Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 11-01-2017
Exécuté par Moi (administrateur) sur DESKTOP-TRDDKBE (12-01-2017 15:26:33)
Exécuté depuis C:\Users\Moi\Downloads
Profils chargés: Moi (Profils disponibles: Moi)
Platform: Microsoft Windows 10 Famille Version 1607 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(Acer Incorporated) C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(Acer Incorporated) C:\OEM\DOCK_KB\QAPSvc.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Mode Change Indicator\MCISvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\McAfee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Realtek Semiconductor) C:\Program Files\REALTEK\Audio\AP\RtkNGUI.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Siber Systems) C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATINEE.EXE
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Dashlane SAS) C:\Program Files\Dashlane\Upgrade\DashlaneUpgradeService.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(Acer) C:\Program Files\Acer\Acer Portal\AcerPortal.exe
(Acer Incorporated) C:\Program Files\Acer\AOP Framework\BackgroundAgent.exe
(Acer Cloud Technology) C:\Program Files\Acer\AOP Framework\acer\ccd.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\Acer\Care Center\ACCStd.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [113664 2015-06-23] (Intel Corporation)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [7778816 2015-01-29] (Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2016-07-16] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2776528 2016-12-14] (Malwarebytes)
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Run: [RoboForm] => C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [110376 2017-01-01] (Siber Systems)
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_TATINEE.EXE [262208 2013-12-16] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{136a05fd-970f-4e27-8313-5bcf2d41446c}: [DhcpNameServer] 192.168.224.1
Tcpip\..\Interfaces\{51cae1ad-3a81-47ba-9d42-8d5d3a2fbacf}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
BHO: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-01-01] (Siber Systems Inc.)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)
Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-01-01] (Siber Systems Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\msc\McSnIePl.dll [2016-09-23] (McAfee, Inc.)
FireFox:
========
FF DefaultProfile: grf3rjdg.default
FF ProfilePath: C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default [2017-01-12]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\grf3rjdg.default -> Google
FF Extension: (Amazon Assistant for Firefox) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\abb@amazon.com.xpi [2017-01-05]
FF Extension: (Firefox Hotfix) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\firefox-hotfix@mozilla.org.xpi [2017-01-03]
FF Extension: (العربية Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ar@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (български Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-bg@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Dansk (da) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-da@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Greek (GR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-el@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (English (US) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Español (España) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Estonian Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-et@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Finnish Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-fi@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Français Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Hebrew (IL) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-he@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Magyar (HU) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-hu@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Italiano (IT) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-it@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Japanese Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ja@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Korean (KR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ko@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Lietuvių Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-lt@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-nb-NO@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-nl@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Polski Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Português do Brasil Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Português (Portugal) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pt-PT@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Russian (RU) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ru@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Slovak (SK) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sk@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Slovenski jezik Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sl@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (српски (sr) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sr@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Svenska (SE) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sv-SE@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Thai Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-th@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Türkçe (TR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-tr@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Ukrainian (UA) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-uk@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-zh-CN@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-zh-TW@firefox.mozilla.org.xpi [2017-01-12]
FF HKLM\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi
FF Extension: (RoboForm Toolbar) - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi [2017-01-01]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi [2017-01-11]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-01-03] [non signé]
FF HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2017-01-08] ()
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-09-23] ()
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BTDevManager; C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [144600 2015-05-28] ()
R2 CCDMonitorService; C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe [2267352 2016-08-30] (Acer Incorporated)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [290224 2015-08-31] (Intel Corporation)
R2 Dashlane Upgrade Service; C:\Program Files\Dashlane\Upgrade\DashlaneUpgradeService.exe [75056 2015-06-24] (Dashlane SAS)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [118792 2015-06-23] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [115712 2015-06-23] (Intel Corporation)
R2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [125952 2015-06-23] (Intel Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [283568 2015-08-31] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3381200 2016-12-14] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [160800 2016-10-24] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [870688 2016-09-23] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [291840 2015-03-19] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1405264 2016-05-31] (McAfee, Inc.)
R2 MCISvc; C:\Program Files\Acer\Acer Mode Change Indicator\MCISvc.exe [220000 2015-07-13] (Acer Incorporated)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [630704 2016-06-21] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [196848 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [343304 2016-08-02] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [265968 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1130272 2016-09-13] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [858864 2016-05-25] (Intel Security, Inc.)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [366944 2015-07-09] (Acer Incorporated)
R2 QAPSvc; c:\oem\dock_KB\QAPSvc.exe [408928 2015-07-13] (Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [411488 2015-07-09] (Acer Incorporated)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-01-01] ()
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [23040 2016-08-20] (Microsoft Corporation)
R3 camera; C:\WINDOWS\system32\DRIVERS\iacamera32.sys [683904 2015-07-20] (Intel(R) Corporation)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [71976 2016-08-02] (McAfee, Inc.)
R3 CM3218x; C:\WINDOWS\System32\drivers\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 CPLMACPI; C:\WINDOWS\System32\drivers\CPLMACPI.sys [25032 2015-06-15] (Capella Microsystems, Inc.)
S3 DptfDevAmbient; C:\WINDOWS\System32\drivers\DptfDevAmbient.sys [88584 2015-06-23] (Intel Corporation)
S3 DptfDevDBPT; C:\WINDOWS\System32\drivers\DptfDevPower.sys [55816 2015-06-23] (Intel Corporation)
R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [59392 2015-06-23] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [85000 2015-06-23] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [203264 2015-06-23] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [467968 2015-06-23] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59968 2016-12-14] ()
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [34176 2015-06-10] (Intel Corporation)
R3 GpioVirtual; C:\WINDOWS\System32\drivers\iaiogpiovirtual.sys [27496 2015-06-10] (Intel Corporation)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [168800 2016-08-02] (McAfee, Inc.)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [57360 2015-06-18] (Intel Corporation)
R3 iaiouart; C:\WINDOWS\System32\drivers\iaiouart.sys [98568 2015-07-22] (Intel Corporation)
S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [44096 2015-07-20] (Intel Corporation)
R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [277256 2015-06-12] (Intel(R) Corporation)
R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [35392 2015-07-20] (Intel Corporation)
R3 kxspb; C:\WINDOWS\System32\drivers\kxspb.sys [42992 2015-08-31] (Kionix, Inc.)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [153024 2017-01-02] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [87496 2017-01-12] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [39360 2017-01-12] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [219072 2017-01-12] (Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [73152 2017-01-05] (Malwarebytes)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [33792 2015-06-16] (Intel Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [321320 2016-08-02] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [271144 2016-08-02] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [72856 2016-08-02] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [379688 2016-08-02] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [648488 2016-08-02] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [408360 2016-08-01] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [83752 2016-08-01] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [41600 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [199464 2016-08-02] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 ov2722; C:\WINDOWS\System32\drivers\ov2722.sys [108104 2015-07-20] (Intel(R) Corporation)
R3 PMIC; C:\WINDOWS\System32\drivers\PMIC.sys [77424 2015-06-16] (Intel Corporation)
R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [255192 2015-05-05] (Realtek Semiconductor Corp.)
