cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:30-09-2015
Exécuté par Ophélie (administrateur) sur PHILIBERT (02-10-2015 17:58:21)
Exécuté depuis C:\Users\Ophélie\Desktop
Profils chargés: Ophélie (Profils disponibles: Ophélie)
Platform: Windows 8.1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Users\Ophélie\AppData\Local\33444335-1443736086-3838-5035-A45D36739225\snsk79C.tmp
() C:\Users\Ophélie\AppData\Local\33444335-1428161239-3838-5035-A45D36739225\cnsz8367.tmp
() C:\Program Files (x86)\33444335-1435506176-3838-5035-A45D36739225\knsk9E4E.tmp
() C:\Program Files (x86)\33444335-1443728833-3838-5035-A45D36739225\hnsi9172.tmp
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
() C:\Program Files (x86)\33444335-1443728833-3838-5035-A45D36739225\knsh5BE3.tmpfs
() C:\Program Files (x86)\33444335-1443728833-3838-5035-A45D36739225\jnsy76E4.tmp
() C:\Users\Ophélie\AppData\Local\33444335-1428161252-3838-5035-A45D36739225\snsg9F0C.tmp
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
() C:\Program Files\shopperz011020151101\Vubficvh.exe
() C:\Program Files\shopperz011020151101\csrcc.exe
() C:\Program Files\shopperz011020151101\Ajeotjai.exe
(DTools LIMITED) C:\ProgramData\rWdsManPror\WdsManPro.exe
(TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
() C:\Program Files\shopperz011020151101\Kixjucfio.EXE
() C:\Program Files\shopperz011020151101\JeiuobCugwu.exe
(WordWizard) C:\Program Files (x86)\WordWizard_1.10.0.24\Service\wwsvc.exe
() C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
(ShopperPro) C:\Program Files\Common Files\ShopperPro\spbiu.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Webby) C:\Program Files (x86)\iWebar\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-1-6.exe
(CinePlus-1.44V01.10) C:\Program Files (x86)\CinePlus-1.44V01.10\ada729c4-4d7a-4329-9e6d-f64223d3f215-1-6.exe
(Webby) C:\Program Files (x86)\iWebar\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-6.exe
(CinePlus-1.44V01.10) C:\Program Files (x86)\CinePlus-1.44V01.10\ada729c4-4d7a-4329-9e6d-f64223d3f215-6.exe
(ObjectB) C:\Program Files (x86)\Object Browser\b048f722-f1f0-433a-bfa0-50dd0f657d44-6.exe
(ObjectB) C:\Program Files (x86)\Object Browser\b048f722-f1f0-433a-bfa0-50dd0f657d44-1-6.exe
() C:\Program Files\shopperz011020151101\Mahcul.exe
() C:\Program Files\shopperz011020151101\Mahcul64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Pay By Ads LTD) C:\Program Files (x86)\onlysearch\onlysearch\1.3.22.1\onlysearch.exe
(YTDownloader) C:\Program Files (x86)\YTDownloader\YTDownloader.exe
() C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2591\jsdrv.exe
(SoftBrain Technologies Ltd.) C:\Users\Ophélie\AppData\Local\SmartWeb\SmartWebHelper.exe
(Crossbrowse) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
() C:\Program Files (x86)\gmsd_fr_005010102\gmsd_fr_005010102.exe
(SoftBrain Technologies Ltd.) C:\Users\Ophélie\AppData\Local\SmartWeb\SmartWebApp.exe
(Crossbrowse) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
(Crossbrowse) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Goobzo) C:\Program Files (x86)\YTDownloader\BrowserHelper.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-20] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3053808 2013-08-13] (Synaptics Incorporated)
HKLM\...\Run: [shopperz011020151101] => C:\Program Files\shopperz011020151101\Mahcul.exe [429248 2015-10-01] ()
HKLM\...\Run: [shopperz01102015110164] => C:\Program Files\shopperz011020151101\Mahcul64.exe [460480 2015-10-01] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-09-12] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491632 2012-09-10] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SmartWeb] => C:\Users\Ophélie\AppData\Local\SmartWeb\SmartWebHelper.exe [270368 2015-02-17] (SoftBrain Technologies Ltd.)
HKLM-x32\...\Run: [gmsd_fr_005010102] => C:\Program Files (x86)\gmsd_fr_005010102\gmsd_fr_005010102.exe [3976848 2015-09-30] ()
HKLM-x32\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1991600 2015-10-01] (YTDownloader)
HKLM-x32\...\Run: [SPDriver] => C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2591\jsdrv.exe [3225088 2015-10-01] ()
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\Run: [Only-search] => C:\Program Files (x86)\onlysearch\onlysearch\1.3.22.1\onlysearch.exe [647936 2015-10-01] (Pay By Ads LTD)
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1991600 2015-10-01] (YTDownloader)
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\Run: [SPDriver] => C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2591\jsdrv.exe [3225088 2015-10-01] ()
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\Run: [GoogleChromeAutoLaunch_F9C0B0DF6C3D3CDBD0CC999F2B42A079] => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [796672 2015-05-12] (Crossbrowse)
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\MountPoints2: {29e801a1-e0cb-11e3-be97-a45d36739225} - "F:\demarrage_2013.exe"
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\MountPoints2: {2c9033de-e759-11e3-be97-a45d36739225} - "F:\demarrage_2013.exe"
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\MountPoints2: {2f33e624-d743-11e3-be94-a45d36739225} - "G:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\MountPoints2: {4c569310-bee8-11e2-be72-806e6f6e6963} - "E:\index.exe"
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\MountPoints2: {be4f46d0-0425-11e3-be75-a45d36739225} - "F:\AutoRun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\MountPoints2: {cbdde2dc-5296-11e4-bea5-a45d36739225} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\...\MountPoints2: {ff10b883-d799-11e4-bec4-a45d36739225} - "H:\Startme.exe"
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [788480 2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Pas de fichier
Startup: C:\Users\Ophélie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk [2015-10-01]
ShortcutTarget: crossbrowse.lnk -> C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (Crossbrowse)
