Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 31-08-2016
Exécuté par NBA (administrateur) sur NBA-PC (08-09-2016 13:48:23)
Exécuté depuis C:\Users\NBA\Downloads
Profils chargés: NBA (Profils disponibles: NBA & DefaultAppPool)
Platform: Microsoft Windows 10 Professionnel Version 1511 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPLoader.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPCenter.exe
(AsusTek) C:\Program Files\ASUS\ASUS Smart Gesture\AsTPCenter\x86\AsusTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [76264 2013-04-22] (Intel Corporation)
HKLM\...\Run: [USB3MON] => C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2015-12-18] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2396096 2016-03-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap.dll [1373680 2016-03-30] (NVIDIA Corporation)
HKLM\...\Run: [ATKOSD2] => C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM\...\Run: [ATKMEDIA] => C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM\...\Run: [HControlUser] => C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3280760 2016-01-15] (Disc Soft Ltd)
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2857248 2016-08-23] (Valve Corporation)
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6854360 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\...\MountPoints2: {a28729ae-697a-11e6-b059-54271e186382} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\...\MountPoints2: {ad6f9122-cc2e-11e5-a9c9-54271e186382} - "G:\setup.exe"
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\...\MountPoints2: {ffe6cebc-614d-11e6-b04a-54271e186382} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\...\MountPoints2: {ffe6cee1-614d-11e6-b04a-54271e186382} - "F:\HiSuiteDownLoader.exe"
AppInit_DLLs: C:\Windows\system32\nvinit.dll => C:\Windows\system32\nvinit.dll [153392 2016-03-22] (NVIDIA Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ce3346bf-f572-4c95-aee2-a1b6ca4ad6f9}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{d677f375-4931-4550-b205-3ebdf4b1ba56}: [NameServer] 188.120.239.115,8.8.8.8
Tcpip\..\Interfaces\{d677f375-4931-4550-b205-3ebdf4b1ba56}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-971050915-1518592576-2056344538-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope la valeur est absente
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-09-07] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2016-09-07] (AO Kaspersky Lab)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Pas de fichier
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-971050915-1518592576-2056344538-1000 -> hxxp://www.nuesearch.com/?type=hp&ts=1470216949&z=41a66120ce4d3fab50e04e0g6zam0edodgcq7t9z4m&from=wpm0802&uid=WDCXWD10JPVX-80JC3T0_WD-WX81E73FLYK8FLYK8
FireFox:
========
FF ProfilePath: C:\Users\NBA\AppData\Roaming\Mozilla\Firefox\Profiles\pjpky80q.default-1472047395695
FF Homepage: www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-08-12] ()
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-01-06] (Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-01-06] (Intel Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin HKU\S-1-5-21-971050915-1518592576-2056344538-1000: @acestream.net/acestreamplugin,version=3.1.2 -> C:\Users\NBA\AppData\Roaming\ACEStream\player\npace_plugin.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-971050915-1518592576-2056344538-1000: @acestream.net/acestreamplugin,version=3.1.7 -> C:\Users\NBA\AppData\Roaming\ACEStream\player\npace_plugin.dll [Pas de fichier]
FF Extension: (Adblock Plus) - C:\Users\NBA\AppData\Roaming\Mozilla\Firefox\Profiles\pjpky80q.default-1472047395695\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-09-08]
FF HKLM\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: (Kaspersky Protection) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-09-07]
Chrome:
=======
CHR HomePage: Profile 2 -> hxxp://www.google.com/
CHR StartupUrls: Profile 2 -> "hxxps://www.facebook.com/","hxxp://sports.williamhill.com/bet/en-gb/betting/y/5/Football.html","hxxp://livescore.com/","hxxp://clarolinehealthcare.net/index.php","hxxp://www.yessearches.com/?mode=nnnb&ptid=obs&uid=2352A55C21EF67E98F7BE09484CEAC53&v=20160202&ts=AHEpBH0qAHIlBE..","hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHEqCHEnBnUsA0..&v=20160722&uid=8B43C31903268EE08D84560FACF43C81&ptid=amz&mode=loadm"
CHR Profile: C:\Users\NBA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
CHR Profile: C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Profile: C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Docs) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-25]
CHR Extension: (Google Drive) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-25]
CHR Extension: (YouTube) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-25]
CHR Extension: (Kaspersky Protection) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eahebamiopdhefndnmappcihfajigkka [2016-09-07]
CHR Extension: (Google Sheets) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-25]
CHR Extension: (Gmail) - C:\Users\NBA\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-25]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]
CHR HKU\S-1-5-21-971050915-1518592576-2056344538-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
S4 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [80512 2011-11-21] (ASUS)
S4 ASNB4LDRSvc; C:\Program Files\ASUS\Wireless Console 3\ASNB4LDRSvc.exe [31864 2013-11-15] ()
S4 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS)
R2 AVP16.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2015-08-31] (Kaspersky Lab ZAO)
R3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [291760 2015-07-17] (Intel Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1082232 2016-01-15] (Disc Soft Ltd)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [79848 2013-04-22] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe [97952 2013-04-22] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [80400 2013-04-22] (Intel Corporation)
R2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [88152 2013-04-22] (Intel Corporation)
S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [929728 2016-03-30] (NVIDIA Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [306608 2015-07-17] (Intel Corporation)
S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [686552 2014-05-13] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2015-01-06] (Intel Corporation)
S4 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-03-30] (NVIDIA Corporation)
S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2904512 2016-03-30] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016704 2016-03-30] (NVIDIA Corporation)
S4 RemoteMouseService; C:\Program Files\Remote Mouse\RemoteMouseService.exe [18432 2016-06-17] () [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-08-05] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [141312 2012-01-09] (Windows (R) Win 7 DDK provider)
S3 AMPPALP; C:\WINDOWS\system32\DRIVERS\amppal.sys [141312 2012-01-09] (Windows (R) Win 7 DDK provider)
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [13880 2009-07-02] (ASUS)
R3 athr; C:\WINDOWS\System32\drivers\athw10.sys [3306312 2015-09-24] (Qualcomm Atheros Communications, Inc.)
R1 ATKWMIACPIIO; C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [14464 2011-09-07] (ASUS)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [89440 2015-08-23] (ASUS Corporation)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [521248 2016-06-26] (Qualcomm Atheros)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [201912 2015-07-06] (Kaspersky Lab ZAO)
R3 DptfDevDram; C:\WINDOWS\system32\DRIVERS\DptfDevDram.sys [57728 2013-04-22] (Intel Corporation)
R3 DptfDevPch; C:\WINDOWS\system32\DRIVERS\DptfDevPch.sys [47416 2013-04-22] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\system32\DRIVERS\DptfDevProc.sys [103688 2013-04-22] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\system32\DRIVERS\DptfManager.sys [162560 2013-04-22] (Intel Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [26168 2016-02-05] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [40504 2016-02-05] (Disc Soft Ltd)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsHIDSwitch.sys [25824 2015-08-20] (ASUS)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [153784 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [46776 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [57712 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [66976 2016-09-07] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [25208 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [147336 2016-09-07] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [53160 2016-09-07] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [764848 2016-09-07] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [44632 2016-09-07] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [37048 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [37560 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [39304 2016-09-07] (AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [74160 2016-09-07] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [87736 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [156856 2015-06-23] (Kaspersky Lab ZAO)
R3 MEI; C:\WINDOWS\system32\DRIVERS\TeeDriver.sys [111904 2015-01-06] (Intel Corporation)
R0 nvpciflt; C:\WINDOWS\System32\DRIVERS\nvpciflt.sys [42952 2016-03-25] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [25536 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [50752 2016-03-21] (NVIDIA Corporation)
R3 RSUSBVSTOR; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [242760 2013-01-15] (Realtek Semiconductor Corp.)
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2015-06-17] (Apple, Inc.) [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
U3 idsvc; pas de ImagePath
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-08 11:31 - 2016-09-08 11:31 - 02370048 _____ C:\Users\NBA\Downloads\ZHPCleaner.exe
2016-09-08 11:31 - 2016-09-08 11:31 - 00000909 _____ C:\Users\NBA\Desktop\ZHPCleaner.lnk
2016-09-08 11:23 - 2016-09-08 11:23 - 00040684 _____ C:\Users\NBA\Downloads\Addition.txt
2016-09-08 11:22 - 2016-09-08 13:48 - 00019355 _____ C:\Users\NBA\Downloads\FRST.txt
2016-09-08 11:22 - 2016-09-08 13:48 - 00000000 ____D C:\FRST
2016-09-08 11:20 - 2016-09-08 11:20 - 01747968 _____ (Farbar) C:\Users\NBA\Downloads\FRST.exe
2016-09-08 10:16 - 2016-09-08 10:16 - 00465024 _____ (Bleeping Computer, LLC) C:\Users\NBA\Downloads\sc-cleaner.exe
2016-09-08 09:52 - 2016-09-08 09:52 - 00299362 _____ C:\Users\NBA\Documents\cc_20160908_095235.reg
2016-09-08 02:37 - 2016-09-08 02:37 - 00000994 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-09-08 02:37 - 2016-09-08 02:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-09-08 02:32 - 2016-09-08 02:32 - 00001517 _____ C:\Users\NBA\Desktop\MARMITON.lnk
2016-09-08 02:32 - 2016-09-08 02:32 - 00000000 ____D C:\MARMITON
2016-09-08 02:31 - 2016-09-08 02:43 - 00000000 ____D C:\Program Files\CCleaner
2016-09-08 02:30 - 2016-09-08 02:31 - 00780752 _____ C:\Users\NBA\Downloads\marmiton-install.exe
2016-09-08 02:26 - 2016-09-08 02:28 - 08228024 _____ (Piriform Ltd) C:\Users\NBA\Downloads\ccsetup521pro.exe
2016-09-07 23:25 - 2016-09-07 23:26 - 03826240 _____ C:\Users\NBA\Downloads\adwcleaner_6.010(1).exe
2016-09-07 22:28 - 2016-09-07 22:28 - 00000000 _____ C:\Recovery.txt
2016-09-07 22:27 - 2016-09-07 22:28 - 00000000 ___HD C:\$SysReset
2016-09-07 17:45 - 2016-09-07 17:45 - 00002373 _____ C:\Users\NBA\Desktop\Safe Money.lnk
2016-09-07 17:44 - 2016-09-07 17:44 - 00002135 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2016-09-07 17:44 - 2016-09-07 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-09-07 17:43 - 2016-09-08 13:13 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-09-07 17:43 - 2016-09-07 18:21 - 00764848 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2016-09-07 17:43 - 2016-09-07 18:21 - 00147336 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2016-09-07 17:43 - 2016-09-07 18:01 - 00053160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2016-09-07 17:43 - 2016-09-07 17:43 - 00000000 ____D C:\Program Files\Kaspersky Lab
2016-09-07 17:34 - 2016-09-07 17:34 - 00000000 ____D C:\Users\NBA\Desktop\kis
2016-09-07 17:33 - 2016-09-07 17:26 - 166802162 _____ C:\Users\NBA\Desktop\KIS_en-ar__16.repackمنشطة بالكامل (1).rar
2016-09-07 16:39 - 2016-09-07 16:36 - 165222337 _____ C:\Users\NBA\Desktop\K.AV.16.0.1.445.9527_Mahbouli26_tunisia-sat.rar
2016-09-07 16:07 - 2016-09-07 16:15 - 00147660 _____ C:\Users\NBA\Downloads\Non confirmé 288423.crdownload
2016-09-03 22:17 - 2016-09-03 22:17 - 00000022 _____ C:\Users\NBA\Downloads\central-intelligence_english-1396625.zip
2016-09-03 22:09 - 2016-09-03 22:26 - 00000000 ____D C:\Users\NBA\Desktop\Central.Intelligence.2016.720p.WEB-DL.H264.AC3-EVO[EtHD]
2016-09-03 21:25 - 2016-09-03 21:25 - 00000000 ____D C:\Users\NBA\AppData\Roaming\ChicaLogic
2016-09-03 21:25 - 2016-09-03 21:25 - 00000000 ____D C:\ProgramData\ChicaLogic
2016-09-03 20:58 - 2016-09-03 20:58 - 00000000 ____D C:\Program Files\Wolf_Team_Tn
2016-09-03 20:30 - 2016-09-03 20:30 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-09-03 19:23 - 2016-09-03 20:18 - 00000000 ____D C:\KVRT_Data
2016-09-03 18:29 - 2016-09-03 18:31 - 00217144 _____ C:\Users\NBA\Downloads\tsclean_1.1.0.5.zip
2016-09-03 18:26 - 2016-09-03 18:27 - 00000000 ____D C:\Rem-VBSqt
2016-09-03 18:25 - 2016-09-03 18:25 - 00105472 _____ (bartblaze) C:\Users\NBA\Downloads\remediate-vbs-worm_8.0.0.exe
2016-09-03 16:29 - 2016-09-03 18:12 - 00019604 _____ C:\AdsFix_03_09_2016_18_12_43.txt
2016-09-03 16:27 - 2016-09-03 18:12 - 00000000 ____D C:\AdsFix
2016-09-03 10:38 - 2016-09-03 10:52 - 03826240 _____ C:\Users\NBA\Downloads\adwcleaner_6.010.exe
2016-08-29 15:22 - 2016-08-29 15:22 - 00008491 _____ C:\Users\NBA\Desktop\Site de l'inscription universitaire en ligne.htm
2016-08-29 15:22 - 2016-08-29 15:22 - 00000000 ____D C:\Users\NBA\Desktop\Site de l'inscription universitaire en ligne_fichiers
2016-08-24 22:20 - 2016-09-03 13:03 - 00000000 ____D C:\Users\NBA\Desktop\Détails du paiement sur le site PayPal - PayPal_files
2016-08-24 22:20 - 2016-08-24 22:20 - 00031805 _____ C:\Users\NBA\Desktop\Détails du paiement sur le site PayPal - PayPal.html
2016-08-24 15:34 - 2016-08-24 15:34 - 00000000 ____D C:\Users\NBA\Documents\Bandicam
2016-08-24 15:33 - 2016-08-24 15:33 - 00000975 _____ C:\Users\Public\Desktop\Bandicam.lnk
2016-08-24 15:33 - 2016-08-24 15:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2016-08-24 15:33 - 2016-08-24 15:33 - 00000000 ____D C:\Program Files\BandiMPEG1
2016-08-24 15:33 - 2016-08-24 15:33 - 00000000 ____D C:\Program Files\Bandicam
2016-08-24 15:15 - 2016-09-08 10:16 - 00001048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-08-24 15:15 - 2016-08-24 15:15 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-08-24 15:12 - 2016-08-24 15:12 - 00242256 _____ C:\Users\NBA\Downloads\Firefox Setup Stub 48.0.1.exe
2016-08-24 14:48 - 2016-08-24 14:49 - 03784256 _____ C:\Users\NBA\Downloads\adwcleaner_6.000.exe
2016-08-24 00:26 - 2016-08-24 00:26 - 00000000 ____D C:\Users\NBA\AppData\Roaming\Smart Application Controller
2016-08-23 22:58 - 2016-08-23 22:58 - 00000806 _____ C:\Users\NBA\Downloads\android.hardware.sensor.gyroscope.xml
2016-08-20 15:24 - 2016-08-20 15:24 - 00000000 ____D C:\Users\NBA\Desktop\NATEJ
2016-08-20 15:23 - 2016-08-20 15:23 - 12236534 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part8.rar
2016-08-20 15:22 - 2016-08-20 15:23 - 734003200 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part7.rar
2016-08-20 15:21 - 2016-08-20 15:22 - 734003200 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part6.rar
2016-08-20 15:19 - 2016-08-20 15:21 - 734003200 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part5.rar
2016-08-20 15:18 - 2016-08-20 15:19 - 734003200 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part4.rar
2016-08-20 15:17 - 2016-08-20 15:18 - 734003200 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part3.rar
2016-08-20 15:15 - 2016-08-20 15:17 - 734003200 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part2.rar
2016-08-20 15:14 - 2016-08-20 15:15 - 734003200 _____ C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED.part1.rar
2016-08-20 15:07 - 2016-08-20 15:07 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2016-08-17 15:59 - 2016-09-03 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2016-08-17 15:59 - 2016-08-17 16:28 - 00000000 ____D C:\Users\NBA\AppData\Roaming\CodeBlocks
2016-08-17 15:53 - 2016-08-17 15:58 - 34486727 _____ (The Code::Blocks Team) C:\Users\NBA\Downloads\code-blocks_16-01_fr_430815.exe
2016-08-16 22:45 - 2016-09-08 09:48 - 00000000 ____D C:\WINDOWS\Minidump
2016-08-14 15:42 - 2016-08-14 15:42 - 18143290 _____ C:\Users\NBA\Documents\test_fixed.avi
2016-08-14 15:08 - 2016-09-08 00:17 - 00000000 ____D C:\Users\NBA\Desktop\Bandicam 2.4.1.901 (2015)_Mahbouli26_tunisia-sat
2016-08-14 15:08 - 2016-08-14 15:53 - 00000000 _RSHD C:\Users\NBA\AppData\Roaming\WindowsSystem
2016-08-14 15:08 - 2015-11-06 23:51 - 00417282 ___SH C:\Users\NBA\AppData\Local\CSIDL_X
2016-08-14 11:23 - 2016-08-14 11:23 - 00000000 ____D C:\Users\NBA\Downloads\v1.8.5.303
2016-08-14 11:22 - 2016-08-14 11:22 - 07077850 _____ C:\Users\NBA\Downloads\v1.8.5.303.rar
2016-08-13 19:20 - 2016-08-13 19:20 - 00000000 ____D C:\Users\NBA\AppData\Roaming\TechSmith
2016-08-13 19:19 - 2016-08-13 19:19 - 00000000 ____D C:\Users\NBA\AppData\Local\TechSmith
2016-08-13 18:54 - 2016-08-13 19:15 - 261137096 _____ C:\Users\NBA\Downloads\camtasia.exe
2016-08-13 18:16 - 2016-09-03 21:31 - 00000000 ____D C:\Program Files\Adobe
2016-08-13 18:07 - 2016-08-13 18:08 - 13860615 _____ (Bandisoft) C:\Users\NBA\Downloads\Non confirmé 349557.crdownload
2016-08-13 14:59 - 2016-08-13 14:59 - 00000000 ___RD C:\Users\NBA\3D Objects
2016-08-13 02:19 - 2016-08-13 13:04 - 00000000 ____D C:\Program Files\McAfee
2016-08-12 20:23 - 2016-08-12 20:19 - 00000030 _____ C:\AVScanner.ini
2016-08-12 20:19 - 2016-08-13 02:23 - 00000000 ____D C:\ProgramData\McAfee
2016-08-12 20:09 - 2016-08-12 20:13 - 81395336 _____ C:\Users\NBA\Downloads\Ace_Stream_Media_3.1.7.exe
2016-08-12 13:59 - 2016-08-12 13:59 - 00000000 ____D C:\Users\NBA\AppData\Roaming\Mirillis
2016-08-12 13:59 - 2016-08-12 13:59 - 00000000 ____D C:\Users\NBA\AppData\Local\Mirillis
2016-08-12 13:59 - 2016-08-12 13:59 - 00000000 ____D C:\ProgramData\Mirillis
2016-08-12 13:57 - 2016-08-14 14:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2016-08-12 13:57 - 2016-08-14 14:54 - 00000000 ____D C:\Program Files\Mirillis
2016-08-12 13:55 - 2016-08-12 13:57 - 21724616 _____ (Mirillis Ltd.) C:\Users\NBA\Downloads\action_1_31_4_setup.exe
2016-08-12 13:42 - 2016-08-12 13:42 - 18121216 _____ C:\Users\NBA\Documents\test.avi
2016-08-12 13:39 - 2016-08-12 13:42 - 00004570 _____ C:\Users\NBA\AppData\Roaming\CamStudio.cfg
2016-08-12 13:39 - 2016-08-12 13:42 - 00000408 _____ C:\Users\NBA\AppData\Roaming\CamLayout.ini
2016-08-12 13:39 - 2016-08-12 13:42 - 00000125 _____ C:\Users\NBA\AppData\Roaming\Camdata.ini
2016-08-12 13:34 - 2016-08-12 13:40 - 00000096 _____ C:\Users\NBA\AppData\Roaming\version2.xml
2016-08-12 13:30 - 2016-08-12 13:30 - 01640088 _____ (CamStudio) C:\Users\NBA\Downloads\camstudio.exe
2016-08-12 13:24 - 2016-08-12 13:24 - 00000000 ____D C:\Users\NBA\AppData\Roaming\Greenshot
2016-08-12 13:24 - 2016-08-12 13:24 - 00000000 ____D C:\Users\NBA\AppData\Local\Greenshot
2016-08-12 13:23 - 2016-08-12 13:23 - 01374661 _____ (Greenshot ) C:\Users\NBA\Downloads\Greenshot-INSTALLER-1.2.8.12-RELEASE.exe
2016-08-11 16:12 - 2016-08-03 07:27 - 01303744 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-11 16:12 - 2016-08-03 07:27 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-11 16:12 - 2016-08-03 07:27 - 00045760 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-11 16:12 - 2016-08-03 06:52 - 05793632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-11 16:12 - 2016-08-03 06:52 - 00083808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-11 16:12 - 2016-08-03 06:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-11 16:12 - 2016-08-03 06:43 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-11 16:12 - 2016-08-03 06:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-11 16:12 - 2016-08-03 06:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-11 16:12 - 2016-08-03 06:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-11 16:12 - 2016-08-03 06:32 - 00413024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-11 16:12 - 2016-08-03 06:32 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-11 16:12 - 2016-08-03 06:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-11 16:12 - 2016-08-03 06:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-11 16:12 - 2016-08-03 06:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-11 16:12 - 2016-08-03 06:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-11 16:12 - 2016-08-03 06:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-11 16:12 - 2016-08-03 06:29 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-11 16:12 - 2016-08-03 06:29 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-11 16:12 - 2016-08-03 06:28 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-11 16:12 - 2016-08-03 06:28 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-11 16:12 - 2016-08-03 06:21 - 01712992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-11 16:12 - 2016-08-03 06:21 - 00483680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-11 16:12 - 2016-08-03 06:21 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-11 16:12 - 2016-08-03 06:18 - 00346464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-11 16:12 - 2016-08-03 05:58 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-11 16:12 - 2016-08-03 05:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-11 16:12 - 2016-08-03 05:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-11 16:12 - 2016-08-03 05:48 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2016-08-11 16:12 - 2016-08-03 05:48 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-11 16:12 - 2016-08-03 05:47 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-11 16:12 - 2016-08-03 05:44 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-08-11 16:12 - 2016-08-03 05:44 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-08-11 16:12 - 2016-08-03 05:44 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-11 16:12 - 2016-08-03 05:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-11 16:12 - 2016-08-03 05:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-11 16:12 - 2016-08-03 05:44 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-11 16:12 - 2016-08-03 05:43 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-11 16:12 - 2016-08-03 05:43 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-08-11 16:12 - 2016-08-03 05:43 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-11 16:12 - 2016-08-03 05:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-11 16:12 - 2016-08-03 05:41 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-11 16:12 - 2016-08-03 05:40 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-11 16:12 - 2016-08-03 05:40 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-11 16:12 - 2016-08-03 05:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-11 16:12 - 2016-08-03 05:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-11 16:12 - 2016-08-03 05:39 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-11 16:12 - 2016-08-03 05:39 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-11 16:12 - 2016-08-03 05:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-11 16:12 - 2016-08-03 05:37 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-11 16:12 - 2016-08-03 05:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-11 16:12 - 2016-08-03 05:35 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-11 16:12 - 2016-08-03 05:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-11 16:12 - 2016-08-03 05:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-11 16:12 - 2016-08-03 05:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-11 16:12 - 2016-08-03 05:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-11 16:12 - 2016-08-03 05:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-11 16:12 - 2016-08-03 05:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-11 16:12 - 2016-08-03 05:33 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-11 16:12 - 2016-08-03 05:33 - 01152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-11 16:12 - 2016-08-03 05:33 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-08-11 16:12 - 2016-08-03 05:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-11 16:12 - 2016-08-03 05:33 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-08-11 16:12 - 2016-08-03 05:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-11 16:12 - 2016-08-03 05:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-11 16:12 - 2016-08-03 05:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-11 16:12 - 2016-08-03 05:32 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-11 16:12 - 2016-08-03 05:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-11 16:12 - 2016-08-03 05:32 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-11 16:12 - 2016-08-03 05:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-11 16:12 - 2016-08-03 05:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-11 16:12 - 2016-08-03 05:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-11 16:12 - 2016-08-03 05:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-11 16:12 - 2016-08-03 05:27 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-11 16:12 - 2016-08-03 05:27 - 01903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-11 16:12 - 2016-08-03 05:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-11 16:12 - 2016-08-03 05:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-11 16:12 - 2016-08-03 05:24 - 01735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-11 16:12 - 2016-08-03 05:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-11 16:12 - 2016-08-03 05:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-11 16:12 - 2016-08-03 05:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-11 16:12 - 2016-08-03 05:22 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-11 16:12 - 2016-08-03 05:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-11 16:12 - 2016-08-03 05:22 - 01086976 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-11 16:12 - 2016-08-03 05:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-11 16:12 - 2016-08-03 05:20 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-11 16:12 - 2016-08-03 05:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-11 06:24 - 2016-08-11 06:24 - 00000000 ____D C:\ProgramData\Movavi Video Suite 12
2016-08-11 06:16 - 2016-08-11 06:16 - 00000000 ____D C:\Users\NBA\Downloads\MovAvi Screen Capture Studio 5.0.0
2016-08-11 05:59 - 2016-08-11 06:11 - 137916990 _____ C:\Users\NBA\Downloads\MovAvi Screen Capture Studio 5.0.0.rar
2016-08-11 05:49 - 2016-08-11 05:50 - 03954688 _____ C:\Users\NBA\Downloads\Movavi_Video_Editor_11_Activation_Key_Crack_Full_V.iso
2016-08-11 05:38 - 2016-08-11 05:38 - 00000000 ____D C:\Users\NBA\AppData\Local\ScreenCapture
2016-08-11 05:36 - 2016-08-11 05:38 - 00000000 ____D C:\Users\NBA\AppData\Local\Movavi
2016-08-11 05:36 - 2016-08-11 05:36 - 00000000 ____D C:\Users\NBA\AppData\Local\ScreenCaptureStudio
2016-08-11 05:33 - 2016-08-11 05:33 - 00000000 ____D C:\ProgramData\Movavi Screen Capture Studio 7
2016-08-11 05:18 - 2016-08-11 05:33 - 71812960 _____ (Movavi) C:\Users\NBA\Downloads\MovaviScreenCaptureSetupF.exe
2016-08-09 02:04 - 2016-08-09 02:04 - 00000000 ____D C:\Users\NBA\Downloads\d40_0
2016-08-09 02:03 - 2016-08-09 02:03 - 11443531 _____ C:\Users\NBA\Downloads\d40_0.rar
2016-08-09 01:49 - 2016-09-04 18:02 - 00001605 _____ C:\Users\NBA\Desktop\PES2016.exe - Raccourci.lnk
2016-08-09 01:29 - 2016-08-09 01:29 - 00000000 ____D C:\Users\NBA\Downloads\Crack pes2016 1.05 online by allin1
2016-08-09 01:28 - 2016-08-09 01:29 - 12082609 _____ C:\Users\NBA\Downloads\Crack pes2016 1.05 online by allin1.rar
2016-08-09 01:00 - 2016-08-09 01:00 - 00000000 ____D C:\Users\NBA\Downloads\PES16.UP1.04.TUNISIA-SAT
2016-08-09 00:59 - 2016-08-09 00:59 - 00000000 ____D C:\Users\NBA\Downloads\2.0_1.3
2016-08-09 00:25 - 2016-08-09 00:58 - 506158962 _____ C:\Users\NBA\Downloads\2.0_1.3.rar
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-08 13:46 - 2016-02-03 15:31 - 00001078 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-08 13:27 - 2015-10-30 06:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-08 13:17 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-08 13:14 - 2016-08-08 22:24 - 00000000 ____D C:\Program Files\Steam
2016-09-08 13:14 - 2016-03-07 04:05 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-09-08 13:13 - 2016-08-05 02:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-08 13:13 - 2016-02-04 23:28 - 00000000 __SHD C:\Users\NBA\IntelGraphicsProfiles
2016-09-08 13:13 - 2016-02-03 15:31 - 00001074 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-08 11:39 - 2016-08-03 11:40 - 00000000 ____D C:\Users\NBA\AppData\Roaming\ZHP
2016-09-08 11:18 - 2016-08-05 02:08 - 02082644 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-08 11:18 - 2015-10-30 16:07 - 00923002 _____ C:\WINDOWS\system32\perfh00C.dat
2016-09-08 11:18 - 2015-10-30 16:07 - 00193482 _____ C:\WINDOWS\system32\perfc00C.dat
2016-09-08 11:18 - 2015-10-30 06:47 - 00000000 ____D C:\WINDOWS\INF
2016-09-08 11:12 - 2016-08-05 02:08 - 00000000 ____D C:\Users\NBA
2016-09-08 11:12 - 2016-08-03 12:35 - 00000000 ____D C:\AdwCleaner
2016-09-08 09:49 - 2016-02-21 10:10 - 00000000 ____D C:\Users\NBA\AppData\Roaming\uTorrent
2016-09-08 09:49 - 2016-02-05 18:58 - 00000000 ____D C:\Users\NBA\AppData\Roaming\DAEMON Tools Lite
2016-09-08 09:48 - 2016-08-05 02:00 - 00000000 ___DC C:\WINDOWS\Panther
2016-09-08 09:48 - 2016-02-10 00:46 - 00000000 ____D C:\Users\NBA\AppData\Local\CrashDumps
2016-09-08 09:48 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-09-08 00:17 - 2016-07-16 18:44 - 00000000 ___HD C:\$WINDOWS.~BT
2016-09-08 00:17 - 2016-07-15 01:49 - 00000000 ____D C:\Users\NBA\Desktop\NOUVEAU
2016-09-07 18:21 - 2015-06-26 23:54 - 00074160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwfp.sys
2016-09-07 18:21 - 2015-06-11 19:35 - 00044632 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys
2016-09-07 18:21 - 2015-06-08 19:43 - 00039304 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpd.sys
2016-09-07 18:21 - 2015-06-06 08:48 - 00066976 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kldisk.sys
2016-09-07 17:44 - 2015-10-30 06:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-09-07 17:43 - 2016-03-19 13:29 - 00000000 ____D C:\Users\TEMP
2016-09-07 17:43 - 2015-10-30 06:48 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-09-07 17:43 - 2015-10-30 06:13 - 00000000 ____D C:\Users\Default.migrated
2016-09-06 07:25 - 2015-10-30 06:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-09-04 18:32 - 2016-08-08 23:08 - 00000000 ____D C:\Program Files\Pro Evolution Soccer 2016
2016-09-03 21:33 - 2016-02-09 14:58 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-09-03 21:32 - 2016-02-09 14:58 - 00000000 ____D C:\ProgramData\Apple
2016-09-03 21:30 - 2016-07-25 12:06 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-09-03 21:29 - 2016-06-11 13:36 - 00000000 ____D C:\Users\NBA\AppData\Roaming\Octoshape
2016-09-03 20:03 - 2016-06-18 14:50 - 00001593 _____ C:\Users\NBA\Desktop\Embratoria_G5.exe - Raccourci.lnk
2016-09-03 16:27 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\Web
2016-09-03 13:02 - 2016-06-18 15:31 - 00000000 ____D C:\Users\NBA\Documents\em
2016-09-03 13:02 - 2016-02-04 11:40 - 00000000 ___RD C:\Users\NBA\Documents\Notes
2016-09-03 13:02 - 2016-02-03 15:24 - 00000000 ____D C:\Users\NBA\Documents\residanat
2016-09-03 13:00 - 2016-08-06 20:03 - 00000000 ____D C:\Users\NBA\Documents\Snagit
2016-09-03 12:55 - 2016-02-03 16:03 - 00000000 ___RD C:\Users\NBA\Desktop\Programmes
2016-09-03 12:52 - 2016-08-08 16:16 - 00000000 ____D C:\Users\NBA\Downloads\Pro.Evolution.Soccer.2016-RELOADED
2016-09-03 12:52 - 2016-07-25 12:48 - 00000000 ____D C:\Users\NBA\Downloads\TNSATAADC2015P4TCHED[ALiAS_2006]
2016-09-03 12:52 - 2016-07-25 12:13 - 00000000 ____D C:\Users\NBA\Downloads\Tweaking Windows Repair 3.7.4
2016-09-03 12:52 - 2016-04-26 10:33 - 00000000 ____D C:\Users\NBA\Downloads\PES16 PTE Patch 4.0 + Update RELOADED + Stadium Pack
2016-09-03 12:52 - 2016-04-25 16:14 - 00000000 ____D C:\Users\NBA\Downloads\Pro Evolution Soccer 2016 [FitGirl Repack]
2016-09-03 12:51 - 2016-08-03 16:16 - 00000000 ____D C:\Users\NBA\Downloads\MemTest
2016-09-03 12:51 - 2016-07-02 03:27 - 00000000 ____D C:\Users\NBA\Downloads\FM16.3FINALMK
2016-09-03 12:16 - 2016-07-21 02:39 - 00000000 ____D C:\Users\NBA\Downloads\Neighbors.2.Sorority.Rising.2016.1080p.HC.WEBRip.x264.AAC2.0-SS
2016-09-03 10:57 - 2016-04-18 20:20 - 00000000 ____D C:\Users\NBA\Downloads\Activator_v4
2016-09-02 08:41 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-02 08:41 - 2015-10-30 06:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-29 18:39 - 2016-02-04 21:58 - 00000000 ____D C:\Users\NBA\AppData\Roaming\vlc
2016-08-25 22:41 - 2016-06-02 13:13 - 00000000 ____D C:\Users\NBA\AppData\Local\ElevatedDiagnostics
2016-08-24 22:32 - 2016-03-07 02:33 - 00002437 _____ C:\Users\NBA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-24 22:32 - 2016-03-07 02:33 - 00000000 ___RD C:\Users\NBA\OneDrive
2016-08-24 00:35 - 2016-08-08 22:24 - 00000000 ____D C:\Program Files\Common Files\Steam
2016-08-19 22:20 - 2016-03-01 13:32 - 00000000 ____D C:\Users\NBA\AppData\LocalLow\Temp
2016-08-15 21:39 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\rescache
2016-08-14 15:08 - 2016-02-03 13:17 - 00000000 ____D C:\Users\NBA\AppData\Local\VirtualStore
2016-08-13 13:04 - 2016-08-05 02:03 - 00000000 ____D C:\Program Files\Intel
2016-08-13 13:04 - 2016-08-05 02:01 - 00340808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-13 13:02 - 2015-10-30 16:14 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-13 13:02 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-13 02:05 - 2016-02-04 11:23 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-13 02:05 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-13 01:58 - 2016-02-04 11:23 - 144884648 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-12 20:19 - 2016-02-03 15:18 - 00000000 ____D C:\Users\NBA\AppData\Local\Adobe
2016-08-12 13:46 - 2016-08-08 17:28 - 00000000 ____D C:\Users\Public\Documents\Ashampoo
2016-08-12 13:46 - 2016-08-08 17:28 - 00000000 ____D C:\ProgramData\Documents\Ashampoo
2016-08-09 00:33 - 2016-08-08 23:07 - 960646485 _____ C:\Users\NBA\Downloads\PES16.UP1.04.TUNISIA-SAT.rar
==================== Fichiers à la racine de certains dossiers =======
2016-08-12 13:39 - 2016-08-12 13:42 - 0000125 _____ () C:\Users\NBA\AppData\Roaming\Camdata.ini
2016-08-12 13:39 - 2016-08-12 13:42 - 0000408 _____ () C:\Users\NBA\AppData\Roaming\CamLayout.ini
2016-08-12 13:39 - 2016-08-12 13:42 - 0004570 _____ () C:\Users\NBA\AppData\Roaming\CamStudio.cfg
2016-02-10 01:17 - 2016-02-10 01:17 - 0006144 _____ () C:\Users\NBA\AppData\Roaming\com.apple.antiphishing.db
2016-08-12 13:34 - 2016-08-12 13:40 - 0000096 _____ () C:\Users\NBA\AppData\Roaming\version2.xml
2016-08-14 15:08 - 2015-11-06 23:51 - 0417282 ___SH () C:\Users\NBA\AppData\Local\CSIDL_X
Certains fichiers dans TEMP:
====================
C:\Users\NBA\AppData\Local\Temp\libeay32.dll
C:\Users\NBA\AppData\Local\Temp\msvcr120.dll
C:\Users\NBA\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-09-07 20:16
==================== Fin de FRST.txt ============================