociagblhlkopalkepebeoifka [2018-11-13] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-02-04] CHR Extension: (Dashlane) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2019-03-29] CHR Extension: (Barre de Confiance CM-CIC) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2017-07-01] CHR Extension: (HTTPS partout) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2019-02-03] CHR Extension: (Google Docs hors connexion) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22] CHR Extension: (Avast Online Security) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-02-19] CHR Extension: (Checker Plus for Google Calendar™) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkhggnncdpfibdhinjiegagmopldibha [2019-04-03] CHR Extension: (Stealthy) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieaebnkibonmpbhdaanjkmedikadnoje [2018-04-18] CHR Extension: (Malwarebytes Browser Extension) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2019-05-10] CHR Extension: (RePlay.FR) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\imfaefgciinakhhijicamiodfbejphdb [2017-07-01] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-12-03] CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2019-02-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (ScriptSafe) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2017-12-13] CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-16] CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\System Profile [2019-01-08] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\pc\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2017-01-04] CHR HKU\S-1-5-21-1012815529-2061845617-3691767934-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR StartupUrls: "hxxp://msn.fr/" OPR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\pc\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbkekonodcdmedgffkkbgmnnekbainbg [2019-05-10] OPR Extension: (TrafficLight) - C:\Users\pc\AppData\Roaming\Opera Software\Opera Stable\Extensions\cfnpidifppmenkapgihekkeednfoenal [2019-03-03] OPR Extension: (Avast Online Security) - C:\Users\pc\AppData\Roaming\Opera Software\Opera Stable\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2019-03-29] OPR Extension: (Open in Chromium Browser) - C:\Users\pc\AppData\Roaming\Opera Software\Opera Stable\Extensions\dilpigogejfnnahbbmnpjmccammdaiom [2019-01-21] OPR Extension: (Dashlane - Password Manager) - C:\Users\pc\AppData\Roaming\Opera Software\Opera Stable\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2019-05-29] OPR Extension: (Install Chrome Extensions) - C:\Users\pc\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2019-01-08] OPR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Roaming\Opera Software\Opera Stable\Extensions\pphjpkjjljnllpnebififokmoejkeahp [2019-05-14] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-05-04] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [246784 2015-07-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6844776 2019-05-29] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [409224 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [10267576 2019-05-22] (AVAST Software s.r.o. -> AVAST Software) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-15] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-15] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-05-21] (Dropbox, Inc -> Dropbox, Inc.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [397472 2018-03-15] (Canon Inc. -> ) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes) R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [432264 2017-12-06] (Geek Software GmbH -> Geek Software GmbH) R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [301568 2011-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2019-03-03] (Reason Software Company Inc. -> Reason Software Company Inc.) R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [28160 2012-09-06] () [Fichier non signé] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [43840 2012-09-24] (Hewlett-Packard Company -> Hewlett-Packard Company) R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [21622272 2015-07-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [665088 2015-07-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [65248 2015-04-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37104 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [207448 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [262496 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [205848 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61472 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279120 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [167872 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112312 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87944 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [477584 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [225096 2019-05-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [385880 2019-05-31] (AVAST Software s.r.o. -> AVAST Software) S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [172760 2016-01-26] (Broadcom