Startup: C:\Users\Ophélie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-10-01]
ShortcutTarget: SmartWeb.lnk -> C:\Users\Ophélie\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog9 01 C:\WINDOWS\SysWOW64\Kixjucfio.dll [283496 2015-10-01] ()
Winsock: Catalog9 02 C:\WINDOWS\SysWOW64\Kixjucfio.dll [283496 2015-10-01] ()
Winsock: Catalog9 03 C:\WINDOWS\SysWOW64\Kixjucfio.dll [283496 2015-10-01] ()
Winsock: Catalog9 04 C:\WINDOWS\SysWOW64\Kixjucfio.dll [283496 2015-10-01] ()
Winsock: Catalog9 15 C:\WINDOWS\SysWOW64\Kixjucfio.dll [283496 2015-10-01] ()
Winsock: Catalog9-x64 01 C:\WINDOWS\system32\Kixjucfio64.dll [353640 2015-10-01] ()
Winsock: Catalog9-x64 02 C:\WINDOWS\system32\Kixjucfio64.dll [353640 2015-10-01] ()
Winsock: Catalog9-x64 03 C:\WINDOWS\system32\Kixjucfio64.dll [353640 2015-10-01] ()
Winsock: Catalog9-x64 04 C:\WINDOWS\system32\Kixjucfio64.dll [353640 2015-10-01] ()
Winsock: Catalog9-x64 15 C:\WINDOWS\system32\Kixjucfio64.dll [353640 2015-10-01] ()
Tcpip\..\Interfaces\{6C68FBA0-B589-40AF-ADD3-57FF56B266CE}: [DhcpNameServer] 89.2.0.10

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.only-search.com/?babsrc=HP_kms&affID=132174
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://g.msn.fr/0SEFRFR/SAOS02
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/
HKU\S-1-5-21-2004748667-1121280212-3289344182-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPNOT13/3
SearchScopes: HKLM -> {0389C676-FC87-4903-9012-974CD48A3EA7} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {0389C676-FC87-4903-9012-974CD48A3EA7} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2004748667-1121280212-3289344182-1002 -> {1585409E-E169-4FE1-A436-69278A77AEE4} URL = hxxp://www.only-search.com/?babsrc=SP_kms&affID=132174&q={searchTerms}&r=472
SearchScopes: HKU\S-1-5-21-2004748667-1121280212-3289344182-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL =
BHO: Pas de nom -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> Pas de fichier
BHO: shopperz011020151101 -> {93F8D5C2-0BF6-4315-9316-AA5FC9948AC5} -> C:\Program Files\shopperz011020151101\Oirer64.dll [2015-10-01] ()
BHO: Shopper Pro -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> C:\ProgramData\ShopperPro\ShopperPro64.dll [2015-10-01] (Goobzo Ltd.)
BHO-x32: shopperz011020151101 -> {93F8D5C2-0BF6-4315-9316-AA5FC9948AC5} -> C:\Program Files\shopperz011020151101\Oirer.dll [2015-10-01] ()
BHO-x32: Shopper Pro -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> C:\ProgramData\ShopperPro\ShopperPro.dll [2015-10-01] (Goobzo Ltd.)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-19] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-19] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll [2012-08-08] (Adobe Systems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-28] (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-09-20] (RocketLife, LLP)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [2015-10-01] (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [2015-10-01] (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-01] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\5\NP_wtapp.dll [2013-10-16] ()
FF Plugin HKU\S-1-5-21-2004748667-1121280212-3289344182-1002: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Ophélie\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-04] (RocketLife, LLP)
FF HKLM\...\Firefox\Extensions: [{93F8D5C2-0BF6-4315-9316-AA5FC9948AC5}] - C:\Program Files\shopperz011020151101\Firefox
FF Extension: shopperz011020151101 - C:\Program Files\shopperz011020151101\Firefox [2015-10-01]
FF HKLM-x32\...\Firefox\Extensions: [{93F8D5C2-0BF6-4315-9316-AA5FC9948AC5}] - C:\Program Files\shopperz011020151101\Firefox

Chrome:
=======
CHR HomePage: Default -> hxxp://www.mystartsearch.com/?type=hp&ts=1443731506&z=3b675b66c98de647784ac6dgaz3zfc0mcc9g4c1e3b&from=cmi&uid=HGSTXHTS541010A9E680_JD10001V0LTTAB0LTTABX
CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hp&ts=1443731506&z=3b675b66c98de647784ac6dgaz3zfc0mcc9g4c1e3b&from=cmi&uid=HGSTXHTS541010A9E680_JD10001V0LTTAB0LTTABX"

CHR DefaultSearchURL: Default -> hxxp://www.mystartsearch.com/web/?type=ds&ts=1443731506&z=3b675b66c98de647784ac6dgaz3zfc0mcc9g4c1e3b&from=cmi&uid=HGSTXHTS541010A9E680_JD10001V0LTTAB0LTTABX&q={searchTerms}
CHR DefaultSearchKeyword: Default -> mystartsearch
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\ppGoogleNaClPluginChrome.dll => Pas de fichier
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\pdf.dll => Pas de fichier
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => Pas de fichier
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
CHR Profile: C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-13]
CHR Extension: (Google Drive) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-13]
CHR Extension: (YouTube) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-13]
CHR Extension: (Google Search) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-13]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-24]
CHR Extension: (Google Wallet) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-27]
CHR Extension: (CinePlus-1.44V01.10) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp [2015-10-01]
CHR Extension: (Gmail) - C:\Users\Ophélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-13]
CHR HKLM-x32\...\Chrome\Extension: [gfkbfjcbkhnmiignagpkiijohkcdkffb] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.mystartsearch.com/?type=sc&ts=1443731506&z=3b675b66c98de647784ac6dgaz3zfc0mcc9g4c1e3b&from=cmi&uid=HGSTXHTS541010A9E680_JD10001V0LTTAB0LTTABX

Opera:
=======
OPR Extension: (Pas de nom) - C:\Users\Ophélie\AppData\Roaming\Opera Software\Opera Stable\Extensions\hdhmofnopkgkpgnpggloijpbnaonhplc [2015-10-02]
OPR Extension: (Pas de nom) - C:\Users\Ophélie\AppData\Roaming\Opera Software\Opera Stable\Extensions\kfgaibfbmkjgmimhbbaikfnpkkjkpoan [2015-10-02]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 72D89F10-E7B1-4F7E-877D-BB327DEA39BF; C:\Program Files\shopperz011020151101\Ajeotjai.exe [281280 2015-10-01] ()