R3 RtkUart; C:\WINDOWS\System32\drivers\RtkUart.sys [544000 2015-05-22] (Realtek Semiconductor Corporation)
R3 RtlWlans; C:\WINDOWS\System32\drivers\rtwlans.sys [4304384 2016-07-16] (Realtek Semiconductor Corporation )
S3 SynRMIHID; C:\WINDOWS\System32\drivers\SynRMIHID.sys [41128 2015-05-27] (Synaptics Incorporated)
R3 TXEI; C:\WINDOWS\System32\drivers\TXEI.sys [84520 2015-05-27] (Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 mfeavfk01; \Device\mfeavfk01.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-12 15:26 - 2017-01-12 15:29 - 00026162 _____ C:\Users\Moi\Downloads\FRST.txt
2017-01-12 15:26 - 2017-01-12 15:26 - 00000000 ____D C:\FRST
2017-01-12 15:23 - 2017-01-12 15:25 - 01761280 _____ (Farbar) C:\Users\Moi\Downloads\FRST.exe
2017-01-12 14:30 - 2017-01-12 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2017-01-11 15:17 - 2017-01-12 14:34 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-01-10 21:45 - 2017-01-10 21:45 - 00000000 ____D C:\Users\Moi\AppData\Local\PackageStaging
2017-01-09 17:05 - 2017-01-09 17:05 - 00000000 ____D C:\Users\Moi\AppData\Local\PokerClient
2017-01-09 17:03 - 2017-01-09 17:03 - 00001792 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Unibet.fr.lnk
2017-01-09 17:03 - 2017-01-09 17:03 - 00001790 _____ C:\Users\Moi\Desktop\Unibet.fr.lnk
2017-01-09 17:02 - 2017-01-09 17:11 - 00000000 ____D C:\Users\Moi\AppData\Local\Unibet.fr
2017-01-08 22:09 - 2017-01-08 22:09 - 00000000 ____D C:\Users\Moi\AppData\Local\Macromedia
2017-01-08 22:08 - 2017-01-10 12:18 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-01-08 22:07 - 2017-01-08 22:08 - 00000000 ____D C:\Users\Moi\AppData\Local\Adobe
2017-01-04 21:55 - 2017-01-05 13:33 - 00000957 _____ C:\WINDOWS\Tasks\EPSON XP-322 323 325 Series Update {CFF4A733-B01C-4DA8-87D3-7B5614959D75}.job
2017-01-04 21:55 - 2017-01-04 21:55 - 00000000 ____D C:\ProgramData\EPSON
2017-01-04 21:55 - 2017-01-04 21:55 - 00000000 ____D C:\Program Files\Common Files\EPSON
2017-01-04 21:43 - 2017-01-04 21:43 - 00008311 _____ C:\Users\Moi\Downloads\PROFORMA.pdf
2017-01-04 21:38 - 2017-01-04 21:39 - 00346830 _____ C:\Users\Moi\Downloads\CGV Campings Capfun FR - 2017.pdf
2017-01-04 21:33 - 2017-01-04 21:33 - 00604761 _____ C:\Users\Moi\Downloads\Descriptif des locatifs 2017.pdf
2017-01-04 21:32 - 2017-01-04 21:32 - 00255054 _____ C:\Users\Moi\Downloads\COCFR1GF.pdf
2017-01-04 17:37 - 2017-01-11 22:02 - 386510173 _____ C:\WINDOWS\MEMORY.DMP
2017-01-04 17:37 - 2017-01-11 22:02 - 00000000 ____D C:\WINDOWS\Minidump
2017-01-03 22:47 - 2017-01-03 22:47 - 00000000 ____D C:\Users\Moi\AppData\Roaming\com.winamax.chat
2017-01-03 22:46 - 2017-01-03 23:43 - 00000000 ____D C:\Users\Moi\Documents\Winamax Poker
2017-01-03 22:45 - 2017-01-03 22:45 - 00000000 ____D C:\Users\Moi\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
2017-01-03 22:45 - 2017-01-03 22:45 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamax
2017-01-03 10:28 - 2017-01-03 10:35 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-03 10:27 - 2017-01-03 10:27 - 133430776 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-03 10:24 - 2017-01-11 22:09 - 00000000 ____D C:\Users\Moi\AppData\Local\CrashDumps
2017-01-03 09:52 - 2017-01-03 09:52 - 00000000 ____D C:\Users\Moi\AppData\Roaming\AVAST Software
2017-01-02 23:27 - 2017-01-12 14:27 - 00219072 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-01-02 23:27 - 2017-01-12 14:27 - 00087496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-01-02 23:27 - 2017-01-12 14:27 - 00039360 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-01-02 23:27 - 2017-01-05 13:36 - 00073152 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-01-02 23:27 - 2017-01-02 23:27 - 00153024 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-01-02 23:27 - 2017-01-02 23:27 - 00002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-01-02 23:27 - 2017-01-02 23:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-01-02 23:26 - 2017-01-02 23:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-02 23:26 - 2017-01-02 23:26 - 00000000 ____D C:\Program Files\Malwarebytes
2017-01-02 23:26 - 2016-12-14 12:55 - 00059968 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-01-02 23:25 - 2017-01-02 23:26 - 54199488 _____ (Malwarebytes ) C:\Users\Moi\Downloads\mb3-setup-consumer-3.0.5.1299 (1).exe
2017-01-02 23:24 - 2017-01-02 23:24 - 00407720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-01-02 22:10 - 2017-01-02 22:10 - 00000000 ____D C:\ProgramData\Intel Security
2017-01-02 22:09 - 2017-01-02 22:09 - 00000000 ____D C:\Program Files\Common Files\Intel Security
2017-01-02 22:04 - 2017-01-02 22:04 - 00000000 ____D C:\Program Files\Common Files\AV
2017-01-01 23:09 - 2017-01-01 23:09 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-01-01 22:50 - 2017-01-01 23:26 - 108396544 _____ C:\Users\Moi\Downloads\Stranger.Things.S01E01.FRENCH.WEBRIP.XviD.avi.part
2017-01-01 21:46 - 2017-01-01 21:46 - 00000000 ____D C:\ProgramData\RoboForm
2017-01-01 21:46 - 2017-01-01 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm
2017-01-01 21:45 - 2017-01-01 21:45 - 00000000 ____D C:\Program Files\Siber Systems
2017-01-01 21:35 - 2017-01-01 21:45 - 21319576 _____ (Siber Systems) C:\Users\Moi\Downloads\RoboForm-Setup.exe
2017-01-01 21:30 - 2017-01-01 21:30 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-01-01 21:27 - 2017-01-03 10:24 - 00000000 ____D C:\Users\Moi\AppData\Local\MicrosoftEdge
2017-01-01 21:26 - 2017-01-01 21:26 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Skype
2017-01-01 21:26 - 2017-01-01 21:26 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Macromedia
2017-01-01 21:25 - 2017-01-01 21:27 - 00002405 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-01 21:25 - 2017-01-01 21:25 - 00000000 ____D C:\Users\Moi\AppData\Local\CareCenter
2017-01-01 21:24 - 2017-01-03 10:08 - 00000000 ____D C:\Users\Moi\AppData\Local\Comms
2017-01-01 21:24 - 2017-01-02 21:58 - 00000000 ____D C:\Users\Moi\AppData\Local\clear.fi
2017-01-01 21:24 - 2017-01-01 21:32 - 00000000 ____D C:\Users\Moi\AppData\Local\Mozilla
2017-01-01 21:24 - 2017-01-01 21:24 - 00001321 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk
2017-01-01 21:24 - 2017-01-01 21:24 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Mozilla
2017-01-01 21:22 - 2017-01-11 16:09 - 00000000 ____D C:\Users\Moi\AppData\Local\VirtualStore
2017-01-01 21:22 - 2017-01-10 21:45 - 00000000 ____D C:\Users\Moi\AppData\Local\Packages
2017-01-01 21:22 - 2017-01-01 21:31 - 00000000 ____D C:\Users\Moi\AppData\Local\ConnectedDevicesPlatform
2017-01-01 21:22 - 2017-01-01 21:24 - 00000000 ____D C:\Users\Moi\AppData\Local\AOP SDK
2017-01-01 21:22 - 2017-01-01 21:22 - 00002116 _____ C:\Users\Moi\Desktop\Dashlane Gestionnaire de mot de passe.lnk
2017-01-01 21:22 - 2017-01-01 21:22 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-01-01 21:22 - 2017-01-01 21:22 - 00000020 ___SH C:\Users\Moi\ntuser.ini
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\WINDOWS\oem
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Adobe
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Local\TileDataLayer
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Local\Publishers
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\ProgramData\Dashlane
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Voisinage réseau
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Modèles
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Mes documents
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Menu Démarrer
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Mes images
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\All Users
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Modèles
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Menu Démarrer
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Bureau
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Program Files\Fichiers communs
2017-01-01 18:49 - 2017-01-01 18:49 - 00011704 _____ C:\Users\Moi\Desktop\Applications supprimées.html
2017-01-01 18:44 - 2017-01-01 18:44 - 00021680 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-01-01 18:39 - 2017-01-12 14:26 - 00000000 ____D C:\Users\Moi
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Voisinage réseau
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Voisinage d'impression
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Modèles
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Mes documents
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Menu Démarrer
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Mes vidéos
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Mes images
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Ma musique
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\AppData\Local\Historique