Corporation -> Broadcom Corporation.) R3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl664.sys [7765240 2014-10-02] (Broadcom Corporation -> Broadcom Corporation) S3 btwampfl; C:\Windows\System32\DRIVERS\btwampfl.sys [600280 2016-01-26] (Broadcom Corporation -> Broadcom Corporation.) S3 btwaudio; C:\Windows\System32\drivers\btwaudio.sys [390872 2016-01-26] (Broadcom Corporation -> Broadcom Corporation.) S3 btwavdt; C:\Windows\System32\drivers\btwavdt.sys [244952 2016-01-26] (Broadcom Corporation -> Broadcom Corporation.) S3 btwl2cap; C:\Windows\System32\DRIVERS\btwl2cap.sys [39976 2011-09-17] (Broadcom Corporation -> Broadcom Corporation.) S3 btwrchid; C:\Windows\System32\DRIVERS\btwrchid.sys [22744 2016-01-26] (Broadcom Corporation -> Broadcom Corporation.) R1 cbfs6; C:\Windows\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.) S3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [31464 2015-07-08] (ELAN Microelectronics Corporation -> ELAN Microelectronic Corp.) R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [31040 2012-09-24] (Hewlett-Packard Company -> Hewlett-Packard Company) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2015-05-29] (Intel Corporation - Rapid Storage Technology -> Intel Corporation) R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-05-31] (Malwarebytes Corporation -> Malwarebytes) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [188992 2016-02-10] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-05-18] (Avira Operations GmbH & Co. KG -> The OpenVPN Project) R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation) S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33960 2015-07-06] (Synaptics Incorporated -> Synaptics Incorporated) R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [528384 2011-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [28272 2019-05-27] (Adlice -> ) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R3 vpnpbus; C:\Windows\System32\DRIVERS\vpnpbus.sys [18624 2016-09-09] (EldoS Corporation -> /n software, Inc.) R3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies) S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-05-31 14:57 - 2019-05-31 14:58 - 000041725 _____ C:\Users\pc\Desktop\FRST.txt 2019-05-31 14:57 - 2019-05-31 14:57 - 000000000 ____D C:\FRST 2019-05-31 14:36 - 2019-05-31 14:36 - 002435584 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe 2019-05-31 14:07 - 2019-05-31 14:07 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2019-05-24 09:23 - 2019-05-24 09:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2019-05-21 14:10 - 2019-05-21 14:10 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2019-05-21 14:10 - 2019-05-21 14:10 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2019-05-21 14:10 - 2019-05-21 14:10 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2019-05-21 14:10 - 2019-05-21 14:10 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2019-05-20 17:24 - 2019-05-20 17:24 - 000363400 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2019-05-19 14:10 - 2019-05-19 14:10 - 000000000 ____D C:\Users\pc\AppData\Local\Foxit Reader 2019-05-19 13:49 - 2019-05-19 13:49 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion - Convertisseur d'images.lnk 2019-05-19 13:49 - 2019-05-19 13:49 - 000001134 _____ C:\Users\Public\Desktop\Pixillion - Convertisseur d'images.lnk 2019-05-19 13:49 - 2019-05-19 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software 2019-05-19 13:49 - 2019-05-19 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de graphisme 2019-05-15 11:19 - 2019-04-19 04:54 - 004057320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2019-05-15 11:19 - 2019-04-19 04:53 - 003963624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2019-05-15 11:19 - 2019-04-19 04:53 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2019-05-15 11:19 - 2019-04-19 04:51 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:50 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:44 - 000185064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys 2019-05-15 11:19 - 2019-04-19 04:44 - 000095456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2019-05-15 11:19 - 2019-04-19 04:43 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2019-05-15 11:19 - 2019-04-19 04:43 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2019-05-15 11:19 - 2019-04-19 04:43 - 000153832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2019-05-15 11:19 - 2019-04-19 04:43 - 000064232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS 2019-05-15 11:19 - 2019-04-19 04:43 - 000063208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys 2019-05-15 11:19 - 2019-04-19 04:43 - 000060648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys 2019-05-15 11:19 - 2019-04-19 04:43 - 000031976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys 2019-05-15 11:19 - 2019-04-19 04:43 - 000023784 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll 2019-05-15 11:19 - 2019-04-19 04:43 - 000020200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys 2019-05-15 11:19 - 2019-04-19 04:42 - 005552864 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2019-05-15 