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-12] (Advanced Micro Devices, Inc.) [Fichier non signé]
R2 BrsHelper; C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe [112560 2015-10-01] ()
R3 csrcc; C:\Program Files\shopperz011020151101\csrcc.exe [1444544 2015-10-01] ()
R2 dipubibu; C:\Users\Ophélie\AppData\Local\33444335-1443736086-3838-5035-A45D36739225\snsk79C.tmp [303616 2015-10-01] () [Fichier non signé]
R2 futehuke; C:\Users\Ophélie\AppData\Local\33444335-1428161239-3838-5035-A45D36739225\cnsz8367.tmp [180224 2015-04-04] () [Fichier non signé]
R2 fuvenury; C:\Program Files (x86)\33444335-1435506176-3838-5035-A45D36739225\knsk9E4E.tmp [620544 2015-07-19] () [Fichier non signé]
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-18] (WildTangent)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-10-01] (globalUpdate) [Fichier non signé] <==== ATTENTION
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-10-01] (globalUpdate) [Fichier non signé] <==== ATTENTION
R2 gyvixodu; C:\Program Files (x86)\33444335-1443728833-3838-5035-A45D36739225\hnsi9172.tmp [203776 2015-10-01] () [Fichier non signé]
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [38712 2013-01-10] (Hewlett-Packard)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [Fichier non signé]
R3 Kixjucfio; C:\Program Files\shopperz011020151101\Kixjucfio.exe [2024808 2015-10-01] ()
R2 lehicewu; C:\Program Files (x86)\33444335-1443728833-3838-5035-A45D36739225\jnsy76E4.tmp [181760 2015-10-01] () [Fichier non signé]
R2 lyqiweky; C:\Users\Ophélie\AppData\Local\33444335-1428161252-3838-5035-A45D36739225\snsg9F0C.tmp [222720 2015-04-04] () [Fichier non signé]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [Fichier non signé]
S2 NetTcpHandler; C:\Users\Ophélie\AppData\Roaming\NetService\netservice.exe [173088 2015-07-09] () [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [Fichier non signé]
R2 shopperz011020151101 Updater; C:\Program Files\shopperz011020151101\Vubficvh.exe [171200 2015-10-01] ()
R2 SPBIUpd; C:\Program Files\Common Files\ShopperPro\spbiu.exe [2346416 2015-10-01] (ShopperPro)
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [458400 2015-10-01] (TODO: <公司名>)
R2 SutsytCofgi; C:\Program Files\shopperz011020151101\JeiuobCugwu.exe [171880 2015-10-01] ()
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-02-24] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WdsManPro; C:\ProgramData\rWdsManPror\WdsManPro.exe [442504 2015-10-01] (DTools LIMITED)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 wwsvc_1.10.0.24; C:\Program Files (x86)\WordWizard_1.10.0.24\Service\wwsvc.exe [301656 2015-09-02] (WordWizard)
R2 huwowilo; C:\Program Files (x86)\33444335-1443728833-3838-5035-A45D36739225\knsh5BE3.tmpfs [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3860480 2013-08-23] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-08-22] (Advanced Micro Devices)
R1 bsdriver; C:\WINDOWS\system32\drivers\bsdriver.sys [34720 2015-10-01] ()
R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [56736 2015-09-24] (Windows (R) Win 7 DDK provider)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (Windows (R) Win 7 DDK provider)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [269968 2012-07-04] (Realtek Semiconductor Corp.)
R2 sbmntr; C:\Program Files (x86)\YTDownloader\sbmntr.sys [58528 2015-10-01] (YTDownloader)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-25] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-25] (Synaptics Incorporated)
R3 SPBIUpdd; C:\Program Files\Common Files\ShopperPro\spbiw.sys [41632 2015-10-01] ()
R2 SPDRIVER_1.42.1.2591; C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2591\jsdrv.sys [52384 2015-10-01] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
R1 wwfd_vw_1_10_0_24; C:\Windows\System32\drivers\wwfd_vw_1_10_0_24.sys [57728 2015-09-02] (WordWizard)
R4 avkmgr; \SystemRoot\system32\DRIVERS\avkmgr.sys [X]
S1 scfd_1_10_0_16; system32\drivers\scfd_1_10_0_16.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-10-02 17:58 - 2015-10-02 17:58 - 00028730 _____ C:\Users\Ophélie\Desktop\FRST.txt
2015-10-02 17:58 - 2015-10-02 17:58 - 00000000 ____D C:\FRST
2015-10-02 17:53 - 2015-10-02 17:54 - 02192384 _____ (Farbar) C:\Users\Ophélie\Desktop\FRST64.exe
2015-10-02 17:43 - 2015-10-02 17:43 - 00000000 ____D C:\Users\Ophélie\AppData\Local\Crossbrowse
2015-10-02 17:42 - 2015-10-02 17:42 - 00001462 _____ C:\Users\Ophélie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-10-01 23:17 - 2015-10-01 23:17 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\Opera Software
2015-10-01 22:40 - 2015-10-01 22:40 - 00003852 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1443731618
2015-10-01 22:39 - 2015-10-02 17:42 - 00001080 _____ C:\WINDOWS\Tasks\Crossbrowse.job
2015-10-01 22:39 - 2015-10-01 22:39 - 00004086 _____ C:\WINDOWS\System32\Tasks\Crossbrowse
2015-10-01 22:39 - 2015-10-01 22:39 - 00002416 _____ C:\Users\Public\Desktop\Crossbrowse.lnk
2015-10-01 22:39 - 2015-10-01 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
2015-10-01 22:38 - 2015-10-02 17:42 - 00002470 _____ C:\WINDOWS\Tasks\16ecf0bc-168b-46f5-b40e-de93e400c9a3-5.job
2015-10-01 22:38 - 2015-10-01 22:38 - 00005474 _____ C:\WINDOWS\System32\Tasks\16ecf0bc-168b-46f5-b40e-de93e400c9a3-5
2015-10-01 22:38 - 2015-10-01 22:38 - 00004244 _____ C:\WINDOWS\System32\Tasks\SPBIW_UpdateTask_Time_313837393135303338342d2323782a32455b4134572d32
2015-10-01 22:38 - 2015-10-01 22:38 - 00002470 _____ C:\WINDOWS\Tasks\16ecf0bc-168b-46f5-b40e-de93e400c9a3-5_user.job
2015-10-01 22:38 - 2015-10-01 22:38 - 00002136 _____ C:\WINDOWS\Tasks\16ecf0bc-168b-46f5-b40e-de93e400c9a3-10_user.job
2015-10-01 22:38 - 2015-10-01 22:38 - 00001054 _____ C:\WINDOWS\Tasks\UPpAeesdbVg1DHvug22VRkNSa6M.job
2015-10-01 22:38 - 2015-10-01 22:38 - 00000000 ____D C:\Program Files\Common Files\ShopperPro
2015-10-01 22:38 - 2015-10-01 22:38 - 00000000 ____D C:\Program Files (x86)\System NotifierV01.10
