Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2019 Exécuté par SAMRAMJAM-ASUS (administrateur) sur SAMRAMJAM (ASUSTeK COMPUTER INC. X541UJ) (27-09-2019 20:25:07) Exécuté depuis C:\Users\user\Desktop Profils chargés: SAMRAMJAM-ASUS (Profils disponibles: defaultuser0 & SAMRAMJAM-ASUS) Platform: Windows 10 Home Single Language Version 1803 17134.885 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files\ZTEMT UI\bin\MonServiceUDisk.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe (ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe (ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe (ASUSTek Computer Inc. -> ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABHSWD.EXE (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP3LAK.EXE (FarStone Technology -> ) C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe (Farstone Technology Inc -> ) C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DCNTranProc.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avpui.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MpCmdRun.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MpCmdRun.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (Solid Documents -> Solid Documents, LLC) C:\Windows\Installer\MSI4023.tmp (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.) [Fichier non signé] C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [CNAP3 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP3LAK.EXE [228520 2012-06-14] (CANON INC. -> CANON INC.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare software CO., LIMITED -> Wondershare) HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1960336 2014-11-07] (Shenzhen Wondershare Information Technology Co., Ltd. -> ) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-1693683159-204347920-3601301940-1001\...\Run: [Opera Browser Assistant] => C:\Users\user\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2299928 2019-07-24] (Opera Software AS -> Opera Software) HKU\S-1-5-21-1693683159-204347920-3601301940-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4051000 2019-05-06] (Tonec Inc.) [Fichier non signé] HKU\S-1-5-21-1693683159-204347920-3601301940-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc) HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-19] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome GroupPolicy: Restriction ? <==== ATTENTION FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02616872-51D5-4DDF-998A-923780542178} - System32\Tasks\Microsoft\Windows\rempl\shell-restore => C:\Program Files\rempl\remsh.exe Task: {02A56039-024A-458D-976F-C379A8831FDF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648688 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {038AC287-D8A9-4438-8C1E-9F5B449B5047} - System32\Tasks\Opera scheduled assistant Autoupdate 1545945162 => C:\Users\user\AppData\Local\Programs\Opera\launcher.exe [1520152 2019-09-18] (Opera Software AS -> Opera Software) Task: {158EE9C0-95EE-431D-AEFE-2EA4133BE546} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-29] (Google Inc -> Google Inc.) Task: {1C73CE9A-F847-4A4F-8926-C8490BED5971} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1CCFB5A1-0485-44A9-8904-31647B165C7E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1D35DB00-F609-4EA2-8C11-FE5CDA5667E5} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1578784 2016-07-08] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) [Fichier non signé] Task: {1EAEC213-AA79-47F1-8C37-EC5DB7E1D65A} - System32\Tasks\WpsKtpcntrQingTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exe [1531136 2016-11-12] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {22F5A247-70B2-4688-81E8-2FB46487F05A} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55808 2016-10-13] (ASUS) [Fichier non signé] Task: {2A9A2EAE-342C-444A-A082-589AAF108334} - System32\Tasks\WpsUpdateTask_SAMRAMJAM-ASUS => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdate.exe [566528 2016-11-12] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {48C1AC7F-2709-4A8D-A112-73F9247E1DC1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4D75B518-AEB3-4CD2-B9E3-62BE5F93B63A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {53425CB1-0E54-4227-A628-E9A736857A77} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [591344 