11:19 - 2019-04-19 04:42 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2019-05-15 11:19 - 2019-04-19 04:42 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2019-05-15 11:19 - 2019-04-19 04:42 - 000122600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS 2019-05-15 11:19 - 2019-04-19 04:42 - 000068328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys 2019-05-15 11:19 - 2019-04-19 04:42 - 000036064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys 2019-05-15 11:19 - 2019-04-19 04:42 - 000015080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys 2019-05-15 11:19 - 2019-04-19 04:42 - 000012136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys 2019-05-15 11:19 - 2019-04-19 04:40 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2019-05-15 11:19 - 2019-04-19 04:40 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:39 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:27 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll 2019-05-15 11:19 - 2019-04-19 04:26 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2019-05-15 11:19 - 2019-04-19 04:20 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2019-05-15 11:19 - 2019-04-19 04:20 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2019-05-15 11:19 - 2019-04-19 04:20 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2019-05-15 11:19 - 2019-04-19 04:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2019-05-15 11:19 - 2019-04-19 04:19 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2019-05-15 11:19 - 2019-04-19 04:18 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:18 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:18 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:18 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2019-05-15 11:19 - 2019-04-19 04:15 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2019-05-15 11:19 - 2019-04-19 04:15 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2019-05-15 11:19 - 2019-04-19 04:15 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2019-05-15 11:19 - 2019-04-19 04:14 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2019-05-15 11:19 - 2019-04-19 04:12 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2019-05-15 11:19 - 2019-04-19 04:11 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2019-05-15 11:19 - 2019-04-19 04:11 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys 2019-05-15 11:19 - 2019-04-19 04:08 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2019-05-15 11:19 - 2019-04-19 04:08 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2019-05-15 11:19 - 2019-04-19 04:08 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2019-05-15 11:19 - 2019-04-19 04:08 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2019-05-15 11:19 - 2019-04-19 04:08 - 000160768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2019-05-15 11:19 - 2019-04-19 04:08 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2019-05-15 11:19 - 2019-04-19 04:07 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2019-05-15 11:19 - 2019-04-19 04:07 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys 2019-05-15 11:19 - 2019-04-19 04:07 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys 2019-05-15 11:19 - 2019-04-19 04:07 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys 2019-05-15 11:19 - 2019-04-19 04:07 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys 2019-05-15 11:19 - 2019-04-19 04:07 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2019-05-15 11:19 - 2019-04-16 17:17 - 012880896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2019-05-15 11:19 - 2019-04-16 17:17 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2019-05-15 11:19 - 2019-04-16 17:17 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll 2019-05-15 11:19 - 2019-04-16 17:17 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2019-05-15 11:19 - 2019-04-16 17:17 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2019-05-15 11:19 - 2019-04-16 17:17 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll 2019-05-15 11:19 - 2019-04-16 17:16 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 014184448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll 2019-05-15 11:19 - 2019-04-16 17:05 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll 2019-05-15 11:19 - 2019-04-16 16:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll 2019-05-15 11:19 - 2019-04-16 15:15 - 000419648 _____ C:\Windows\SysWOW64\locale.nls 2019-05-15 11:19 - 2019-04-16 15:15 - 000419648 _____ C:\Windows\system32\locale.nls 2019-05-15 11:19 - 2019-04-14 07:42 - 000309480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2019-05-15 11:19 - 2019-04-14 07:40 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll 2019-05-15 11:19 - 2019-04-14 07:40 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2019-05-15 11:19 - 2019-04-14 07:39 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2019-05-15 11:19 - 2019-04-14 07:39 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2019-05-15 11:19 - 2019-04-14 07:28 - 000383720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2019-05-15 11:19 - 2019-04-14 