2015-10-01 22:38 - 2015-10-01 22:38 - 00000000 ____D C:\Program Files (x86)\Crossbrowse
2015-10-01 22:37 - 2015-10-02 17:42 - 00002466 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-5.job
2015-10-01 22:37 - 2015-10-01 22:38 - 00000000 ____D C:\ProgramData\ShopperPro
2015-10-01 22:37 - 2015-10-01 22:37 - 00005470 _____ C:\WINDOWS\System32\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-5
2015-10-01 22:37 - 2015-10-01 22:37 - 00004520 _____ C:\WINDOWS\System32\Tasks\ShopperPro
2015-10-01 22:37 - 2015-10-01 22:37 - 00003910 _____ C:\WINDOWS\System32\Tasks\YTDownloaderUpd
2015-10-01 22:37 - 2015-10-01 22:37 - 00003588 _____ C:\WINDOWS\System32\Tasks\YTDownloader
2015-10-01 22:37 - 2015-10-01 22:37 - 00003574 _____ C:\WINDOWS\System32\Tasks\ShopperProJSUpd
2015-10-01 22:37 - 2015-10-01 22:37 - 00003500 _____ C:\WINDOWS\System32\Tasks\SPDriver
2015-10-01 22:37 - 2015-10-01 22:37 - 00002784 _____ C:\WINDOWS\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-5_user.job
2015-10-01 22:37 - 2015-10-01 22:37 - 00002466 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-5_user.job
2015-10-01 22:37 - 2015-10-01 22:37 - 00001965 _____ C:\Users\Ophélie\Desktop\YTDownloader.lnk
2015-10-01 22:37 - 2015-10-01 22:37 - 00001028 _____ C:\WINDOWS\Tasks\anNnkErtTJXxu2.job
2015-10-01 22:37 - 2015-10-01 22:37 - 00000000 ____D C:\Users\Public\Documents\ShopperPro
2015-10-01 22:37 - 2015-10-01 22:37 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2015-10-01 22:37 - 2015-10-01 22:37 - 00000000 ____D C:\Users\Ophélie\AppData\Local\BrowserHelper
2015-10-01 22:37 - 2015-10-01 22:37 - 00000000 ____D C:\Program Files (x86)\YTDownloader
2015-10-01 22:37 - 2015-10-01 22:37 - 00000000 ____D C:\Program Files (x86)\ShopperPro
2015-10-01 22:36 - 2015-10-02 17:42 - 00003468 _____ C:\WINDOWS\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-1-7.job
2015-10-01 22:36 - 2015-10-02 17:42 - 00003468 _____ C:\WINDOWS\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-1-6.job
2015-10-01 22:36 - 2015-10-02 17:42 - 00003158 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-1-7.job
2015-10-01 22:36 - 2015-10-02 17:42 - 00003158 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-1-6.job
2015-10-01 22:36 - 2015-10-02 17:42 - 00003148 _____ C:\WINDOWS\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-1-7.job
2015-10-01 22:36 - 2015-10-02 17:42 - 00002804 _____ C:\WINDOWS\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-1-6.job
2015-10-01 22:36 - 2015-10-02 17:42 - 00002784 _____ C:\WINDOWS\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-5.job
2015-10-01 22:36 - 2015-10-02 17:42 - 00002456 _____ C:\WINDOWS\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-5.job
2015-10-01 22:36 - 2015-10-01 22:38 - 00005788 _____ C:\WINDOWS\System32\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-5
2015-10-01 22:36 - 2015-10-01 22:37 - 00006472 _____ C:\WINDOWS\System32\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-1-7
2015-10-01 22:36 - 2015-10-01 22:37 - 00006472 _____ C:\WINDOWS\System32\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-1-6
2015-10-01 22:36 - 2015-10-01 22:37 - 00006152 _____ C:\WINDOWS\System32\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-1-7
2015-10-01 22:36 - 2015-10-01 22:37 - 00005808 _____ C:\WINDOWS\System32\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-1-6
2015-10-01 22:36 - 2015-10-01 22:37 - 00005460 _____ C:\WINDOWS\System32\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-5
2015-10-01 22:36 - 2015-10-01 22:36 - 00006162 _____ C:\WINDOWS\System32\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-1-7
2015-10-01 22:36 - 2015-10-01 22:36 - 00006162 _____ C:\WINDOWS\System32\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-1-6
2015-10-01 22:36 - 2015-10-01 22:36 - 00002456 _____ C:\WINDOWS\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-5_user.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00006200 _____ C:\WINDOWS\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-6.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00005856 _____ C:\WINDOWS\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-7.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00005538 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-7.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00005538 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-6.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00005528 _____ C:\WINDOWS\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-7.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00005528 _____ C:\WINDOWS\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-6.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00005194 _____ C:\WINDOWS\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-11.job
2015-10-01 22:35 - 2015-10-02 17:42 - 00005178 _____ C:\WINDOWS\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-11.job
2015-10-01 22:35 - 2015-10-01 22:36 - 00009204 _____ C:\WINDOWS\System32\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-6
2015-10-01 22:35 - 2015-10-01 22:36 - 00008860 _____ C:\WINDOWS\System32\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-7
2015-10-01 22:35 - 2015-10-01 22:36 - 00008532 _____ C:\WINDOWS\System32\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-7
2015-10-01 22:35 - 2015-10-01 22:36 - 00008532 _____ C:\WINDOWS\System32\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-6
2015-10-01 22:35 - 2015-10-01 22:35 - 00034720 _____ () C:\WINDOWS\system32\Drivers\bsdriver.sys
2015-10-01 22:35 - 2015-10-01 22:35 - 00008542 _____ C:\WINDOWS\System32\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-7
2015-10-01 22:35 - 2015-10-01 22:35 - 00008542 _____ C:\WINDOWS\System32\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-6
2015-10-01 22:35 - 2015-10-01 22:35 - 00008198 _____ C:\WINDOWS\System32\Tasks\b048f722-f1f0-433a-bfa0-50dd0f657d44-11
2015-10-01 22:35 - 2015-10-01 22:35 - 00008182 _____ C:\WINDOWS\System32\Tasks\d0dc5bb0-0c03-4a1d-ae29-65a705abe49a-11