2017-01-01 18:38 - 2017-01-01 18:38 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-01-01 18:30 - 2017-01-01 18:30 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-01-01 18:23 - 2017-01-01 18:32 - 00000000 ____D C:\Program Files\Intel
2017-01-01 18:23 - 2017-01-01 18:23 - 00000000 ____D C:\Program Files\Common Files\Intel
2017-01-01 18:23 - 2015-08-31 19:41 - 00070632 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-01-01 18:22 - 2017-01-01 18:22 - 00000000 ____D C:\ProgramData\USOShared
2017-01-01 18:21 - 2017-01-12 14:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-01 18:21 - 2017-01-12 14:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-01 18:21 - 2017-01-03 21:18 - 00192944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-01 18:19 - 2017-01-01 18:51 - 00000000 ___DC C:\WINDOWS\Panther
2017-01-01 18:19 - 2017-01-01 18:19 - 00000000 ____D C:\WINDOWS\InfusedApps
2017-01-01 18:18 - 2017-01-01 22:24 - 00000000 ____D C:\Windows.old
2017-01-01 18:18 - 2017-01-01 18:21 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-01-01 18:17 - 2017-01-01 18:17 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-01-01 18:15 - 2017-01-01 18:15 - 00000000 ____D C:\WINDOWS\Setup
2017-01-01 18:13 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\OCR
2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\Program Files\MSBuild
2017-01-01 18:12 - 2017-01-12 14:35 - 01081996 _____ C:\WINDOWS\system32\perfh00C.dat
2017-01-01 18:12 - 2017-01-12 14:35 - 00236158 _____ C:\WINDOWS\system32\perfc00C.dat
2017-01-01 18:12 - 2017-01-01 18:12 - 00350774 _____ C:\WINDOWS\system32\perfi00C.dat
2017-01-01 18:12 - 2017-01-01 18:12 - 00040528 _____ C:\WINDOWS\system32\perfd00C.dat
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\winrm
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\WCN
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\slmgr
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\fr
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\0409
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\DigitalLocker
2017-01-01 18:08 - 2016-12-12 00:56 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-01-01 18:08 - 2016-12-12 00:56 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-01-01 18:05 - 2017-01-12 14:37 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-01 18:05 - 2017-01-12 14:37 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-01 18:05 - 2017-01-08 22:07 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-01 18:05 - 2017-01-05 13:30 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-01 18:05 - 2017-01-03 21:14 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-01 18:05 - 2017-01-03 21:14 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\dsc
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___RD C:\Program Files\Windows Defender
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\setup
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-01-01 18:05 - 2017-01-03 21:11 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2017-01-01 18:05 - 2017-01-02 22:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-01-01 18:05 - 2017-01-02 21:58 - 00000000 ____D C:\WINDOWS\appcompat
2017-01-01 18:05 - 2017-01-01 18:51 - 00000000 ____D C:\Program Files\Windows NT
2017-01-01 18:05 - 2017-01-01 18:49 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-01-01 18:05 - 2017-01-01 18:45 - 00000000 ____D C:\WINDOWS\Registration
2017-01-01 18:05 - 2017-01-01 18:44 - 00000000 __RHD C:\Users\Public\Libraries
2017-01-01 18:05 - 2017-01-01 18:39 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-01-01 18:05 - 2017-01-01 18:38 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-01 18:05 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\system32\spool
2017-01-01 18:05 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\Help
2017-01-01 18:05 - 2017-01-01 18:32 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-01-01 18:05 - 2017-01-01 18:25 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-01-01 18:05 - 2017-01-01 18:25 - 00000000 ___RD C:\WINDOWS\MiracastView
2017-01-01 18:05 - 2017-01-01 18:22 - 00000000 ____D C:\ProgramData\USOPrivate
2017-01-01 18:05 - 2017-01-01 18:18 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-01-01 18:05 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\SystemApps
2017-01-01 18:05 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\Com
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\IME
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\Program Files\Common Files\System
2017-01-01 18:05 - 2017-01-01 18:06 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\system32\Nui
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Web
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Vss
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\tracing
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\TAPI
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SystemResources
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\winevt
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ras
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\IME
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\icsxml
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ias
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\downlevel
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\DDFs
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\System
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SKB
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\security
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\schemas
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SchCache
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Resources
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\rescache
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\PLA
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Performance
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\ModemLogs
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Media
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\L2Schemas
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\InputMethod
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Globalization
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\GameBarPresenceWriter
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Cursors
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Branding
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\addins
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\ProgramData\Comms
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Windows Portable Devices
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Common Files\Services
2017-01-01 18:05 - 2017-01-01 18:01 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2017-01-01 18:05 - 2017-01-01 18:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-01-01 18:05 - 2017-01-01 18:01 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2017-01-01 18:05 - 2017-01-01 18:01 - 00002577 _____ C:\WINDOWS\system32\config.nt
2017-01-01 18:05 - 2017-01-01 18:01 - 00001688 _____ C:\WINDOWS\system32\autoexec.nt
2017-01-01 18:05 - 2017-01-01 18:01 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2017-01-01 18:05 - 2017-01-01 18:01 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2017-01-01 18:02 - 2017-01-04 21:55 - 00000000 ____D C:\WINDOWS\INF
2017-01-01 17:53 - 2017-01-10 22:12 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-01 17:51 - 2017-01-10 21:50 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-01-01 17:51 - 2017-01-09 13:06 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-01-01 17:51 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\servicing
2017-01-01 17:51 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\SMI
2017-01-01 17:01 - 2017-01-01 17:01 - 00000000 ____D C:\Users\Moi\Desktop\Old Firefox Data
2017-01-01 15:26 - 2017-01-01 15:28 - 54199488 _____ (Malwarebytes ) C:\Users\Moi\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-01-01 15:19 - 2017-01-01 15:27 - 00000000 ____D C:\Users\Moi\Downloads\The.Walking.Dead.S07E07.SUBFRENCH.WEBRip.XViD-Torrent9.me
2016-12-27 22:24 - 2016-12-27 22:30 - 00000000 ____D C:\Users\Moi\Downloads\Ghostbusters.2016.EXTENDED.FRENCH.BDRip.XViD-FUNKKY
2016-12-27 22:13 - 2016-12-27 22:15 - 02237120 _____ (BitTorrent Inc.) C:\Users\Moi\Downloads\uTorrent.exe
2016-12-22 11:08 - 2016-12-22 11:08 - 00125952 _____ C:\Users\Moi\Downloads\simulateur_score_exact.xls