07:26 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll 2019-05-15 11:19 - 2019-04-14 07:26 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2019-05-15 11:19 - 2019-04-14 07:26 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2019-05-15 11:19 - 2019-04-14 07:26 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2019-05-15 11:19 - 2019-04-14 07:26 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2019-05-15 11:19 - 2019-04-14 07:12 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2019-05-15 11:19 - 2019-04-07 17:17 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2019-05-15 11:19 - 2019-04-07 17:17 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2019-05-15 11:19 - 2019-04-07 17:17 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2019-05-15 11:19 - 2019-04-07 17:17 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2019-05-15 11:19 - 2019-04-07 17:17 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2019-05-15 11:19 - 2019-04-07 17:17 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll 2019-05-15 11:19 - 2019-04-07 17:16 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2019-05-15 11:19 - 2019-04-07 17:15 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2019-05-15 11:19 - 2019-04-07 17:05 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2019-05-15 11:19 - 2019-04-07 17:03 - 014637568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2019-05-15 11:19 - 2019-04-07 17:03 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000486400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2019-05-15 11:19 - 2019-04-07 17:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2019-05-15 11:19 - 2019-04-07 17:03 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2019-05-15 11:19 - 2019-04-07 17:02 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2019-05-15 11:19 - 2019-04-07 17:02 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2019-05-15 11:19 - 2019-04-07 17:01 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2019-05-15 11:19 - 2019-04-07 17:01 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2019-05-15 11:19 - 2019-04-07 16:57 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2019-05-15 11:19 - 2019-04-07 16:49 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2019-05-15 11:19 - 2019-04-07 16:48 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll 2019-05-15 11:19 - 2019-04-07 16:45 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2019-05-15 11:19 - 2019-04-07 16:45 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2019-05-15 11:19 - 2019-04-07 16:45 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2019-05-15 11:19 - 2019-04-07 16:42 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll 2019-05-15 11:19 - 2019-04-07 16:42 - 000376320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll 2019-05-15 11:19 - 2019-04-07 16:42 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll 2019-05-15 11:19 - 2019-04-07 16:42 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll 2019-05-15 11:19 - 2019-04-07 16:42 - 000240640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll 2019-05-15 11:19 - 2019-04-07 16:38 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe 2019-05-15 11:19 - 2019-04-07 16:35 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2019-05-15 11:19 - 2019-04-07 16:33 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe 2019-05-15 11:19 - 2019-04-07 16:33 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2019-05-15 11:19 - 2019-04-07 15:05 - 000634312 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2019-05-15 11:19 - 2019-04-05 02:34 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll 2019-05-15 11:19 - 2019-04-05 02:23 - 000057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll 2019-05-10 15:24 - 2019-05-23 09:38 - 000002141 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-05-10 15:22 - 2019-05-10 15:22 - 000001482 _____ C:\Users\Public\Desktop\LibreOffice 6.2.lnk 2019-05-10 15:22 - 2019-05-10 15:22 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.2 2019-05-10 15:21 - 2019-05-10 15:21 - 000000901 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.10.lnk 2019-05-10 15:12 - 2019-05-27 11:16 - 000028272 _____ C:\Windows\system32\Drivers\truesight.sys 2019-05-10 13:44 - 2019-05-10 13:44 - 000001315 _____ C:\Users\Public\Desktop\Foxit Reader.lnk 2019-05-03 15:47 - 2019-05-03 15:49 - 000000000 ____D C:\Users\Public\Documents\iSkysoft ==================== Un mois (modifiés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-05-31 14:50 - 2016-11-20 15:39 - 000001066 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000UA.job 2019-05-31 14:50 - 2016-11-20 15:39 - 000001014 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000Core.job 2019-05-31 14:34 - 2018-02-21 12:21 - 000000000 ____D C:\Users\pc\AppData\Local\AVAST Software 2019-05-31 14:26 - 2019-04-13 10:49 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-05-31 14:24 - 2016-11-16 15:33 - 000000000 ____D C:\Users\pc\AppData\Local\Adobe 2019-05-31 14:24 - 2016-11-16 10:57 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Mozilla 2019-05-31 14:16 - 2009-07-14 