2015-10-01 22:35 - 2015-10-01 22:35 - 00000000 ____D C:\Users\Ophélie\AppData\Local\MyBrowser
2015-10-01 22:35 - 2015-10-01 22:35 - 00000000 ____D C:\Users\Ophélie\AppData\Local\gmsd_fr_005010102
2015-10-01 22:35 - 2015-10-01 22:35 - 00000000 ____D C:\Program Files (x86)\gmsd_fr_005010102
2015-10-01 22:35 - 2015-10-01 22:35 - 00000000 ____D C:\Program Files (x86)\ff301ff7-14e9-4ddd-8250-1ce1c8dddf32
2015-10-01 22:35 - 2015-10-01 22:35 - 00000000 ____D C:\Program Files (x86)\cfe8ff93-3b9c-4ff8-9e01-f107b054e49f
2015-10-01 22:35 - 2015-10-01 22:35 - 00000000 ____D C:\Program Files (x86)\96ec7c5e-bd57-44da-9f71-cfb8240ba7d3
2015-10-01 22:34 - 2015-10-02 17:42 - 00001072 _____ C:\WINDOWS\Tasks\MyBrowser.job
2015-10-01 22:34 - 2015-10-01 22:38 - 00003952 _____ C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineUA
2015-10-01 22:34 - 2015-10-01 22:38 - 00003716 _____ C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineCore
2015-10-01 22:34 - 2015-10-01 22:38 - 00000980 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-10-01 22:34 - 2015-10-01 22:37 - 00000000 ____D C:\Program Files (x86)\iWebar
2015-10-01 22:34 - 2015-10-01 22:36 - 00000000 ____D C:\Program Files (x86)\Object Browser
2015-10-01 22:34 - 2015-10-01 22:34 - 00613255 _____ (CMI Limited) C:\Users\Ophélie\AppData\Local\nsy78E1.tmp
2015-10-01 22:34 - 2015-10-01 22:34 - 00613255 _____ (CMI Limited) C:\Users\Ophélie\AppData\Local\nsk6DF5.tmp
2015-10-01 22:34 - 2015-10-01 22:34 - 00004078 _____ C:\WINDOWS\System32\Tasks\MyBrowser
2015-10-01 22:34 - 2015-10-01 22:34 - 00001146 _____ C:\Users\Ophélie\Desktop\Continue Live Installation.lnk
2015-10-01 22:34 - 2015-10-01 22:34 - 00000000 __SHD C:\Users\Ophélie\AppData\Roaming\AnyProtectEx
2015-10-01 22:34 - 2015-10-01 22:34 - 00000000 ____D C:\Program Files (x86)\AnyProtectEx
2015-10-01 22:34 - 2015-10-01 22:33 - 00001151 _____ C:\Users\Public\Desktop\Opera.lnk
2015-10-01 22:34 - 2015-10-01 22:33 - 00001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-10-01 22:33 - 2015-10-02 17:42 - 00004178 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-3.job
2015-10-01 22:33 - 2015-10-02 17:42 - 00000976 _____ C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-10-01 22:33 - 2015-10-01 22:38 - 00003250 _____ C:\WINDOWS\System32\Tasks\runTask
2015-10-01 22:33 - 2015-10-01 22:37 - 00000000 ____D C:\Program Files (x86)\CinePlus-1.44V01.10
2015-10-01 22:33 - 2015-10-01 22:34 - 00208384 _____ C:\WINDOWS\SysWOW64\7a276b8.exe
2015-10-01 22:33 - 2015-10-01 22:34 - 00208384 _____ C:\WINDOWS\SysWOW64\578b.exe
2015-10-01 22:33 - 2015-10-01 22:34 - 00007182 _____ C:\WINDOWS\System32\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-3
2015-10-01 22:33 - 2015-10-01 22:33 - 00004744 _____ C:\WINDOWS\SysWOW64\Kixjucfio.ini
2015-10-01 22:33 - 2015-10-01 22:33 - 00004182 _____ C:\WINDOWS\System32\Tasks\WordWizard Auto Updater 1.10.0.24 Pending Update
2015-10-01 22:33 - 2015-10-01 22:33 - 00004172 _____ C:\WINDOWS\System32\Tasks\WordWizard Auto Updater 1.10.0.24 Core
2015-10-01 22:33 - 2015-10-01 22:33 - 00003486 _____ C:\WINDOWS\System32\Tasks\Only-search
2015-10-01 22:33 - 2015-10-01 22:33 - 00003388 _____ C:\WINDOWS\System32\Tasks\Inst_Rep
2015-10-01 22:33 - 2015-10-01 22:33 - 00002456 _____ C:\WINDOWS\SysWOW64\KixjucfioOff.ini
2015-10-01 22:33 - 2015-10-01 22:33 - 00002456 _____ C:\WINDOWS\system32\KixjucfioOff.ini
2015-10-01 22:33 - 2015-10-01 22:33 - 00002362 _____ C:\Users\Public\Desktop\MyBrowser.lnk
2015-10-01 22:33 - 2015-10-01 22:33 - 00002132 _____ C:\WINDOWS\Tasks\ada729c4-4d7a-4329-9e6d-f64223d3f215-10_user.job
2015-10-01 22:33 - 2015-10-01 22:33 - 00001417 _____ C:\Users\Ophélie\AppData\Roaming\Microsoft\Windows\Start Menu\Only-search.lnk
2015-10-01 22:33 - 2015-10-01 22:33 - 00000000 ____D C:\Users\Ophélie\AppData\Local\globalUpdate
2015-10-01 22:33 - 2015-10-01 22:33 - 00000000 ____D C:\Users\Ophélie\AppData\Local\CrashRpt
2015-10-01 22:33 - 2015-10-01 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyBrowser
2015-10-01 22:33 - 2015-10-01 22:33 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-10-01 22:33 - 2015-10-01 10:03 - 00353640 _____ C:\WINDOWS\system32\Kixjucfio64.dll
2015-10-01 22:32 - 2015-10-01 22:38 - 00003154 _____ C:\WINDOWS\System32\Tasks\updateTask
2015-10-01 22:32 - 2015-10-01 22:38 - 00000880 _____ C:\task.vbs
2015-10-01 22:32 - 2015-10-01 22:34 - 00000000 ____D C:\Program Files (x86)\Opera
2015-10-01 22:32 - 2015-10-01 22:33 - 00000000 ____D C:\ProgramData\rWdsManPror
2015-10-01 22:32 - 2015-10-01 22:33 - 00000000 ____D C:\Program Files (x86)\WordWizard_1.10.0.24
2015-10-01 22:32 - 2015-10-01 22:32 - 00003648 _____ C:\WINDOWS\System32\Tasks\Delhivv
2015-10-01 22:32 - 2015-10-01 22:32 - 00003484 _____ C:\WINDOWS\System32\Tasks\Only-search Updater
2015-10-01 22:32 - 2015-10-01 22:32 - 00000102 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-01 22:32 - 2015-10-01 22:32 - 00000000 ____D C:\WINDOWS\system32\jucu
2015-10-01 22:32 - 2015-10-01 22:32 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\ortmp
2015-10-01 22:32 - 2015-10-01 22:32 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\mystartsearch
2015-10-01 22:32 - 2015-10-01 22:32 - 00000000 ____D C:\Users\Ophélie\AppData\Local\Tempfolder
2015-10-01 22:32 - 2015-10-01 22:32 - 00000000 ____D C:\Program Files (x86)\SFK
2015-10-01 22:32 - 2015-10-01 22:32 - 00000000 ____D C:\Program Files (x86)\onlysearch
2015-10-01 22:32 - 2015-10-01 10:03 - 00283496 _____ C:\WINDOWS\SysWOW64\Kixjucfio.dll
2015-10-01 22:31 - 2015-10-01 22:35 - 00000000 ____D C:\Program Files\shopperz011020151101
2015-10-01 22:31 - 2015-10-01 22:32 - 00001917 _____ C:\Users\Ophélie\Desktop\jogotempo.lnk
2015-10-01 22:31 - 2015-10-01 22:32 - 00000000 ____D C:\Program Files (x86)\jogotempo
2015-10-01 22:31 - 2015-10-01 22:31 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\RunDir
2015-10-01 22:31 - 2015-10-01 22:31 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\NetService