2016-12-14 15:10 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-14 15:10 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-14 15:10 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-14 15:10 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-14 15:10 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-14 15:10 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-14 15:10 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-14 15:10 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-14 15:10 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 15:10 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-14 15:10 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-14 15:10 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-12-14 15:10 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-12-14 15:10 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-14 15:10 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-14 15:10 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-14 15:10 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-14 15:10 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-14 15:10 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-14 15:10 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-14 15:10 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-14 15:10 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-14 15:10 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-14 15:10 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-14 15:10 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-14 15:10 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-14 15:10 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-14 15:10 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-14 15:10 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-14 15:09 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-14 15:09 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 15:09 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-14 15:09 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-14 15:09 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-14 15:09 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-14 15:09 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-14 15:09 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-14 15:09 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-14 15:09 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-14 15:09 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-14 15:09 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-14 15:09 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-14 15:09 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-14 15:09 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 15:09 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-14 15:09 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-14 15:09 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-14 15:09 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-14 15:09 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-14 15:09 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-14 15:09 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-14 15:09 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-14 15:09 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-14 15:09 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-12 14:35 - 2015-07-30 03:54 - 02350636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-12 14:35 - 2015-07-30 03:54 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-01-12 14:26 - 2015-08-31 19:49 - 00000000 __SHD C:\Users\Moi\IntelGraphicsProfiles
2017-01-11 22:36 - 2016-05-12 19:15 - 00001943 _____ C:\Users\Moi\Desktop\Winamax Poker.lnk
2017-01-08 13:06 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\McAfee
2017-01-05 13:44 - 2015-08-31 18:32 - 00000000 ____D C:\ProgramData\McAfee
2017-01-05 13:40 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\OEM
2017-01-03 21:24 - 2015-07-30 03:51 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-03 09:46 - 2015-08-31 18:25 - 00000000 ____D C:\Program Files\Amazon
2017-01-02 22:14 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\Common Files\McAfee
2017-01-02 22:06 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2017-01-02 22:05 - 2015-07-30 04:38 - 00000000 ___HD C:\OEM
2017-01-01 21:48 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Acer
2017-01-01 21:27 - 2015-08-31 19:53 - 00000000 ___RD C:\Users\Moi\OneDrive
2017-01-01 18:44 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-01-01 18:38 - 2015-07-10 07:59 - 00000000 ____D C:\Users\Default.migrated
2017-01-01 18:36 - 2015-09-01 03:14 - 00000000 ____D C:\WINDOWS\NAPP_Dism_Log
2017-01-01 18:36 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2017-01-01 18:36 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2017-01-01 18:34 - 2015-08-31 18:31 - 00000000 ____D C:\Users\Public\Foxit Software
2017-01-01 18:34 - 2015-08-31 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2017-01-01 18:34 - 2015-08-31 18:26 - 00000000 __HDC C:\ProgramData\{2B89F58C-32F7-46EC-A448-AECDF1F22B7B}
2017-01-01 18:34 - 2015-08-31 18:19 - 00000000 ____D C:\ProgramData\Realtek
2017-01-01 18:34 - 2015-08-31 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2017-01-01 18:34 - 2015-08-31 18:12 - 00000000 ____D C:\Program Files\REALTEK
2017-01-01 18:34 - 2015-07-30 03:54 - 00000000 ____D C:\ProgramData\Mozilla
2017-01-01 18:34 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-01-01 18:34 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\AVAST Software
2017-01-01 18:34 - 2015-07-30 03:52 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-01-01 18:34 - 2015-07-10 11:50 - 00000000 ____D C:\Program Files\Windows Journal
2017-01-01 18:32 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\mcafee.com
2017-01-01 18:32 - 2015-08-31 18:31 - 00000000 ____D C:\Program Files\Foxit PhantomPDF
2017-01-01 18:32 - 2015-08-31 18:26 - 00000000 ____D C:\Program Files\Dashlane
2017-01-01 18:32 - 2015-08-31 18:13 - 00000000 ____D C:\Program Files\Cisco
2017-01-01 18:32 - 2015-08-31 18:12 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2017-01-01 18:32 - 2015-08-31 18:11 - 00000000 ____D C:\Program Files\DIFX
2017-01-01 18:32 - 2015-07-30 03:53 - 00000000 ____D C:\Program Files\AVAST Software
2017-01-01 18:32 - 2015-07-30 03:53 - 00000000 ____D C:\Program Files\Acer
2017-01-01 17:34 - 2016-11-18 16:49 - 00000000 ____D C:\Users\Moi\AppData\LocalLow\Mozilla
2016-12-28 23:24 - 2016-07-13 22:06 - 00000000 ____D C:\Users\Moi\Desktop\The walking dead
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-01-01 18:21
==================== Fin de FRST.txt ============================
Exécuté par Moi (administrateur) sur DESKTOP-TRDDKBE (12-01-2017 15:26:33)
Exécuté depuis C:\Users\Moi\Downloads
Profils chargés: Moi (Profils disponibles: Moi)
Platform: Microsoft Windows 10 Famille Version 1607 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(Acer Incorporated) C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(Acer Incorporated) C:\OEM\DOCK_KB\QAPSvc.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Mode Change Indicator\MCISvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\McAfee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Realtek Semiconductor) C:\Program Files\REALTEK\Audio\AP\RtkNGUI.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Siber Systems) C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_TATINEE.EXE
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Dashlane SAS) C:\Program Files\Dashlane\Upgrade\DashlaneUpgradeService.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(Acer) C:\Program Files\Acer\Acer Portal\AcerPortal.exe
(Acer Incorporated) C:\Program Files\Acer\AOP Framework\BackgroundAgent.exe
(Acer Cloud Technology) C:\Program Files\Acer\AOP Framework\acer\ccd.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\Acer\Care Center\ACCStd.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [113664 2015-06-23] (Intel Corporation)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [7778816 2015-01-29] (Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2016-07-16] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2776528 2016-12-14] (Malwarebytes)
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Run: [RoboForm] => C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [110376 2017-01-01] (Siber Systems)
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_TATINEE.EXE [262208 2013-12-16] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{136a05fd-970f-4e27-8313-5bcf2d41446c}: [DhcpNameServer] 192.168.224.1
Tcpip\..\Interfaces\{51cae1ad-3a81-47ba-9d42-8d5d3a2fbacf}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1420756083-46208772-1634248434-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
BHO: RoboForm Toolbar Helper -> {724d43a9-0d85-11d4-9908-00400523e39a} -> C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-01-01] (Siber Systems Inc.)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)
Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2017-01-01] (Siber Systems Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2016-10-24] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\msc\McSnIePl.dll [2016-09-23] (McAfee, Inc.)
FireFox:
========
FF DefaultProfile: grf3rjdg.default
FF ProfilePath: C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default [2017-01-12]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\grf3rjdg.default -> Google
FF Extension: (Amazon Assistant for Firefox) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\abb@amazon.com.xpi [2017-01-05]
FF Extension: (Firefox Hotfix) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\firefox-hotfix@mozilla.org.xpi [2017-01-03]
FF Extension: (العربية Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ar@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (български Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-bg@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Dansk (da) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-da@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Greek (GR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-el@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (English (US) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Español (España) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Estonian Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-et@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Finnish Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-fi@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Français Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Hebrew (IL) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-he@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Magyar (HU) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-hu@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Italiano (IT) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-it@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Japanese Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ja@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Korean (KR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ko@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Lietuvių Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-lt@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-nb-NO@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-nl@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Polski Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Português do Brasil Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Português (Portugal) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-pt-PT@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Russian (RU) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-ru@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Slovak (SK) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sk@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Slovenski jezik Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sl@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (српски (sr) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sr@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Svenska (SE) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-sv-SE@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Thai Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-th@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Türkçe (TR) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-tr@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Ukrainian (UA) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-uk@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-zh-CN@firefox.mozilla.org.xpi [2017-01-12]
FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\Moi\AppData\Roaming\Mozilla\Firefox\Profiles\grf3rjdg.default\Extensions\langpack-zh-TW@firefox.mozilla.org.xpi [2017-01-12]
FF HKLM\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi
FF Extension: (RoboForm Toolbar) - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi [2017-01-01]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files\McAfee\SiteAdvisor\saffplg.xpi [2017-01-11]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-01-03] [non signé]
FF HKU\S-1-5-21-1420756083-46208772-1634248434-1001\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files\Siber Systems\AI RoboForm\Firefox\roboform.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2017-01-08] ()
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-09-23] ()
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BTDevManager; C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [144600 2015-05-28] ()
R2 CCDMonitorService; C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe [2267352 2016-08-30] (Acer Incorporated)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [290224 2015-08-31] (Intel Corporation)
R2 Dashlane Upgrade Service; C:\Program Files\Dashlane\Upgrade\DashlaneUpgradeService.exe [75056 2015-06-24] (Dashlane SAS)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [118792 2015-06-23] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [115712 2015-06-23] (Intel Corporation)
R2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [125952 2015-06-23] (Intel Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [283568 2015-08-31] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3381200 2016-12-14] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [160800 2016-10-24] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [870688 2016-09-23] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [291840 2015-03-19] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1405264 2016-05-31] (McAfee, Inc.)
R2 MCISvc; C:\Program Files\Acer\Acer Mode Change Indicator\MCISvc.exe [220000 2015-07-13] (Acer Incorporated)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [630704 2016-06-21] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [196848 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [343304 2016-08-02] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [265968 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1130272 2016-09-13] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [489088 2016-07-07] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [858864 2016-05-25] (Intel Security, Inc.)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [366944 2015-07-09] (Acer Incorporated)
R2 QAPSvc; c:\oem\dock_KB\QAPSvc.exe [408928 2015-07-13] (Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [411488 2015-07-09] (Acer Incorporated)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2017-01-01] ()
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [23040 2016-08-20] (Microsoft Corporation)
R3 camera; C:\WINDOWS\system32\DRIVERS\iacamera32.sys [683904 2015-07-20] (Intel(R) Corporation)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [71976 2016-08-02] (McAfee, Inc.)
R3 CM3218x; C:\WINDOWS\System32\drivers\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 CPLMACPI; C:\WINDOWS\System32\drivers\CPLMACPI.sys [25032 2015-06-15] (Capella Microsystems, Inc.)
S3 DptfDevAmbient; C:\WINDOWS\System32\drivers\DptfDevAmbient.sys [88584 2015-06-23] (Intel Corporation)
S3 DptfDevDBPT; C:\WINDOWS\System32\drivers\DptfDevPower.sys [55816 2015-06-23] (Intel Corporation)
R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [59392 2015-06-23] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [85000 2015-06-23] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [203264 2015-06-23] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [467968 2015-06-23] (Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59968 2016-12-14] ()
R3 GPIO; C:\WINDOWS\System32\drivers\iaiogpioe.sys [34176 2015-06-10] (Intel Corporation)
R3 GpioVirtual; C:\WINDOWS\System32\drivers\iaiogpiovirtual.sys [27496 2015-06-10] (Intel Corporation)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [168800 2016-08-02] (McAfee, Inc.)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [57360 2015-06-18] (Intel Corporation)
R3 iaiouart; C:\WINDOWS\System32\drivers\iaiouart.sys [98568 2015-07-22] (Intel Corporation)
S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [44096 2015-07-20] (Intel Corporation)
R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [277256 2015-06-12] (Intel(R) Corporation)
R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [35392 2015-07-20] (Intel Corporation)
R3 kxspb; C:\WINDOWS\System32\drivers\kxspb.sys [42992 2015-08-31] (Kionix, Inc.)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [153024 2017-01-02] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [87496 2017-01-12] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [39360 2017-01-12] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [219072 2017-01-12] (Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [73152 2017-01-05] (Malwarebytes)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [33792 2015-06-16] (Intel Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [321320 2016-08-02] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [271144 2016-08-02] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [72856 2016-08-02] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [379688 2016-08-02] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [648488 2016-08-02] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [408360 2016-08-01] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [83752 2016-08-01] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files\McAfee\SiteAdvisor\mfesapsn.sys [41600 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [199464 2016-08-02] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 ov2722; C:\WINDOWS\System32\drivers\ov2722.sys [108104 2015-07-20] (Intel(R) Corporation)
R3 PMIC; C:\WINDOWS\System32\drivers\PMIC.sys [77424 2015-06-16] (Intel Corporation)
R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [255192 2015-05-05] (Realtek Semiconductor Corp.)
R3 RtkUart; C:\WINDOWS\System32\drivers\RtkUart.sys [544000 2015-05-22] (Realtek Semiconductor Corporation)
R3 RtlWlans; C:\WINDOWS\System32\drivers\rtwlans.sys [4304384 2016-07-16] (Realtek Semiconductor Corporation )
S3 SynRMIHID; C:\WINDOWS\System32\drivers\SynRMIHID.sys [41128 2015-05-27] (Synaptics Incorporated)
R3 TXEI; C:\WINDOWS\System32\drivers\TXEI.sys [84520 2015-05-27] (Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 mfeavfk01; \Device\mfeavfk01.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-12 15:26 - 2017-01-12 15:29 - 00026162 _____ C:\Users\Moi\Downloads\FRST.txt
2017-01-12 15:26 - 2017-01-12 15:26 - 00000000 ____D C:\FRST
2017-01-12 15:23 - 2017-01-12 15:25 - 01761280 _____ (Farbar) C:\Users\Moi\Downloads\FRST.exe
2017-01-12 14:30 - 2017-01-12 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2017-01-11 15:17 - 2017-01-12 14:34 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-01-10 21:45 - 2017-01-10 21:45 - 00000000 ____D C:\Users\Moi\AppData\Local\PackageStaging
2017-01-09 17:05 - 2017-01-09 17:05 - 00000000 ____D C:\Users\Moi\AppData\Local\PokerClient
2017-01-09 17:03 - 2017-01-09 17:03 - 00001792 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Unibet.fr.lnk
2017-01-09 17:03 - 2017-01-09 17:03 - 00001790 _____ C:\Users\Moi\Desktop\Unibet.fr.lnk
2017-01-09 17:02 - 2017-01-09 17:11 - 00000000 ____D C:\Users\Moi\AppData\Local\Unibet.fr
2017-01-08 22:09 - 2017-01-08 22:09 - 00000000 ____D C:\Users\Moi\AppData\Local\Macromedia
2017-01-08 22:08 - 2017-01-10 12:18 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-01-08 22:07 - 2017-01-08 22:08 - 00000000 ____D C:\Users\Moi\AppData\Local\Adobe
2017-01-04 21:55 - 2017-01-05 13:33 - 00000957 _____ C:\WINDOWS\Tasks\EPSON XP-322 323 325 Series Update {CFF4A733-B01C-4DA8-87D3-7B5614959D75}.job
2017-01-04 21:55 - 2017-01-04 21:55 - 00000000 ____D C:\ProgramData\EPSON
2017-01-04 21:55 - 2017-01-04 21:55 - 00000000 ____D C:\Program Files\Common Files\EPSON
2017-01-04 21:43 - 2017-01-04 21:43 - 00008311 _____ C:\Users\Moi\Downloads\PROFORMA.pdf
2017-01-04 21:38 - 2017-01-04 21:39 - 00346830 _____ C:\Users\Moi\Downloads\CGV Campings Capfun FR - 2017.pdf
2017-01-04 21:33 - 2017-01-04 21:33 - 00604761 _____ C:\Users\Moi\Downloads\Descriptif des locatifs 2017.pdf
2017-01-04 21:32 - 2017-01-04 21:32 - 00255054 _____ C:\Users\Moi\Downloads\COCFR1GF.pdf
2017-01-04 17:37 - 2017-01-11 22:02 - 386510173 _____ C:\WINDOWS\MEMORY.DMP
2017-01-04 17:37 - 2017-01-11 22:02 - 00000000 ____D C:\WINDOWS\Minidump
2017-01-03 22:47 - 2017-01-03 22:47 - 00000000 ____D C:\Users\Moi\AppData\Roaming\com.winamax.chat
2017-01-03 22:46 - 2017-01-03 23:43 - 00000000 ____D C:\Users\Moi\Documents\Winamax Poker
2017-01-03 22:45 - 2017-01-03 22:45 - 00000000 ____D C:\Users\Moi\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
2017-01-03 22:45 - 2017-01-03 22:45 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamax
2017-01-03 10:28 - 2017-01-03 10:35 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-03 10:27 - 2017-01-03 10:27 - 133430776 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-03 10:24 - 2017-01-11 22:09 - 00000000 ____D C:\Users\Moi\AppData\Local\CrashDumps
2017-01-03 09:52 - 2017-01-03 09:52 - 00000000 ____D C:\Users\Moi\AppData\Roaming\AVAST Software
2017-01-02 23:27 - 2017-01-12 14:27 - 00219072 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-01-02 23:27 - 2017-01-12 14:27 - 00087496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-01-02 23:27 - 2017-01-12 14:27 - 00039360 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-01-02 23:27 - 2017-01-05 13:36 - 00073152 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-01-02 23:27 - 2017-01-02 23:27 - 00153024 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-01-02 23:27 - 2017-01-02 23:27 - 00002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-01-02 23:27 - 2017-01-02 23:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-01-02 23:26 - 2017-01-02 23:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-02 23:26 - 2017-01-02 23:26 - 00000000 ____D C:\Program Files\Malwarebytes
2017-01-02 23:26 - 2016-12-14 12:55 - 00059968 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-01-02 23:25 - 2017-01-02 23:26 - 54199488 _____ (Malwarebytes ) C:\Users\Moi\Downloads\mb3-setup-consumer-3.0.5.1299 (1).exe
2017-01-02 23:24 - 2017-01-02 23:24 - 00407720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-01-02 22:10 - 2017-01-02 22:10 - 00000000 ____D C:\ProgramData\Intel Security
2017-01-02 22:09 - 2017-01-02 22:09 - 00000000 ____D C:\Program Files\Common Files\Intel Security
2017-01-02 22:04 - 2017-01-02 22:04 - 00000000 ____D C:\Program Files\Common Files\AV
2017-01-01 23:09 - 2017-01-01 23:09 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-01-01 22:50 - 2017-01-01 23:26 - 108396544 _____ C:\Users\Moi\Downloads\Stranger.Things.S01E01.FRENCH.WEBRIP.XviD.avi.part
2017-01-01 21:46 - 2017-01-01 21:46 - 00000000 ____D C:\ProgramData\RoboForm
2017-01-01 21:46 - 2017-01-01 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RoboForm
2017-01-01 21:45 - 2017-01-01 21:45 - 00000000 ____D C:\Program Files\Siber Systems
2017-01-01 21:35 - 2017-01-01 21:45 - 21319576 _____ (Siber Systems) C:\Users\Moi\Downloads\RoboForm-Setup.exe
2017-01-01 21:30 - 2017-01-01 21:30 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-01-01 21:27 - 2017-01-03 10:24 - 00000000 ____D C:\Users\Moi\AppData\Local\MicrosoftEdge
2017-01-01 21:26 - 2017-01-01 21:26 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Skype
2017-01-01 21:26 - 2017-01-01 21:26 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Macromedia
2017-01-01 21:25 - 2017-01-01 21:27 - 00002405 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-01 21:25 - 2017-01-01 21:25 - 00000000 ____D C:\Users\Moi\AppData\Local\CareCenter
2017-01-01 21:24 - 2017-01-03 10:08 - 00000000 ____D C:\Users\Moi\AppData\Local\Comms
2017-01-01 21:24 - 2017-01-02 21:58 - 00000000 ____D C:\Users\Moi\AppData\Local\clear.fi
2017-01-01 21:24 - 2017-01-01 21:32 - 00000000 ____D C:\Users\Moi\AppData\Local\Mozilla
2017-01-01 21:24 - 2017-01-01 21:24 - 00001321 _____ C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk
2017-01-01 21:24 - 2017-01-01 21:24 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Mozilla
2017-01-01 21:22 - 2017-01-11 16:09 - 00000000 ____D C:\Users\Moi\AppData\Local\VirtualStore
2017-01-01 21:22 - 2017-01-10 21:45 - 00000000 ____D C:\Users\Moi\AppData\Local\Packages
2017-01-01 21:22 - 2017-01-01 21:31 - 00000000 ____D C:\Users\Moi\AppData\Local\ConnectedDevicesPlatform
2017-01-01 21:22 - 2017-01-01 21:24 - 00000000 ____D C:\Users\Moi\AppData\Local\AOP SDK
2017-01-01 21:22 - 2017-01-01 21:22 - 00002116 _____ C:\Users\Moi\Desktop\Dashlane Gestionnaire de mot de passe.lnk
2017-01-01 21:22 - 2017-01-01 21:22 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2017-01-01 21:22 - 2017-01-01 21:22 - 00000020 ___SH C:\Users\Moi\ntuser.ini
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\WINDOWS\oem
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Roaming\Adobe
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Local\TileDataLayer
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\Users\Moi\AppData\Local\Publishers
2017-01-01 21:22 - 2017-01-01 21:22 - 00000000 ____D C:\ProgramData\Dashlane
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Voisinage réseau
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Modèles
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Mes documents
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Menu Démarrer
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Mes images
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\Default User
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Users\All Users
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Modèles
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Menu Démarrer
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\ProgramData\Bureau
2017-01-01 18:51 - 2017-01-01 18:51 - 00000000 _SHDL C:\Program Files\Fichiers communs
2017-01-01 18:49 - 2017-01-01 18:49 - 00011704 _____ C:\Users\Moi\Desktop\Applications supprimées.html
2017-01-01 18:44 - 2017-01-01 18:44 - 00021680 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-01-01 18:39 - 2017-01-12 14:26 - 00000000 ____D C:\Users\Moi
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Voisinage réseau
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Voisinage d'impression
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Modèles
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Mes documents
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Menu Démarrer
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Mes vidéos
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Mes images
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\Documents\Ma musique
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-01-01 18:39 - 2017-01-01 18:39 - 00000000 _SHDL C:\Users\Moi\AppData\Local\Historique
2017-01-01 18:38 - 2017-01-01 18:38 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-01-01 18:30 - 2017-01-01 18:30 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-01-01 18:23 - 2017-01-01 18:32 - 00000000 ____D C:\Program Files\Intel
2017-01-01 18:23 - 2017-01-01 18:23 - 00000000 ____D C:\Program Files\Common Files\Intel
2017-01-01 18:23 - 2015-08-31 19:41 - 00070632 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-01-01 18:22 - 2017-01-01 18:22 - 00000000 ____D C:\ProgramData\USOShared
2017-01-01 18:21 - 2017-01-12 14:26 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-01 18:21 - 2017-01-12 14:26 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-01 18:21 - 2017-01-03 21:18 - 00192944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-01 18:19 - 2017-01-01 18:51 - 00000000 ___DC C:\WINDOWS\Panther
2017-01-01 18:19 - 2017-01-01 18:19 - 00000000 ____D C:\WINDOWS\InfusedApps
2017-01-01 18:18 - 2017-01-01 22:24 - 00000000 ____D C:\Windows.old
2017-01-01 18:18 - 2017-01-01 18:21 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-01-01 18:17 - 2017-01-01 18:17 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-01-01 18:15 - 2017-01-01 18:15 - 00000000 ____D C:\WINDOWS\Setup
2017-01-01 18:13 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\OCR
2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-01-01 18:13 - 2017-01-01 18:13 - 00000000 ____D C:\Program Files\MSBuild
2017-01-01 18:12 - 2017-01-12 14:35 - 01081996 _____ C:\WINDOWS\system32\perfh00C.dat
2017-01-01 18:12 - 2017-01-12 14:35 - 00236158 _____ C:\WINDOWS\system32\perfc00C.dat
2017-01-01 18:12 - 2017-01-01 18:12 - 00350774 _____ C:\WINDOWS\system32\perfi00C.dat
2017-01-01 18:12 - 2017-01-01 18:12 - 00040528 _____ C:\WINDOWS\system32\perfd00C.dat
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\winrm
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\WCN
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\slmgr
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\fr
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\0409
2017-01-01 18:12 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\DigitalLocker
2017-01-01 18:08 - 2016-12-12 00:56 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-01-01 18:08 - 2016-12-12 00:56 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-01-01 18:05 - 2017-01-12 14:37 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-01 18:05 - 2017-01-12 14:37 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-01 18:05 - 2017-01-08 22:07 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-01 18:05 - 2017-01-05 13:30 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-01 18:05 - 2017-01-03 21:14 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-01 18:05 - 2017-01-03 21:14 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\dsc
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ___RD C:\Program Files\Windows Defender
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\setup
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\bcastdvr
2017-01-01 18:05 - 2017-01-03 21:13 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-01-01 18:05 - 2017-01-03 21:11 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2017-01-01 18:05 - 2017-01-02 22:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-01-01 18:05 - 2017-01-02 21:58 - 00000000 ____D C:\WINDOWS\appcompat
2017-01-01 18:05 - 2017-01-01 18:51 - 00000000 ____D C:\Program Files\Windows NT
2017-01-01 18:05 - 2017-01-01 18:49 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-01-01 18:05 - 2017-01-01 18:45 - 00000000 ____D C:\WINDOWS\Registration
2017-01-01 18:05 - 2017-01-01 18:44 - 00000000 __RHD C:\Users\Public\Libraries
2017-01-01 18:05 - 2017-01-01 18:39 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-01-01 18:05 - 2017-01-01 18:38 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-01 18:05 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\system32\spool
2017-01-01 18:05 - 2017-01-01 18:36 - 00000000 ____D C:\WINDOWS\Help
2017-01-01 18:05 - 2017-01-01 18:32 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-01-01 18:05 - 2017-01-01 18:25 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-01-01 18:05 - 2017-01-01 18:25 - 00000000 ___RD C:\WINDOWS\MiracastView
2017-01-01 18:05 - 2017-01-01 18:22 - 00000000 ____D C:\ProgramData\USOPrivate
2017-01-01 18:05 - 2017-01-01 18:18 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-01-01 18:05 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\SystemApps
2017-01-01 18:05 - 2017-01-01 18:13 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\system32\Com
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\WINDOWS\IME
2017-01-01 18:05 - 2017-01-01 18:12 - 00000000 ____D C:\Program Files\Common Files\System
2017-01-01 18:05 - 2017-01-01 18:06 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\system32\Nui
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Web
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Vss
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\tracing
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\TAPI
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SystemResources
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\winevt
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ras
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\IME
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\icsxml
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\ias
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\downlevel
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\DDFs
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\System
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SKB
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\security
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\schemas
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\SchCache
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Resources
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\rescache
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\PLA
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Performance
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\ModemLogs
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Media
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\L2Schemas
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\InputMethod
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Globalization
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\GameBarPresenceWriter
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Cursors
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\Branding
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\addins
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\ProgramData\Comms
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Windows Portable Devices
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2017-01-01 18:05 - 2017-01-01 18:05 - 00000000 ____D C:\Program Files\Common Files\Services
2017-01-01 18:05 - 2017-01-01 18:01 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2017-01-01 18:05 - 2017-01-01 18:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-01-01 18:05 - 2017-01-01 18:01 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2017-01-01 18:05 - 2017-01-01 18:01 - 00002577 _____ C:\WINDOWS\system32\config.nt
2017-01-01 18:05 - 2017-01-01 18:01 - 00001688 _____ C:\WINDOWS\system32\autoexec.nt
2017-01-01 18:05 - 2017-01-01 18:01 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2017-01-01 18:05 - 2017-01-01 18:01 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2017-01-01 18:02 - 2017-01-04 21:55 - 00000000 ____D C:\WINDOWS\INF
2017-01-01 17:53 - 2017-01-10 22:12 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-01 17:51 - 2017-01-10 21:50 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-01-01 17:51 - 2017-01-09 13:06 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-01-01 17:51 - 2017-01-03 21:13 - 00000000 ____D C:\WINDOWS\servicing
2017-01-01 17:51 - 2017-01-01 18:05 - 00000000 ____D C:\WINDOWS\system32\SMI
2017-01-01 17:01 - 2017-01-01 17:01 - 00000000 ____D C:\Users\Moi\Desktop\Old Firefox Data
2017-01-01 15:26 - 2017-01-01 15:28 - 54199488 _____ (Malwarebytes ) C:\Users\Moi\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-01-01 15:19 - 2017-01-01 15:27 - 00000000 ____D C:\Users\Moi\Downloads\The.Walking.Dead.S07E07.SUBFRENCH.WEBRip.XViD-Torrent9.me
2016-12-27 22:24 - 2016-12-27 22:30 - 00000000 ____D C:\Users\Moi\Downloads\Ghostbusters.2016.EXTENDED.FRENCH.BDRip.XViD-FUNKKY
2016-12-27 22:13 - 2016-12-27 22:15 - 02237120 _____ (BitTorrent Inc.) C:\Users\Moi\Downloads\uTorrent.exe
2016-12-22 11:08 - 2016-12-22 11:08 - 00125952 _____ C:\Users\Moi\Downloads\simulateur_score_exact.xls
2016-12-14 15:10 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-14 15:10 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-14 15:10 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-14 15:10 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-14 15:10 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-14 15:10 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-14 15:10 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-14 15:10 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-14 15:10 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 15:10 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-14 15:10 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-14 15:10 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-12-14 15:10 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-12-14 15:10 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-14 15:10 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-14 15:10 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-14 15:10 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-14 15:10 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-14 15:10 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-14 15:10 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-14 15:10 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-14 15:10 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-14 15:10 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-14 15:10 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-14 15:10 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-14 15:10 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-14 15:10 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-14 15:10 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-14 15:10 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-14 15:09 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-14 15:09 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 15:09 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-14 15:09 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-14 15:09 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-14 15:09 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-14 15:09 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-14 15:09 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-14 15:09 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-14 15:09 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-14 15:09 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-14 15:09 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-14 15:09 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-14 15:09 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-14 15:09 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 15:09 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-14 15:09 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-14 15:09 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-14 15:09 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-14 15:09 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-14 15:09 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-14 15:09 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-14 15:09 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-14 15:09 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-14 15:09 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-12 14:35 - 2015-07-30 03:54 - 02350636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-12 14:35 - 2015-07-30 03:54 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-01-12 14:26 - 2015-08-31 19:49 - 00000000 __SHD C:\Users\Moi\IntelGraphicsProfiles
2017-01-11 22:36 - 2016-05-12 19:15 - 00001943 _____ C:\Users\Moi\Desktop\Winamax Poker.lnk
2017-01-08 13:06 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\McAfee
2017-01-05 13:44 - 2015-08-31 18:32 - 00000000 ____D C:\ProgramData\McAfee
2017-01-05 13:40 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\OEM
2017-01-03 21:24 - 2015-07-30 03:51 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-03 09:46 - 2015-08-31 18:25 - 00000000 ____D C:\Program Files\Amazon
2017-01-02 22:14 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\Common Files\McAfee
2017-01-02 22:06 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2017-01-02 22:05 - 2015-07-30 04:38 - 00000000 ___HD C:\OEM
2017-01-01 21:48 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Acer
2017-01-01 21:27 - 2015-08-31 19:53 - 00000000 ___RD C:\Users\Moi\OneDrive
2017-01-01 18:44 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-01-01 18:38 - 2015-07-10 07:59 - 00000000 ____D C:\Users\Default.migrated
2017-01-01 18:36 - 2015-09-01 03:14 - 00000000 ____D C:\WINDOWS\NAPP_Dism_Log
2017-01-01 18:36 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2017-01-01 18:36 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2017-01-01 18:34 - 2015-08-31 18:31 - 00000000 ____D C:\Users\Public\Foxit Software
2017-01-01 18:34 - 2015-08-31 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2017-01-01 18:34 - 2015-08-31 18:26 - 00000000 __HDC C:\ProgramData\{2B89F58C-32F7-46EC-A448-AECDF1F22B7B}
2017-01-01 18:34 - 2015-08-31 18:19 - 00000000 ____D C:\ProgramData\Realtek
2017-01-01 18:34 - 2015-08-31 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2017-01-01 18:34 - 2015-08-31 18:12 - 00000000 ____D C:\Program Files\REALTEK
2017-01-01 18:34 - 2015-07-30 03:54 - 00000000 ____D C:\ProgramData\Mozilla
2017-01-01 18:34 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-01-01 18:34 - 2015-07-30 03:53 - 00000000 ____D C:\ProgramData\AVAST Software
2017-01-01 18:34 - 2015-07-30 03:52 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-01-01 18:34 - 2015-07-10 11:50 - 00000000 ____D C:\Program Files\Windows Journal
2017-01-01 18:32 - 2015-08-31 18:32 - 00000000 ____D C:\Program Files\mcafee.com
2017-01-01 18:32 - 2015-08-31 18:31 - 00000000 ____D C:\Program Files\Foxit PhantomPDF
2017-01-01 18:32 - 2015-08-31 18:26 - 00000000 ____D C:\Program Files\Dashlane
2017-01-01 18:32 - 2015-08-31 18:13 - 00000000 ____D C:\Program Files\Cisco
2017-01-01 18:32 - 2015-08-31 18:12 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2017-01-01 18:32 - 2015-08-31 18:11 - 00000000 ____D C:\Program Files\DIFX
2017-01-01 18:32 - 2015-07-30 03:53 - 00000000 ____D C:\Program Files\AVAST Software
2017-01-01 18:32 - 2015-07-30 03:53 - 00000000 ____D C:\Program Files\Acer
2017-01-01 17:34 - 2016-11-18 16:49 - 00000000 ____D C:\Users\Moi\AppData\LocalLow\Mozilla
2016-12-28 23:24 - 2016-07-13 22:06 - 00000000 ____D C:\Users\Moi\Desktop\The walking dead
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-01-01 18:21
==================== Fin de FRST.txt ============================