06:45 - 000022656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-05-31 14:16 - 2009-07-14 06:45 - 000022656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-05-31 14:11 - 2009-07-31 17:34 - 000706206 _____ C:\Windows\system32\perfh00C.dat 2019-05-31 14:11 - 2009-07-31 17:34 - 000135036 _____ C:\Windows\system32\perfc00C.dat 2019-05-31 14:11 - 2009-07-14 07:13 - 001588384 _____ C:\Windows\system32\PerfStringBackup.INI 2019-05-31 14:11 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2019-05-31 14:09 - 2016-11-15 11:32 - 000385880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2019-05-31 14:07 - 2019-01-19 11:31 - 000003000 _____ C:\Windows\System32\Tasks\RogueKiller Anti-Malware 2019-05-31 14:07 - 2017-01-18 15:23 - 000000000 ___RD C:\Users\pc\iCloudDrive 2019-05-31 14:07 - 2016-11-15 11:27 - 000001174 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2019-05-31 14:07 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-05-30 11:06 - 2016-11-15 11:27 - 000001178 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2019-05-30 10:07 - 2018-11-20 09:17 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2019-05-29 15:12 - 2016-11-18 15:32 - 000000000 ____D C:\ProgramData\CanonIJPLM 2019-05-29 14:12 - 2017-01-18 15:22 - 000003408 _____ C:\Windows\System32\Tasks\Apple Diagnostics 2019-05-27 17:20 - 2016-12-21 16:59 - 000000000 ____D C:\Users\pc\AppData\Local\CrashDumps 2019-05-27 11:27 - 2016-12-09 12:10 - 000000000 ____D C:\Users\pc\AppData\Roaming\ZHP 2019-05-27 11:17 - 2018-12-05 15:56 - 000000671 _____ C:\Users\pc\Desktop\ZHPCleaner.lnk 2019-05-27 11:17 - 2017-04-01 11:12 - 003144576 _____ (Nicolas Coolman) C:\Users\pc\ZHPCleaner.exe 2019-05-27 11:17 - 2016-11-14 16:26 - 000000000 ____D C:\Users\pc 2019-05-27 10:49 - 2018-12-21 14:53 - 000003854 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1545396780 2019-05-27 10:49 - 2017-07-22 17:27 - 000000000 ____D C:\Program Files\Opera 2019-05-25 14:18 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF 2019-05-24 09:23 - 2016-11-15 11:27 - 000000000 ____D C:\Program Files (x86)\Dropbox 2019-05-24 09:12 - 2019-01-08 12:32 - 000000000 ____D C:\Users\pc\AppData\Roaming\Dashlane 2019-05-24 09:11 - 2019-01-08 12:33 - 000001905 _____ C:\Users\pc\Desktop\Dashlane.lnk 2019-05-23 09:50 - 2018-07-15 11:01 - 000003162 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1012815529-2061845617-3691767934-1000 2019-05-23 09:50 - 2016-11-15 11:26 - 000002186 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2019-05-23 09:38 - 2016-11-14 17:48 - 000002182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-05-20 17:24 - 2019-02-13 10:47 - 000279120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2019-05-20 17:24 - 2018-10-17 14:03 - 000042288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2019-05-20 17:24 - 2016-11-15 11:32 - 000477584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2019-05-20 17:24 - 2016-11-15 11:32 - 000225096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2019-05-20 17:24 - 2016-11-15 11:32 - 000167872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2019-05-20 17:24 - 2016-11-15 11:32 - 000112312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2019-05-20 17:24 - 2016-11-15 11:32 - 000087944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2019-05-20 17:24 - 2016-11-15 11:32 - 000000000 ____D C:\ProgramData\AVAST Software 2019-05-20 17:23 - 2019-01-15 09:29 - 000262496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2019-05-20 17:23 - 2019-01-07 09:37 - 000205848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2019-05-20 17:23 - 2019-01-07 09:37 - 000061472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2019-05-20 17:23 - 2019-01-07 09:37 - 000037104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2019-05-20 17:23 - 2017-11-10 10:50 - 000207448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2019-05-20 17:23 - 2016-11-15 11:32 - 001030784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2019-05-19 13:51 - 2016-12-03 11:55 - 000000000 ____D C:\Windows\System32\Tasks\NCH Software 2019-05-19 13:49 - 2018-06-09 16:49 - 000000000 ____D C:\Program Files (x86)\NCH Software 2019-05-16 08:59 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache 2019-05-16 07:59 - 2016-11-14 16:26 - 000000000 ___RD C:\Users\pc\Virtual Machines 2019-05-16 07:58 - 2009-07-14 06:45 - 000427784 _____ C:\Windows\system32\FNTCACHE.DAT 2019-05-15 11:26 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Dism 2019-05-15 11:26 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Dism 2019-05-15 11:21 - 2016-11-16 17:01 - 001541268 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2019-05-15 11:11 - 2018-08-02 19:26 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update 2019-05-15 11:11 - 2018-08-02 19:26 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk 2019-05-15 08:24 - 2016-11-14 17:48 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-05-15 08:24 - 2016-11-14 17:48 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-05-14 13:53 - 2018-03-18 10:55 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2019-05-14 13:53 - 2017-09-11 