2015-10-01 22:31 - 2015-10-01 22:31 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jogotempo
2015-10-01 22:31 - 2015-10-01 22:31 - 00000000 ____D C:\Users\Ophélie\AppData\Local\SmartWeb
2015-10-01 22:31 - 2015-10-01 22:31 - 00000000 ____D C:\Program Files (x86)\MyBrowser
2015-10-01 22:31 - 2015-09-24 11:46 - 00056736 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\cherimoya.sys
2015-10-01 22:04 - 2015-10-01 22:04 - 00000000 _____ C:\ProgramData\rebootpending.txt
2015-10-01 21:48 - 2015-10-01 22:04 - 00000000 ____D C:\Users\Ophélie\AppData\Local\33444335-1443736086-3838-5035-A45D36739225
2015-10-01 21:48 - 2015-10-01 21:50 - 00009243 _____ C:\claraInstaller.txt
2015-10-01 21:47 - 2015-10-01 21:47 - 00000000 ____D C:\Program Files (x86)\33444335-1443728833-3838-5035-A45D36739225
2015-10-01 21:30 - 2015-10-01 22:08 - 00000879 _____ C:\Users\Ophélie\Desktop\ZHPCleaner.lnk
2015-10-01 21:28 - 2015-10-01 21:28 - 01967616 _____ C:\Users\Ophélie\Desktop\ZHPCleaner.exe
2015-09-29 23:38 - 2015-09-29 23:39 - 00443504 _____ C:\WINDOWS\Minidump\092915-40609-01.dmp
2015-09-29 23:38 - 2015-09-29 23:38 - 623097401 _____ C:\WINDOWS\MEMORY.DMP
2015-09-29 23:38 - 2015-09-29 23:38 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-22 10:09 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-09-14 20:21 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-14 20:21 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-14 19:47 - 2015-09-14 19:47 - 00000000 ____D C:\ProgramData\AVAST Software
2015-09-14 19:45 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-09-14 19:45 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-09-14 19:45 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-09-14 19:45 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-09-14 19:45 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-09-14 19:45 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-14 19:45 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-09-14 19:45 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-09-14 19:45 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-14 19:45 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-09-14 19:45 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-09-14 19:45 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-09-14 19:45 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-14 19:45 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-14 19:45 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-14 19:45 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-14 19:45 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-09-14 19:45 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-09-14 19:45 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-09-14 19:45 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-09-14 19:45 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2015-09-14 19:45 - 2015-07-16 21:53 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-09-14 19:45 - 2015-07-16 02:29 - 07458648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-09-14 19:45 - 2015-07-16 02:29 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-09-14 19:45 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-09-14 19:45 - 2015-07-16 02:28 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-09-14 19:45 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-09-14 19:45 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2015-09-14 19:45 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2015-09-14 19:45 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2015-09-14 19:45 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2015-09-14 19:45 - 2015-06-16 00:02 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2015-09-14 19:45 - 2015-06-15 23:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-09-14 19:45 - 2015-06-15 22:47 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2015-09-14 19:45 - 2015-06-15 22:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-09-14 19:45 - 2015-06-15 22:42 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-09-14 19:44 - 2015-09-14 19:44 - 00000000 ____D C:\Users\Nouveau dossier
2015-09-14 19:44 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-14 19:44 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-14 19:44 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-14 19:44 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-14 19:44 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-09-14 19:44 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-14 19:44 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-09-14 19:44 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-14 19:44 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-09-14 19:44 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-09-14 19:44 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-09-14 19:44 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-09-14 19:44 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-09-14 19:44 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-14 19:44 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-09-14 19:44 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-14 19:44 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-09-14 19:44 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-09-14 19:44 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-14 19:44 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-09-14 19:44 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-09-14 19:44 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-09-14 19:44 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-09-14 19:44 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-09-14 19:44 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-09-14 19:44 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-09-14 19:44 - 2015-07-16 21:14 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-09-14 19:44 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-09-14 19:44 - 2015-06-16 00:38 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-09-14 19:44 - 2015-06-15 23:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-09-14 19:44 - 2015-06-15 23:57 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-09-14 19:44 - 2015-06-15 23:55 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-09-14 19:44 - 2015-06-15 22:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-09-14 19:44 - 2015-06-15 22:41 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-09-14 19:37 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-09-14 19:37 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-14 19:37 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-14 19:37 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-14 19:37 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-14 19:37 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2015-09-14 19:37 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2015-09-14 19:37 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2015-09-14 19:37 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2015-09-14 19:37 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2015-09-14 19:37 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-14 19:37 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-09-14 19:37 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2015-09-14 19:37 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-09-14 19:37 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-09-14 19:37 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-09-14 19:37 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-14 19:37 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-14 19:37 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-14 19:37 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-14 19:37 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-14 19:37 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-14 19:37 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-14 19:37 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-14 19:37 - 2015-07-14 05:22 - 02529880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-09-14 19:37 - 2015-07-14 05:21 - 01901776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-09-14 19:37 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2015-09-14 19:37 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2015-09-14 19:37 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-09-14 19:37 - 2015-07-10 19:42 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-09-14 19:37 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-09-14 19:37 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-09-14 19:37 - 2015-07-10 18:47 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-09-14 19:37 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-09-14 19:37 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-09-14 19:37 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-09-14 19:37 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-09-14 19:36 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2015-09-02 22:16 - 2015-09-02 22:16 - 00061312 _____ (WordWizard) C:\WINDOWS\system32\Drivers\wwfd_vt_1_10_0_24.sys
2015-09-02 22:16 - 2015-09-02 22:16 - 00057728 _____ (WordWizard) C:\WINDOWS\system32\Drivers\wwfd_vw_1_10_0_24.sys

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-10-02 17:53 - 2014-02-24 22:23 - 01825621 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-02 17:52 - 2013-08-13 18:59 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2004748667-1121280212-3289344182-1002
2015-10-02 17:47 - 2014-08-03 18:45 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-02 17:45 - 2014-02-27 19:31 - 00003948 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6F9AC554-1104-42E2-AFEB-A1A4C8016319}
2015-10-02 17:42 - 2014-02-26 19:37 - 00000000 __RDO C:\Users\Ophélie\SkyDrive
2015-10-02 17:42 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-02 17:42 - 2013-08-13 19:14 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-01 22:35 - 2015-07-19 21:04 - 00000000 ____D C:\Program Files (x86)\33444335-1435506176-3838-5035-A45D36739225
2015-10-01 22:32 - 2015-03-23 12:35 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-10-01 22:32 - 2015-03-23 12:33 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-10-01 22:31 - 2015-03-29 11:20 - 00000045 _____ C:\user.js
2015-10-01 22:25 - 2015-04-27 22:23 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\ZHP
2015-10-01 22:22 - 2015-07-26 14:44 - 00000000 ____D C:\ProgramData\{c6f2d49d-8db1-aee2-c6f2-2d49d8db5276}
2015-10-01 22:22 - 2015-07-12 18:47 - 00000000 ____D C:\ProgramData\{f2453aac-3b52-23f6-f245-53aac3b5eab0}
2015-10-01 22:22 - 2015-07-08 11:51 - 00000000 ____D C:\ProgramData\{74f76675-fc22-0679-74f7-76675fc299d7}
2015-10-01 22:22 - 2015-07-02 19:55 - 00000000 ____D C:\ProgramData\{2c20c536-de0b-2218-2c20-0c536de014db}
2015-10-01 22:22 - 2015-07-01 16:12 - 00000000 ____D C:\ProgramData\{6eed7616-8ba0-d8d8-6eed-d76168bad85a}
2015-10-01 22:22 - 2015-06-30 14:24 - 00000000 ____D C:\ProgramData\{10628583-c94a-bb23-1062-28583c94160f}
2015-10-01 22:22 - 2015-06-28 17:47 - 00000000 ____D C:\ProgramData\{28b6109b-11ec-e7ae-28b6-6109b11e426c}
2015-10-01 22:11 - 2013-08-13 19:14 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-01 22:05 - 2013-12-01 14:13 - 00000000 ____D C:\ProgramData\Avira
2015-10-01 22:05 - 2013-12-01 14:13 - 00000000 ____D C:\Program Files (x86)\Avira
2015-10-01 22:04 - 2015-04-04 15:27 - 00000000 ____D C:\Users\Ophélie\AppData\Local\33444335-1428161252-3838-5035-A45D36739225
2015-10-01 22:04 - 2013-08-13 19:14 - 00004068 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-01 22:03 - 2013-08-13 19:14 - 00003832 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-01 21:59 - 2013-08-22 16:46 - 00379250 _____ C:\WINDOWS\setupact.log
2015-10-01 21:59 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-01 21:58 - 2013-11-14 00:22 - 00353098 _____ C:\WINDOWS\PFRO.log