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {53B3B885-D1FA-41A1-9BB9-26CB1E594F63} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {58887FD3-334A-473A-B4F5-05426587B10D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {678D2A48-0A91-4897-A958-941A8665840F} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {68B7A0CD-5BC4-43A7-8CD4-4D4517B42496} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock-sih => C:\Program Files\rempl\remsh.exe Task: {7B514683-C1D4-41B6-8D0B-1149567FDAAB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3729392 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7B872A36-B90D-4587-83B1-A1066E63229C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {7C923ADF-BE53-4DC2-A7C4-C13CAE40AA4E} - System32\Tasks\WpsExternal_20161112115516 => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe [516352 2016-11-12] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {8DE5BCC5-47EF-4AC5-A2E8-158F709A074B} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19786024 2016-08-24] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) Task: {94315FFA-0CBA-424E-8944-7235D8F8ABCE} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9E587ACB-F44F-49C7-AAD1-34436A429F15} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A6269C7B-80D3-430A-8627-7576AB5E49B1} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 2018-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {A701A58F-841E-4137-915C-A962316A0928} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe Task: {B5A0B28B-64F2-426E-9BB5-6F1E28DFD984} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe Task: {B7B58518-2DEF-4C51-A2E5-8F8B23BD2349} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc) Task: {BA55EB3A-0457-4654-BFD0-77C6D06C4D8E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-29] (Google Inc -> Google Inc.) Task: {BC366026-5B3F-4580-8803-C8AB7334FF73} - System32\Tasks\Microsoft\Windows\rempl\shell-unlock => C:\Program Files\rempl\remsh.exe Task: {BC4214B3-A26A-430A-8089-654C23AC0AB2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {C3D08E7F-1FBC-4026-A16C-55431D4E75DE} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CA95FF5A-840B-43E4-85FD-664B7E12544B} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {CCBD0032-D120-4490-9E73-6F1E9454EB75} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 2018-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {D13F53CF-CCA6-44D1-8213-3943E3BE3E70} - System32\Tasks\Microsoft\Windows\rempl\shell-compact => C:\Program Files\rempl\remsh.exe Task: {D8F9ABF7-D4F1-40CC-95BC-D9BFF9AF4B7E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E29577CE-50CF-479B-8296-31529A912696} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {E3EDC118-4A8A-467F-89A6-F66C8E538C6F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E49F1743-91C1-46D3-8185-E7492838770B} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-27] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) Task: {E4DBF4C9-1F84-4105-B451-FCA70EB5FB17} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {E7FEF3C0-7C19-48F1-8AE9-9DF3045648D6} - System32\Tasks\ASUS Touchpad Handwriting (x64) => C:\Program Files (x86)\ASUS\ASUS Touchpad Handwriting\Exe\x64\AsusHWLaunch64.exe [179696 2016-07-26] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {F15115B9-5ECA-4137-B553-4F8FF7162A53} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F8378758-B769-4F8A-8681-5F25BD1D2CBE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F8B2F1B5-2896-449D-9306-68D45CC206B1} - System32\Tasks\Opera scheduled Autoupdate 1545945157 => C:\Users\user\AppData\Local\Programs\Opera\launcher.exe [1520152 2019-09-18] (Opera Software AS -> Opera Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe Task: C:\WINDOWS\Tasks\WpsExternal_20161112115516.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe Task: C:\WINDOWS\Tasks\WpsKtpcntrQingTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\office6\ktpcntr.exeÃqing 10.1.0.5644 xxx server_url=hxxp:/kdl1.cache.wps.com/ksodl/wpscfg/client/____client____html____service____bubble.html ic_server_url=hxxp:/info.kingsoftstore.com/wpsv6internet/infos.ads Task: C:\WINDOWS\Tasks\WpsUpdateTask_SAMRAMJAM-ASUS.job => C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{0cc42928-db46-4463-9c66-6fa071ec69c3}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{2bc472c1-5b5c-4fff-9473-14cf88d156de}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-1693683159-204347920-3601301940-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/ HKU\S-1-5-21-1693683159-204347920-3601301940-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome SearchScopes: HKU\S-1-5-21-1693683159-204347920-3601301940-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D122718-N0700A9FCDBB39EF&form=CONBDF&conlogo=CT3335799&q={searchTerms} SearchScopes: HKU\S-1-5-21-1693683159-204347920-3601301940-1001 -> ${searchCLSID} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKU\S-1-5-21-1693683159-204347920-3601301940-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D122718-N0700A9FCDBB39EF&form=CONBDF&conlogo=CT3335799&q={searchTerms} BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2019-05-05] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2019-05-25] (Microsoft Corporation -> Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2019-05-05] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office 2013\Office15\OCHelper.dll [2019-03-13] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2014-11-07] (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-09-14] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office 2013\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-14] (Oracle America, Inc. -> Oracle Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office 2013\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation) Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - Pas de fichier Edge: ====== DownloadDir: C:\Users\user\Downloads FireFox: ======== FF DefaultProfile: u7g22mxo.default FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\u7g22mxo.default [2019-09-20] FF Homepage: Mozilla\Firefox\Profiles\u7g22mxo.default -> hxxps://www.google.fr/ FF NewTab: Mozilla\Firefox\Profiles\u7g22mxo.default -> hxxp://www.bing.com/?pc=COSP&ptag=D122718-N0600A9FCDBB39EF&form=CONMHP&conlogo=CT3335799 FF Session Restore: Mozilla\Firefox\Profiles\u7g22mxo.default -> est activé. FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com [2019-05-03] [Legacy] [non signé] FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy] FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\u7g22mxo.default\searchplugins\bing-lavasoft-ff59.xml [2018-12-28] FF HKLM\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi [2019-08-11] FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi FF HKU\S-1-5-21-1693683159-204347920-3601301940-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2019-05-02] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json] FF HKU\S-1-5-21-1693683159-204347920-3601301940-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-1693683159-204347920-3601301940-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\user\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\user\AppData\Roaming\IDM\idmmzcc5 [2019-08-09] [Legacy] [non signé] FF HKU\S-1-5-21-1693683159-204347920-3601301940-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-14] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-14] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-10-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-01] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-01-05] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-01-05] <==== ATTENTION Chrome: ======= CHR DefaultProfile: Default CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms} CHR DefaultSearchKeyword: Default -> Adaware Secure CHR Session Restore: Default -> est activé. CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2019-09-27] CHR Extension: (Kaspersky Protection) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\amkpcclbbgegoafihnpgomddadjhcadd [2019-03-27] CHR Extension: (uVPN - VPN gratuit et illimité pour tous) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coahpcpgfnnaddeelpphpifmgfobflog [2019-09-13] CHR Extension: (Adobe Acrobat) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-31] CHR Extension: (Open With Internet Download Manager) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\epgilldoipfbdlneomlmegekaoonchcj [2019-06-05] CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2019-09-27] CHR Extension: (Internet Download Manager) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcdlanlaneooailnebnhamiiieebikid [2019-06-05] CHR Extension: (IDM Integration Module) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2019-09-03] CHR Extension: (Adaware Secure) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj [2019-04-06] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-03-27] CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-15] CHR Extension: (Download YouTube videos with different video quality: 1080P, 720P, 480P, 360p etc. Supports all formats Mp3, MP4, FLV, WebM, 3GP) - C:\Users\user\Desktop\YouTube Video Downloader - 16.2.2 [2019-09-12] CHR Extension: (WhatsApp For Desktop PC | 2015) - C:\Users\user\Desktop\WhatsApp For Desktop - Addon [2019-03-27] CHR Extension: (YouTube Video and Mp3 Downloader) - C:\Users\user\Desktop\YouTube Video Downloader [2019-09-12] CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-05-06] CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-05-06] CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR Session Restore: -> est activé. OPR Extension: (IDM Integration Module) - C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2019-09-04] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [325600 2016-08-26] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) R2 AVP19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe [619640 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab) S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> ) R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-11-01] (Intel Corporation -> Intel Corporation) R2 FBAgent; C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe [73032 2014-08-13] (FarStone Technology -> ) R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806344 2018-11-01] (ICEpower a/s -> ICEpower) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-27] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-09-15] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-12] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) S3 klvssbridge64_19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\x64\vssbridge64.exe [414352 2018-12-28] (Kaspersky Lab -> AO Kaspersky Lab) S2 KMService; C:\WINDOWS\SysWOW64\srvany.exe [8192 2003-04-18] () [Fichier non signé] S2 moohelp; C:\Program Files (x86)\The Cleaner\mhelper.exe [812544 2010-03-05] (MooSoft Development LLC -> MooSoft Development LLC) [Fichier non signé] R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [324168 2018-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) R2 SCPDFV4ReadSpool; C:\WINDOWS\Installer\MSI4023.tmp [189688 2019-01-25] (Solid Documents -> Solid Documents, LLC) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11660528 2018-12-07] (TeamViewer GmbH -> TeamViewer GmbH) R2 Tran_Process_Proc; C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DCNTranProc.exe [71024 2014-03-25] (Farstone Technology Inc -> ) R2 UDisk Monitor; C:\Program Files\ZTEMT UI\bin\MonServiceUDisk.exe [403456 2010-05-11] () [Fichier non signé] S3 uSHAREitSvc; C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe [33224 2017-09-11] (SHAREit Technologies Co.Ltd -> SHAREit Technologies Co.Ltd) S2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2018-12-28] (Lavasoft Limited -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [493232 2018-09-07] (Windscribe Limited -> Windscribe Limited) S3 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-12] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-23] (ASUSTeK Computer Inc. -> ) R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [99320 2016-10-12] (ASUSTeK Computer Inc. -> ASUS Corporation) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [243400 2018-01-27] (Kaspersky Lab -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66616 2016-11-01] (Intel Corporation -> Intel Corporation) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-11-01] (Intel Corporation -> Intel Corporation) S3 farmntio; C:\Windows\system32\drivers\farmntio.sys [25144 2014-03-25] (FarStone Technology -> ) [Fichier non signé] R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [75600 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [126288 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [91472 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [29208 2017-03-30] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [236672 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1093240 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP19.0.0\Bases\klids.sys [197760 2019-09-25] (Kaspersky Lab -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1168000 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58704 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [60536 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [60784 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [50304 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [46416 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [245272 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-08-12] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [302368 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [116104 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [198768 2019-08-12] (Kaspersky Lab -> AO Kaspersky Lab) S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [104576 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [184960 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [218240 2019-08-11] (Kaspersky Lab -> AO Kaspersky Lab) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_87707a61a7faf7b5\nvlddmkm.sys [20746632 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation) S3 PVUSB; C:\WINDOWS\System32\drivers\CESG64.sys [63808 2007-02-19] (CASIO COMPUTER CO.,LTD. -> CASIO COMPUTER CO.,LTD.) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-01] (Realtek Semiconductor Corp. -> Realtek ) R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [758352 2018-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) S3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [6131720 2016-08-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) R3 RTWlanE02; C:\WINDOWS\System32\drivers\rtwlane02.sys [9599440 2018-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2018-07-13] (Windscribe Limited -> The OpenVPN Project) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-06-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [337632 2019-06-06] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-06] (Microsoft Windows -> Microsoft Corporation) S3 ztemtusbser; C:\WINDOWS\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys [120704 2010-05-11] (Microsoft Windows Hardware Compatibility Publisher -> ZTEMT Incorporated) S3 dgderdrv; System32\drivers\dgderdrv.sys [X] S3 mdf16; \??\C:\Users\user\AppData\Local\Temp\mdf16.sys [X] <==== ATTENTION S3 mvd23; \??\C:\Users\user\AppData\Local\Temp\mvd23.sys [X] <==== ATTENTION ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-09-27 20:25 - 2019-09-27 20:31 - 000044847 _____ C:\Users\user\Desktop\FRST.txt 2019-09-27 20:24 - 2019-09-27 20:30 - 000000000 ____D C:\FRST 2019-09-27 20:16 - 2019-09-27 20:16 - 000006778 ___RH C:\farstone_pe.letter 2019-09-27 20:11 - 2019-09-27 20:12 - 001615872 _____ (Farbar) C:\Users\user\Desktop\FRST64 Farbar Recovery Scan Tool Win 64bit.exe 2019-09-27 19:58 - 2018-04-11 06:46 - 000402944 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe 2019-09-27 19:58 - 2018-04-11 06:44 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll 2019-09-27 19:58 - 2018-04-11 05:12 - 000380416 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe 2019-09-27 19:58 - 2018-04-11 05:11 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll 2019-09-27 19:58 - 2018-04-10 21:41 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll 2019-09-27 19:58 - 2018-04-10 21:37 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll 2019-09-27 19:58 - 2018-04-10 21:15 - 017871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll 2019-09-27 19:58 - 2018-04-10 21:15 - 014058496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll 2019-09-27 19:58 - 2018-04-10 21:11 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll 2019-09-27 19:58 - 2018-04-10 21:11 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll 2019-09-27 19:58 - 2018-04-10 21:10 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll 2019-09-27 19:58 - 2018-04-10 21:10 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll 2019-09-27 19:58 - 2018-04-10 21:09 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll 2019-09-27 19:58 - 2018-04-10 21:09 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll 2019-09-27 19:58 - 2018-04-10 21:08 - 004529664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe 2019-09-27 19:58 - 2018-04-10 21:08 - 003632640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe 2019-09-27 19:58 - 2018-04-10 21:08 - 002249728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll 2019-09-27 19:58 - 2018-04-10 21:08 - 001100288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll 2019-09-27 19:58 - 2018-04-10 21:08 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll 2019-09-27 19:58 - 2018-04-10 21:08 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll 2019-09-27 19:58 - 2018-04-10 21:08 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll 2019-09-27 19:58 - 2018-04-10 21:07 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll 2019-09-27 19:58 - 2018-04-10 21:07 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll 2019-09-27 19:58 - 2018-04-10 21:07 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll 2019-09-27 19:58 - 2018-04-10 21:06 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe 2019-09-27 19:58 - 2018-04-10 21:06 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll 2019-09-27 19:58 - 2018-04-10 21:06 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe 2019-09-27 19:58 - 2018-04-10 21:06 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll 2019-09-27 19:58 - 2018-04-10 21:06 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll 2019-09-27 19:58 - 2018-04-10 21:05 - 005746688 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe 2019-09-27 19:58 - 2018-04-10 21:05 - 002000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll 2019-09-27 19:58 - 2018-04-10 21:05 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll 2019-09-27 19:58 - 2018-04-10 21:04 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll 2019-09-27 19:58 - 2018-04-10 21:03 - 002818560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll 2019-09-27 19:58 - 2018-04-10 21:02 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe 2019-09-27 19:58 - 2018-04-10 21:02 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll 2019-09-27 18:30 - 2019-09-27 18:30 - 000001241 _____ C:\Users\Public\Desktop\SHAREit.lnk 2019-09-27 18:30 - 2019-09-27 18:30 - 000000000 ____D C:\Users\user\AppData\Local\SHAREit Technologies 2019-09-27 18:30 - 2019-09-27 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHAREit 2019-09-27 18:30 - 2019-09-27 18:30 - 000000000 ____D C:\Program Files (x86)\SHAREit Technologies 2019-09-26 03:31 - 2003-04-18 19:06 - 000008192 _____ C:\WINDOWS\SysWOW64\srvany.exe 2019-09-26 01:46 - 2019-09-26 01:46 - 000000000 ___HD C:\$SysReset 2019-09-26 00:55 - 2019-09-26 00:55 - 000000000 ____D C:\Users\user\AppData\Local\Slimjet 2019-09-26 00:40 - 2019-09-26 00:40 - 000000000 ____D C:\Users\user\Documents\mini-KMS_Activator_v1.052 2019-09-26 00:39 - 2019-09-26 00:39 - 000001028 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk 2019-09-26 00:39 - 2019-09-26 00:39 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-09-26 00:39 - 2019-09-26 00:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-09-26 00:34 - 2019-09-26 00:34 - 000997253 _____ C:\Users\user\Documents\mini-KMS_Activator_v1.zip 2019-09-26 00:30 - 2019-09-26 00:30 - 000997278 _____ C:\Users\user\Documents\mini-KMS_Activator_v1.052.7z 2019-09-26 00:16 - 2019-09-27 20:23 - 000000095 _____ C:\Users\user\.accessibility.properties 2019-09-26 00:13 - 2014-12-20 22:23 - 002817875 _____ C:\Users\user\Documents\CrystalDiskInfo6_2_2.zip 2019-09-25 23:55 - 2011-05-31 15:07 - 000997061 _____ C:\Users\user\Documents\mini-KMS_Activator_v1.052.rar 2019-09-25 23:38 - 2011-05-31 15:07 - 000997061 _____ C:\Users\user\Desktop\mini-KMS_Activator_v1.052.rar 2019-09-25 23:14 - 2019-09-25 23:15 - 560117339 _____ C:\UsbFix_Upload_Me_SAMRAMJAM.zip 2019-09-21 01:13 - 2014-05-22 22:22 - 018886220 _____ C:\Users\user\Documents\MiniToo Partition Wizard Home Edition 7.7 Portable.rar 2019-09-21 01:09 - 2015-05-12 18:51 - 000002423 _____ C:\Users\user\Documents\LES SITES DANS OPERA_New1.txt 2019-09-21 01:09 - 2015-05-12 18:51 - 000001887 _____ C:\Users\user\Documents\LES SITES DANS OPERA.txt 2019-09-21 01:07 - 2015-07-23 17:10 - 006241216 _____ C:\Users\user\Documents\Logiciel de crack wifi.rar 2019-09-21 00:35 - 2019-09-21 00:35 - 000000000 ____D C:\adb 2019-09-16 00:26 - 2019-09-16 00:54 - 000000000 ____D C:\Program Files (x86)\KingRoot 2019-09-16 00:26 - 2019-09-16 00:26 - 000001038 _____ C:\Users\Public\Desktop\KingRoot.lnk 2019-09-16 00:26 - 2019-09-16 00:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KingRoot 2019-09-15 22:35 - 2019-09-14 04:17 - 014554243 _____ C:\Users\user\Documents\Livre du professeur - Variations_Maths_1re.pdf 2019-09-15 20:44 - 2019-09-15 20:45 - 005811126 _____ C:\Users\user\Downloads\Root Browser Classic_v2.7.9.0_apkpure.com.apk 2019-09-14 00:32 - 2019-09-14 00:39 - 040449696 _____ (Samsung Electronics) C:\Users\user\Desktop\SmartSwitchPC_setup (1).exe 2019-09-14 00:31 - 2017-05-22 12:20 - 001499368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01007.dll 2019-09-14 00:31 - 2017-05-22 12:20 - 000716880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller.dll 2019-09-14 00:31 - 2017-05-22 12:20 - 000166288 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2019-09-14 00:31 - 2017-05-22 12:20 - 000131984 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys 2019-09-14 00:30 - 2017-05-22 12:20 - 000069120 _____ (Nokia) C:\WINDOWS\system32\nmwcdclsx64.dll 2019-09-13 22:42 - 2019-09-13 22:42 - 000011778 _____ C:\Users\user\Desktop\CONNAIT TOUT.xlsx 2019-09-12 02:13 - 2019-09-12 02:13 - 000002004 _____ C:\Users\Public\Desktop\Samsung Kies 3.lnk 2019-09-12 02:02 - 2019-09-14 00:47 - 000002158 _____ C:\Users\Public\Desktop\Smart Switch.lnk 2019-09-12 01:52 - 2019-09-12 01:52 - 000000000 ____D C:\Users\Public\Documents\CrashDump 2019-09-12 01:52 - 2019-09-12 01:52 - 000000000 ____D C:\ProgramData\Documents\CrashDump 2019-09-12 01:33 - 2019-09-12 01:33 - 000000000 ____D C:\Users\user\AppData\Roaming\ADBDriverInstaller 2019-09-12 01:22 - 2019-09-12 01:22 - 000000000 ____D C:\Users\user\AppData\Local\Samsung 2019-09-12 01:19 - 2012-10-29 12:10 - 004659712 _____ (Dmitry Streblechenko) C:\WINDOWS\SysWOW64\Redemption.dll 2019-09-12 00:32 - 2019-09-12 00:32 - 000000000 ____D C:\Users\user\Desktop\YouTube Video Downloader - 16.2.2 2019-09-08 05:16 - 2019-09-08 05:16 - 000000000 ____D C:\$AV_ASW 2019-09-08 04:20 - 2019-09-08 04:20 - 000001891 _____ C:\Users\user\Desktop\Educadhoc.lnk 2019-09-08 04:20 - 2019-09-08 04:20 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Educadhoc 2019-09-07 19:04 - 2019-09-07 19:04 - 000011400 _____ C:\Users\user\Documents\MES CREDIT.xlsx 2019-09-06 22:09 - 2019-09-06 22:09 - 000000017 _____ C:\Users\user\AppData\Local\resmon.resmoncfg ==================== Un mois (modifiés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-09-27 20:33 - 2018-12-14 23:52 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2019-09-27 20:30 - 2018-04-12 02:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-09-27 20:16 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-09-27 20:16 - 2017-01-04 06:14 - 000000000 ____D C:\ProgramData\NVIDIA 2019-09-27 20:15 - 2019-06-15 21:58 - 000000000 ____D C:\ProgramData\AVAST Software 2019-09-27 20:15 - 2019-01-01 22:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-09-27 20:14 - 2018-04-12 00:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-09-27 20:13 - 2018-11-15 21:59 - 000000000 ____D C:\Users\user\AppData\Roaming\DMCache 2019-09-27 20:05 - 2018-11-15 23:55 - 000000000 ____D C:\Users\user\AppData\Local\CrashDumps 2019-09-27 20:03 - 2018-04-12 02:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-09-27 19:58 - 2018-04-12 02:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-09-27 19:55 - 2018-11-15 21:59 - 000000000 ____D C:\Users\user\Downloads\Compressed 2019-09-27 18:29 - 2018-11-15 21:53 - 000000000 ____D C:\Users\user\AppData\Local\Lenovo 2019-09-27 18:29 - 2018-11-15 21:53 - 000000000 ____D C:\Program Files (x86)\Lenovo 2019-09-27 18:24 - 2019-01-01 22:00 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo 2019-09-27 00:58 - 2018-11-15 22:18 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc 2019-09-27 00:11 - 2019-01-01 21:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-09-26 17:26 - 2019-06-16 22:52 - 000000000 ____D C:\WINDOWS\Minidump 2019-09-26 03:28 - 2019-08-26 02:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2019-09-26 02:15 - 2019-07-24 21:39 - 000000000 ____D C:\Users\user\Documents\PHONE BILANE 2019-09-26 02:04 - 2019-07-24 21:13 - 000000000 ____D C:\Users\user\Downloads\LOGICIELS 2019-09-26 01:11 - 2018-10-29 20:01 - 000000000 ____D C:\Program Files\WinRAR 2019-09-26 01:10 - 2018-04-12 00:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2019-09-26 01:09 - 2018-12-27 23:43 - 000000000 ___RD C:\Users\user\AppData\Roaming\uTorrent 2019-09-26 00:53 - 2019-03-17 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2019-09-26 00:53 - 2019-03-17 22:11 - 000000000 ____D C:\Program Files (x86)\7-Zip 2019-09-26 00:29 - 2018-11-15 21:35 - 000000000 ____D C:\Program Files (x86)\WinRAR 2019-09-25 23:15 - 2018-12-20 17:38 - 000009582 _____ C:\UsbFix.txt 2019-09-25 23:15 - 2018-12-20 17:38 - 000000000 ____D C:\UsbFix 2019-09-25 19:20 - 2018-12-28 00:12 - 000001420 _____ C:\Users\user\Desktop\Navigateur Opera.lnk 2019-09-25 19:20 - 2018-11-17 22:12 - 000001076 _____ C:\Users\user\Desktop\Sine qua non.lnk 2019-09-25 19:20 - 2018-11-15 21:59 - 000001040 _____ C:\Users\user\Desktop\Internet Download Manager.lnk 2019-09-25 19:16 - 2019-01-01 21:15 - 000513600 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-09-25 19:16 - 2018-12-27 22:17 - 000000000 ____D C:\Program Files\PDFCreator 2019-09-25 18:33 - 2018-04-12 02:38 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-09-21 04:30 - 2018-11-15 21:59 - 000000000 ____D C:\Users\user\Downloads\Video 2019-09-21 02:13 - 2018-12-28 00:12 - 000001433 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2019-09-21 01:11 - 2014-05-22 22:23 - 000000000 ____D C:\Users\user\Documents\MiniToo Partition Wizard Home Edition 7.7 Portable 2019-09-21 00:36 - 2018-04-12 02:36 - 000000000 ____D C:\WINDOWS\INF 2019-09-21 00:36 - 2017-01-04 06:22 - 000000000 ____D C:\Program Files\DIFX 2019-09-20 23:52 - 2019-07-24 21:00 - 000000000 ____D C:\Users\user\Documents\MON PHONE J7-PRIME 2019-09-20 23:06 - 2019-01-25 17:34 - 000000000 ____D C:\Users\user\AppData\Roaming\SolidDocuments 2019-09-20 22:46 - 2019-03-20 22:11 - 000000000 ___RD C:\Users\user\Documents\Scanned Documents 2019-09-19 00:56 - 2019-03-27 04:04 - 000002261 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-09-19 00:56 - 2019-03-27 04:04 - 000002220 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-09-18 04:36 - 2018-11-15 21:18 - 000005442 _____ C:\Users\user\Desktop\Mes nouveau compte.txt 2019-09-16 00:08 - 2019-04-06 05:02 - 000000000 ____D C:\Users\user\AppData\Roaming\KingRoot 2019-09-15 23:01 - 2019-04-06 03:09 - 000000000 ____D C:\Program Files (x86)\Kingo ROOT 2019-09-15 19:45 - 2018-12-01 19:02 - 000001601 _____ C:\Users\user\Documents\Fichiers récents SQN.txt 2019-09-15 19:36 - 2018-11-17 23:08 - 000001726 _____ C:\Users\user\Documents\Preferences_sqn.txt 2019-09-15 19:26 - 2018-11-17 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sine qua non 2019-09-15 19:26 - 2018-11-17 22:12 - 000000000 ____D C:\Program Files (x86)\Sine qua non 2019-09-15 18:24 - 2018-12-01 19:27 - 000000000 ____D C:\Users\user\Documents\Documents Bluethooth 2019-09-14 04:28 - 2019-02-14 22:19 - 000000000 ____D C:\Users\user\Documents\Samsung 2019-09-14 02:26 - 2017-11-17 18:40 - 000000000 ___RD C:\Users\user\Documents\Abackup 2019-09-14 01:37 - 2018-12-26 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-09-14 01:37 - 2018-12-26 22:51 - 000000000 ____D C:\Program Files (x86)\Java 2019-09-14 01:22 - 2018-12-26 22:52 - 000098288 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2019-09-14 00:43 - 2019-02-14 22:17 - 000000000 ____D C:\Program Files (x86)\Samsung 2019-09-12 02:14 - 2019-02-14 22:18 - 000000000 ____D C:\ProgramData\Samsung 2019-09-12 02:14 - 2019-02-14 22:17 - 000000000 ____D C:\Users\user\AppData\Roaming\Samsung 2019-09-12 02:13 - 2019-02-14 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2019-09-12 02:13 - 2017-01-04 06:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-09-12 02:12 - 2019-01-01 22:41 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2019-09-12 01:18 - 2019-03-27 03:45 - 000000000 ____D C:\Users\user\AppData\Local\Downloaded Installations 2019-09-12 00:30 - 2018-01-02 04:22 - 000000000 ____D C:\Users\user\Desktop\YouTube Video Downloader 2019-09-11 22:00 - 2018-11-15 23:35 - 000000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics 2019-09-11 20:25 - 2018-04-12 02:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-09-01 06:57 - 2018-04-12 02:41 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-09-01 06:57 - 2018-04-12 02:41 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Fichiers à la racine de certains dossiers ================ 2019-06-13 23:54 - 2019-06-13 23:54 - 000000064 _____ () C:\Users\user\AppData\Roaming\Camdata.ini 2019-06-13 23:54 - 2019-06-13 23:54 - 000000408 _____ () C:\Users\user\AppData\Roaming\CamLayout.ini 2019-06-13 23:54 - 2019-06-13 23:54 - 000000408 _____ () C:\Users\user\AppData\Roaming\CamShapes.ini 2019-06-13 23:54 - 2019-06-13 23:54 - 000004523 _____ () C:\Users\user\AppData\Roaming\CamStudio.cfg 2018-02-21 13:00 - 2019-08-19 04:39 - 000000200 _____ () C:\Users\user\AppData\Roaming\sp_data.sys 2019-09-06 22:09 - 2019-09-06 22:09 - 000000017 _____ () C:\Users\user\AppData\Local\resmon.resmoncfg 2019-04-06 03:09 - 2019-04-06 05:05 - 000000072 _____ () C:\Users\user\AppData\Local\uts.ini ==================== SigCheck =============================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ============================