11:17 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2019-05-14 13:53 - 2017-09-11 11:17 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2019-05-14 13:53 - 2017-09-11 11:17 - 000004634 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2019-05-14 13:53 - 2017-09-11 11:17 - 000000000 ____D C:\Windows\system32\Macromed 2019-05-14 13:53 - 2017-09-11 11:16 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-05-14 13:49 - 2019-03-05 16:22 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2019-05-11 09:46 - 2019-01-23 11:48 - 000003490 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-pc-PC-pc 2019-05-11 09:46 - 2019-01-03 12:19 - 000003538 _____ C:\Windows\System32\Tasks\AdobeGCInvoker-1.0-pc-PC-pc 2019-05-11 09:46 - 2018-08-11 14:16 - 000002778 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2019-05-11 09:46 - 2018-01-29 16:59 - 000003100 _____ C:\Windows\System32\Tasks\{B5B18A1F-8E4F-4322-AF17-BA096ED243D3} 2019-05-11 09:46 - 2017-12-30 12:34 - 000002918 _____ C:\Windows\System32\Tasks\{A6BE1968-2260-4AB2-AA16-207688037630} 2019-05-11 09:46 - 2017-12-30 12:34 - 000002918 _____ C:\Windows\System32\Tasks\{1CA77D12-904D-4E16-81DF-F469A057BBF0} 2019-05-11 09:46 - 2017-01-16 16:44 - 000003098 _____ C:\Windows\System32\Tasks\{2849F1F8-E529-4A47-BD4E-90149B4F8606} 2019-05-11 09:46 - 2016-12-17 10:29 - 000003674 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000UA1d2583fbf131228 2019-05-11 09:46 - 2016-12-17 10:29 - 000003402 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000Core1d2583fbee68341 2019-05-11 09:46 - 2016-12-14 16:18 - 000003104 _____ C:\Windows\System32\Tasks\{7ABA6363-2958-4BAB-9A7D-FFEE15979650} 2019-05-11 09:46 - 2016-12-06 10:59 - 000003160 _____ C:\Windows\System32\Tasks\SidebarExecute 2019-05-11 09:46 - 2016-11-20 15:39 - 000004040 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000UA 2019-05-11 09:46 - 2016-11-20 15:39 - 000003644 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1012815529-2061845617-3691767934-1000Core 2019-05-11 09:46 - 2016-11-16 17:19 - 000003160 _____ C:\Windows\System32\Tasks\{6F776160-313D-4734-A1FA-A75DB987D44F} 2019-05-11 09:46 - 2016-11-15 11:32 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software 2019-05-11 09:46 - 2016-11-15 11:27 - 000004184 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA 2019-05-11 09:46 - 2016-11-15 11:27 - 000003932 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore 2019-05-11 09:46 - 2016-11-15 11:26 - 000003212 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task 2019-05-11 08:29 - 2019-04-13 10:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-05-10 15:32 - 2016-11-15 11:32 - 000098736 _____ C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT 2019-05-10 15:22 - 2018-03-13 11:24 - 000000000 ____D C:\Program Files\LibreOffice 2019-05-10 15:19 - 2019-04-13 10:50 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-05-10 15:19 - 2019-04-13 10:50 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk 2019-05-10 13:45 - 2016-11-14 17:51 - 000000000 ____D C:\ProgramData\Foxit Software 2019-05-05 09:04 - 2016-12-01 15:53 - 000000000 ____D C:\Program Files\PDFCreator 2019-05-05 09:04 - 2016-11-14 17:48 - 000000000 ____D C:\Program Files\WinRAR 2019-05-04 11:31 - 2018-02-20 10:45 - 000000000 ____D C:\Program Files (x86)\AVAST Software 2019-05-04 11:26 - 2019-01-08 12:33 - 000001719 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane.lnk 2019-05-04 11:24 - 2019-03-03 10:06 - 000000000 ____D C:\ProgramData\Unchecky 2019-05-04 11:21 - 2016-11-14 17:48 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-05-04 11:21 - 2016-11-14 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-05-04 11:20 - 2018-12-05 16:48 - 000000858 _____ C:\Users\Public\Desktop\RogueKiller.lnk 2019-05-04 11:20 - 2018-10-28 15:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2019-05-04 11:20 - 2018-10-28 15:23 - 000000000 ____D C:\Program Files\RogueKiller 2019-05-04 10:30 - 2016-11-16 12:19 - 000000000 ____D C:\Program Files\CCleaner 2019-05-04 10:29 - 2017-06-05 11:53 - 000000000 ____D C:\Program Files\PDF Architect 5 2019-05-04 10:29 - 2017-06-05 11:53 - 000000000 ____D C:\Program Files (x86)\PDF Architect 5 2019-05-03 15:49 - 2018-08-09 14:36 - 000000000 ____D C:\Users\pc\AppData\Roaming\iSkysoft ==================== Fichiers à la racine de certains dossiers ======= 2017-04-01 11:12 - 2019-05-27 11:17 - 003144576 _____ (Nicolas Coolman) C:\Users\pc\ZHPCleaner.exe 2018-08-15 14:38 - 2018-10-09 16:36 - 003171200 _____ () C:\Users\pc\ZHPDiag3.exe 2018-12-12 16:55 - 2018-12-12 16:55 - 000000648 _____ () C:\Users\pc\AppData\Roaming\.ptbt0 2017-02-17 10:29 - 2017-02-17 10:36 - 000047606 _____ () C:\Users\pc\AppData\Roaming\Pixillion.dmp 2019-01-03 12:19 - 2019-01-03 12:19 - 000000000 _____ () C:\Users\pc\AppData\Local\oobelibMkey.log 2018-11-14 16:18 - 2018-11-14 16:18 - 000003415 _____ () C:\Users\pc\AppData\Local\recently-used.xbel ==================== SigCheck =============================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) LastRegBack: 2019-05-23 10:13 ==================== Fin de FRST.txt ============================