2015-10-01 21:55 - 2014-11-29 14:57 - 00000597 _____ C:\Users\Ophélie\AppData\Local\recently-fix.db
2015-10-01 21:55 - 2014-02-24 22:20 - 00000000 ____D C:\Users\Ophélie
2015-10-01 21:47 - 2014-11-23 13:45 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\OCyxxkM
2015-10-01 21:34 - 2013-11-14 09:32 - 00339314 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-01 21:34 - 2013-11-14 09:13 - 00015420 _____ C:\WINDOWS\system32\perfh00C.dat
2015-10-01 21:34 - 2013-11-14 09:13 - 00004838 _____ C:\WINDOWS\system32\perfc00C.dat
2015-10-01 21:27 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-30 22:24 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-29 23:43 - 2013-08-22 15:25 - 01048576 ___SH C:\WINDOWS\system32\config\BBI
2015-09-29 23:39 - 2014-04-02 20:49 - 00000360 _____ C:\WINDOWS\Tasks\HPCeeScheduleForOphélie.job
2015-09-29 23:32 - 2015-03-30 00:06 - 00000000 ____D C:\Users\Ophélie\AppData\Roaming\vlc
2015-09-29 19:52 - 2013-05-17 11:19 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-09-29 19:52 - 2012-08-04 02:02 - 00000000 ____D C:\SWSetup
2015-09-29 19:51 - 2013-08-13 21:11 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-09-29 19:50 - 2013-05-17 11:29 - 00000000 ____D C:\WINDOWS\Hewlett-Packard
2015-09-29 19:19 - 2014-04-02 20:50 - 00003178 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForOphélie
2015-09-22 10:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-09-16 12:21 - 2014-09-30 13:53 - 00000000 ____D C:\Users\Ophélie\Desktop\Travail
2015-09-15 03:18 - 2014-11-27 09:49 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-09-15 03:18 - 2014-11-27 09:49 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-14 20:53 - 2013-08-22 16:44 - 00520120 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-14 20:51 - 2013-12-01 16:22 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-09-14 20:51 - 2013-12-01 16:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-09-14 20:48 - 2013-11-14 09:16 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-14 20:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-09-14 20:24 - 2013-10-21 15:13 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-14 20:21 - 2013-12-01 16:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-09-14 20:01 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-14 20:01 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

==================== Fichiers à la racine de certains dossiers =======

2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Ophélie\AppData\Roaming\anNnkErtTJXxu2
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\Ophélie\AppData\Roaming\anNnkErtTJXxu2.exe
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Ophélie\AppData\Roaming\UPpAeesdbVg1DHvug22VRkNSa6M
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\Ophélie\AppData\Roaming\UPpAeesdbVg1DHvug22VRkNSa6M.exe
2014-08-29 18:29 - 2014-11-22 01:29 - 0000103 _____ () C:\Users\Ophélie\AppData\Roaming\WB.CFG
2015-03-27 19:07 - 2015-03-27 19:07 - 0000000 _____ () C:\Users\Ophélie\AppData\Local\.a852.db
2015-10-01 22:34 - 2015-10-01 22:34 - 0613255 _____ (CMI Limited) C:\Users\Ophélie\AppData\Local\nsk6DF5.tmp
2015-10-01 22:34 - 2015-10-01 22:34 - 0613255 _____ (CMI Limited) C:\Users\Ophélie\AppData\Local\nsy78E1.tmp
2014-11-29 14:57 - 2015-10-01 21:55 - 0000597 _____ () C:\Users\Ophélie\AppData\Local\recently-fix.db
2013-05-17 11:51 - 2013-05-17 11:51 - 0000595 _____ () C:\ProgramData\CyberlinkOutput.txt
2013-08-13 18:49 - 2013-08-13 18:49 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2015-10-01 22:04 - 2015-10-01 22:04 - 0000000 _____ () C:\ProgramData\rebootpending.txt
2015-10-01 22:32 - 2015-10-01 22:32 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Fichiers à déplacer ou supprimer:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Certains fichiers dans TEMP:
====================
C:\Users\Ophélie\AppData\Local\Temp\2951.exe
C:\Users\Ophélie\AppData\Local\Temp\3756.exe
C:\Users\Ophélie\AppData\Local\Temp\4093.exe
C:\Users\Ophélie\AppData\Local\Temp\5201.exe
C:\Users\Ophélie\AppData\Local\Temp\6419.exe
C:\Users\Ophélie\AppData\Local\Temp\AskPIP_FF_.exe
C:\Users\Ophélie\AppData\Local\Temp\AutoRun.exe
C:\Users\Ophélie\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Ophélie\AppData\Local\Temp\avgnt.exe
C:\Users\Ophélie\AppData\Local\Temp\DownPageDll.dll
C:\Users\Ophélie\AppData\Local\Temp\Extract.exe
C:\Users\Ophélie\AppData\Local\Temp\msvcp120.dll
C:\Users\Ophélie\AppData\Local\Temp\msvcr120.dll
C:\Users\Ophélie\AppData\Local\Temp\ochelper.dll
C:\Users\Ophélie\AppData\Local\Temp\ochelper.exe
C:\Users\Ophélie\AppData\Local\Temp\oprun25456.exe
C:\Users\Ophélie\AppData\Local\Temp\oprun4404.exe
C:\Users\Ophélie\AppData\Local\Temp\pc-decrapifier.exe
C:\Users\Ophélie\AppData\Local\Temp\Quarantine.exe
C:\Users\Ophélie\AppData\Local\Temp\setup_608.exe
C:\Users\Ophélie\AppData\Local\Temp\SP58496.exe
C:\Users\Ophélie\AppData\Local\Temp\SP63599.exe
C:\Users\Ophélie\AppData\Local\Temp\SP63733.exe
C:\Users\Ophélie\AppData\Local\Temp\sp64126.exe
C:\Users\Ophélie\AppData\Local\Temp\SpOrder.dll
C:\Users\Ophélie\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Ophélie\AppData\Local\Temp\sqlite3.dll
C:\Users\Ophélie\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Ophélie\AppData\Local\Temp\unzip.exe
C:\Users\Ophélie\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Ophélie\AppData\Local\Temp\vlc-2.1.5-win32.exe
C:\Users\Ophélie\AppData\Local\Temp\vlc-2.2.1-win32.exe
C:\Users\Ophélie\AppData\Local\Temp\YyV2B53.exe
C:\Users\Ophélie\AppData\Local\Temp\YyV9047.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll
[2015-03-23 12:35] - [2015-10-01 22:32] - 0657920 ____A (Microsoft Corporation) 25C720C0486747B53D1EAA2076184BEF

C:\WINDOWS\SysWOW64\dnsapi.dll
[2015-03-23 12:33] - [2015-10-01 22:32] - 0498688 ____A (Microsoft Corporation) E2652F6BD97A55B7A68DB782F323D127

C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-09-24 14:15

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité