cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:11-10-2015 02
Exécuté par claire (administrateur) sur PC-CLAIRE (12-10-2015 12:28:22)
Exécuté depuis C:\Users\claire\Desktop
Profils chargés: claire (Profils disponibles: claire)
Platform: Windows 8.1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [114048 2013-10-18] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-09-10] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782008 2015-08-07] (Avira Operations GmbH & Co. KG)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-06-17] (Qualcomm®Atheros®)
HKU\S-1-5-21-2564046635-917959988-1083125750-1001\...\Run: [BingSvc] => C:\Users\claire\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0EFD6777-CF59-40C9-9C81-FF67F3F6F72A}: [DhcpNameServer] 192.168.56.1
Tcpip\..\Interfaces\{39B974E0-10FB-43FF-8C78-BCFC0CD2FA37}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-2564046635-917959988-1083125750-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.fr/?gws_rd=ssl
HKU\S-1-5-21-2564046635-917959988-1083125750-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=repair&q=
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {6586d803-df30-46d3-a89a-4136c8571d45} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2564046635-917959988-1083125750-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2564046635-917959988-1083125750-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
IE Session Restore: HKU\S-1-5-21-2564046635-917959988-1083125750-1001 -> est activé.

FireFox:
========
FF ProfilePath: C:\Users\claire\AppData\Roaming\Mozilla\Firefox\Profiles\kf9cxk6r.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-03] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Extension: extensionhidemyasscom - C:\Users\claire\AppData\Roaming\Mozilla\Firefox\Profiles\kf9cxk6r.default\Extensions\extension@hidemyass.com [2015-09-04]
FF Extension: Adblock Plus - C:\Users\claire\AppData\Roaming\Mozilla\Firefox\Profiles\kf9cxk6r.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-08-24]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\prefs.js [2015-10-11] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\cfg [2015-10-11] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-03]
CHR Extension: (Google Docs) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-03]
CHR Extension: (Google Drive) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-03]
CHR Extension: (YouTube) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-03]
CHR Extension: (Adblock Plus) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-10-11]
CHR Extension: (Google Search) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-03]
CHR Extension: (Google Sheets) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-03]
CHR Extension: (Google Docs Offline) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-03]
CHR Extension: (Gmail) - C:\Users\claire\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-03]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [olghjjajidfdflkafeekiojnfmiolccp] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [887128 2015-08-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-08-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-08-07] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1213072 2015-08-07] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [322176 2014-06-17] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [240872 2015-09-10] (Avira Operations GmbH & Co. KG)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe [625632 2015-07-22] (Lenovo)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-06-17] (Atheros) [Fichier non signé]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-07] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [71952 2014-03-31] (ASUS Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137288 2015-08-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-08-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-08-07] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-08-07] (Avira Operations GmbH & Co. KG)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-06-17] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-10-12 12:28 - 2015-10-12 12:29 - 00016666 _____ C:\Users\claire\Desktop\FRST.txt
2015-10-12 12:27 - 2015-10-12 12:28 - 00000000 ____D C:\FRST
2015-10-12 12:25 - 2015-10-12 12:26 - 02195968 _____ (Farbar) C:\Users\claire\Desktop\FRST64.exe
2015-10-12 10:54 - 2015-10-12 10:54 - 00000000 ____D C:\Users\claire\AppData\Local\VirtualStore
2015-10-12 10:48 - 2015-10-12 10:48 - 00448512 _____ (OldTimer Tools) C:\Users\claire\Desktop\TFC.exe
2015-10-12 10:46 - 2015-10-12 10:46 - 00000000 ___RD C:\Users\claire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-10-12 10:45 - 2015-10-12 10:45 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-10-12 10:43 - 2015-10-12 10:28 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-10-12 10:30 - 2015-10-12 10:45 - 00014497 _____ C:\zoek-results.log
2015-10-12 10:28 - 2015-10-12 10:42 - 00000000 ____D C:\zoek_backup
2015-10-12 10:26 - 2015-10-12 10:26 - 01309184 _____ C:\Users\claire\Desktop\zoek.exe
2015-10-12 10:25 - 2015-10-12 10:25 - 00002024 _____ C:\Users\claire\Desktop\ZHPFixReport.txt
2015-10-12 10:22 - 2015-10-12 10:23 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2015-10-12 10:22 - 2015-10-12 10:22 - 00001863 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2015-10-12 10:22 - 2015-10-12 10:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-10-12 10:21 - 2015-10-12 10:22 - 03521472 _____ (Nicolas Coolman ) C:\Users\claire\Downloads\ZHPFix.exe
2015-10-12 08:02 - 2015-10-12 08:02 - 00064627 _____ C:\Users\claire\Desktop\mbam.txt
2015-10-12 07:51 - 2015-10-12 07:51 - 00084395 _____ C:\Users\claire\Desktop\ZHPDiag.txt
2015-10-12 07:45 - 2015-10-12 07:50 - 00000872 _____ C:\Users\claire\Desktop\ZHPDiag.lnk
2015-10-12 07:36 - 2015-10-12 07:37 - 01943040 _____ C:\Users\claire\Desktop\ZHPDiag3.exe
2015-10-11 21:45 - 2015-10-11 21:45 - 00000000 ____D C:\Users\claire\AppData\Roaming\Avira
2015-10-11 21:39 - 2015-08-07 14:58 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-10-11 21:39 - 2015-08-07 14:58 - 00137288 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-10-11 21:39 - 2015-08-07 14:58 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-10-11 21:39 - 2015-08-07 14:58 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-10-11 21:35 - 2015-10-11 21:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-10-11 21:35 - 2015-10-11 21:39 - 00000000 ____D C:\ProgramData\Avira
2015-10-11 21:35 - 2015-10-11 21:39 - 00000000 ____D C:\Program Files (x86)\Avira
2015-10-11 21:35 - 2015-10-11 21:35 - 00001230 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-10-11 21:34 - 2015-10-11 21:34 - 04559688 _____ (Avira Operations GmbH & Co. KG) C:\Users\claire\Downloads\avira_fr_av_561ab975857fa__ws.exe
2015-10-11 21:28 - 2015-10-11 21:28 - 00010854 _____ C:\Users\claire\Desktop\ZHPCleaner.txt
2015-10-11 21:23 - 2015-10-12 10:25 - 00000000 ____D C:\Users\claire\AppData\Roaming\ZHP
2015-10-11 21:23 - 2015-10-11 21:23 - 01863680 _____ C:\Users\claire\Downloads\ZHPCleaner.exe
2015-10-11 21:23 - 2015-10-11 21:23 - 00000882 _____ C:\Users\claire\Desktop\ZHPCleaner.lnk
2015-10-11 21:20 - 2015-10-11 21:20 - 00001142 _____ C:\Users\claire\Desktop\Enregistrement de produit ASUS.lnk
2015-10-11 20:57 - 2015-10-12 08:00 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-11 20:57 - 2015-10-11 20:57 - 00001116 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-10-11 20:57 - 2015-10-11 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-11 20:56 - 2015-10-11 20:57 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-11 20:56 - 2015-10-11 20:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-10-11 20:56 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-10-11 20:56 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-10-11 20:56 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-10-11 20:48 - 2015-10-11 20:48 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\claire\Downloads\mbam-setup-2.1.8.1057.exe
2015-10-11 16:37 - 2015-10-11 20:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-11 12:19 - 2015-10-11 12:20 - 01682432 _____ C:\Users\claire\Downloads\adwcleaner_5.013.exe
2015-10-09 22:45 - 2015-10-11 21:30 - 00000000 ____D C:\ProgramData\Norton
2015-10-09 22:45 - 2015-10-09 22:45 - 00000000 ____D C:\Users\claire\AppData\Local\Lenovo
2015-10-09 22:44 - 2015-10-09 22:44 - 00001218 _____ C:\Users\Public\Desktop\SHAREit.lnk
2015-10-09 22:44 - 2015-10-09 22:44 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2015-10-09 22:44 - 2015-10-09 22:44 - 00000000 ____D C:\Windows\Downloaded Installations
2015-10-09 22:44 - 2015-10-09 22:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-10-09 22:44 - 2015-10-09 22:44 - 00000000 ____D C:\Program Files (x86)\Lenovo
2015-10-09 22:42 - 2015-10-09 22:42 - 00003850 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1444423309
2015-10-09 22:42 - 2015-10-09 22:42 - 00003258 _____ C:\Windows\System32\Tasks\Opera N Sunday
2015-10-09 22:42 - 2015-10-09 22:42 - 00003258 _____ C:\Windows\System32\Tasks\Opera N Saturday
2015-10-09 22:42 - 2015-10-09 22:42 - 00000000 ____D C:\Users\claire\AppData\Roaming\Shortcut
2015-10-09 22:42 - 2015-10-09 22:42 - 00000000 ____D C:\Users\claire\AppData\Roaming\Opera Software
2015-10-09 22:42 - 2015-10-09 22:42 - 00000000 ____D C:\Users\claire\AppData\Local\Opera Software
2015-10-09 22:41 - 2015-10-09 22:41 - 00001149 _____ C:\Users\Public\Desktop\Opera.lnk
2015-10-09 22:41 - 2015-10-09 22:41 - 00001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-10-09 22:40 - 2015-10-09 22:41 - 00000000 ____D C:\Users\claire\AppData\Local\Chromium
2015-10-09 22:32 - 2015-10-12 10:45 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-10-09 22:31 - 2015-10-09 22:42 - 00000000 ____D C:\Program Files (x86)\Opera
2015-10-09 22:31 - 2015-10-09 22:31 - 23052120 _____ C:\Users\claire\Downloads\VideoPlayerSetup.msi
2015-10-06 18:40 - 2015-10-11 22:03 - 00001159 _____ C:\Users\claire\Desktop\Chrome .lnk
2015-10-06 18:40 - 2015-10-11 22:02 - 00001278 _____ C:\Users\claire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome .lnk
2015-10-06 18:40 - 2015-10-09 22:32 - 00000913 _____ C:\Users\claire\Desktop\Firefox .lnk
2015-10-06 18:40 - 2015-10-09 22:32 - 00000819 _____ C:\Users\claire\Desktop\Iexplore .lnk
2015-10-03 20:18 - 2015-10-11 12:22 - 00001015 _____ C:\Users\claire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox .lnk
2015-10-03 20:18 - 2015-10-11 12:22 - 00000849 _____ C:\Users\claire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Iexplore .lnk
2015-10-03 20:18 - 2015-10-06 18:40 - 00001330 _____ C:\Users\claire\AppData\Local\Chrome .lnk
2015-10-03 20:18 - 2015-10-06 18:40 - 00001145 _____ C:\Users\claire\AppData\Local\Firefox .lnk
2015-10-03 20:18 - 2015-10-06 18:40 - 00000979 _____ C:\Users\claire\AppData\Local\Iexplore .lnk
2015-10-03 20:14 - 2015-10-03 23:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-03 20:10 - 2015-10-12 10:44 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-03 20:10 - 2015-10-12 10:21 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-03 20:10 - 2015-10-03 20:16 - 00004068 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-03 20:10 - 2015-10-03 20:16 - 00003832 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-03 20:10 - 2015-10-03 20:14 - 00000000 ____D C:\Users\claire\AppData\Local\Google
2015-10-03 20:10 - 2015-10-03 20:14 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-18 19:40 - 2015-09-18 19:40 - 00000000 ____D C:\Users\claire\Tracing
2015-09-18 19:34 - 2015-09-28 20:27 - 00000000 ____D C:\Users\claire\AppData\Roaming\Skype
2015-09-18 19:34 - 2015-09-18 19:34 - 00000000 ____D C:\Users\claire\AppData\Local\Skype
2015-09-18 19:33 - 2015-10-11 22:01 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-18 19:33 - 2015-09-18 19:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-18 19:32 - 2015-09-18 19:33 - 41950832 _____ (Skype Technologies S.A.) C:\Users\claire\Downloads\SkypeSetupFull.exe
2015-09-13 08:01 - 2015-09-13 08:01 - 00000000 ____D C:\Windows\system32\appraiser
2015-09-12 18:22 - 2015-09-12 18:24 - 00000000 ____D C:\Windows\system32\MRT
2015-09-12 18:22 - 2015-08-26 18:37 - 134753440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-09-12 17:53 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-12 17:53 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-12 17:53 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-12 17:53 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-12 17:51 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-12 17:51 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-12 17:51 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-12 17:51 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-12 17:51 - 2015-07-13 21:10 - 00411455 _____ C:\Windows\system32\ApnDatabase.xml
2015-09-12 17:51 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-09-12 17:51 - 2015-07-03 23:51 - 01380056 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-09-12 17:51 - 2015-07-03 16:00 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-09-12 17:51 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-12 17:51 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-09-12 17:14 - 2015-07-10 21:06 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2015-09-12 17:14 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-09-12 17:14 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-09-12 17:14 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-09-12 17:14 - 2015-06-12 19:03 - 18823680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-09-12 17:14 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-09-12 17:14 - 2015-05-11 20:17 - 01201664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-09-12 17:14 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-09-12 17:14 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-09-12 17:14 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-09-12 17:14 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-09-12 17:14 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-09-12 17:14 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-09-12 17:14 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-09-12 17:14 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-09-12 17:14 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-12 17:14 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-12 17:14 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-09-12 17:14 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-09-12 17:14 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-09-12 17:14 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-09-12 17:14 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-09-12 17:14 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-09-12 17:14 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-09-12 17:14 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-09-12 17:14 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-09-12 17:14 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-09-12 17:14 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-09-12 17:14 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-09-12 17:14 - 2015-03-17 19:26 - 00467776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-09-12 17:14 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-09-12 17:14 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-09-12 17:14 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-09-12 17:14 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-09-12 17:14 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-09-12 17:14 - 2015-03-09 04:02 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-09-12 17:14 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-09-12 17:14 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-09-12 17:14 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-09-12 17:14 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-09-12 17:14 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-09-12 17:14 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-09-12 17:14 - 2015-01-30 05:01 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-09-12 17:14 - 2015-01-30 05:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-09-12 17:14 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-09-12 17:14 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll
2015-09-12 17:14 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-09-12 17:14 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-09-12 17:14 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe
2015-09-12 17:14 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-09-12 17:14 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-09-12 17:14 - 2014-12-19 10:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-09-12 17:14 - 2014-12-19 10:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-09-12 17:14 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-09-12 17:14 - 2014-11-10 04:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2015-09-12 17:14 - 2014-11-10 03:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2015-09-12 17:14 - 2014-11-04 21:25 - 00059712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2015-09-12 17:14 - 2014-11-04 21:25 - 00051008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-09-12 17:14 - 2014-11-04 08:55 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-09-12 17:14 - 2014-11-04 08:54 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-09-12 17:14 - 2014-11-04 08:54 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-09-12 17:14 - 2014-11-04 08:54 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-09-12 17:14 - 2014-10-31 01:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-09-12 17:14 - 2014-10-31 01:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-09-12 17:13 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-09-12 17:13 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-09-12 17:13 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-09-12 17:13 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-09-12 17:13 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-09-12 17:13 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-09-12 17:13 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-09-12 17:13 - 2015-07-14 23:59 - 01113944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-09-12 17:13 - 2015-07-14 23:59 - 00487256 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-09-12 17:13 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-09-12 17:13 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-09-12 17:13 - 2015-06-11 22:12 - 02476376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-09-12 17:13 - 2015-06-11 22:12 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-09-12 17:13 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-09-12 17:13 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-09-12 17:13 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-12 17:13 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-09-12 17:13 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-09-12 17:13 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-09-12 17:13 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls
2015-09-12 17:13 - 2015-04-28 15:13 - 00513480 _____ C:\Windows\system32\locale.nls
2015-09-12 17:13 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-09-12 17:13 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-09-12 17:13 - 2015-04-16 08:17 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-09-12 17:13 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-09-12 17:13 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-09-12 17:13 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-09-12 17:13 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-09-12 17:13 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-09-12 17:13 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-09-12 17:13 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-09-12 17:13 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-09-12 17:13 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-09-12 17:13 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-09-12 17:13 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-09-12 17:13 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-09-12 17:13 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-09-12 17:13 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-09-12 17:13 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-09-12 17:13 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-09-12 17:13 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-09-12 17:13 - 2015-03-13 06:03 - 00239424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-09-12 17:13 - 2015-03-13 06:03 - 00154432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-09-12 17:13 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-09-12 17:13 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-09-12 17:13 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-09-12 17:13 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-09-12 17:13 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-09-12 17:13 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-09-12 17:13 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-09-12 17:13 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2015-09-12 17:13 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-09-12 17:13 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-09-12 17:13 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2015-09-12 17:13 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2015-09-12 17:13 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2015-09-12 17:13 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2015-09-12 17:13 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll
2015-09-12 17:13 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll
2015-09-12 17:13 - 2015-01-19 20:42 - 01487976 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-09-12 17:13 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe
2015-09-12 17:12 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-10-12 12:26 - 2015-08-24 22:04 - 00003464 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2015-10-12 12:26 - 2015-08-24 21:49 - 00003474 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2015-10-12 12:24 - 2015-01-21 05:06 - 01712665 _____ C:\Windows\WindowsUpdate.log
2015-10-12 12:22 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-10-12 10:59 - 2015-08-20 23:00 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2564046635-917959988-1083125750-1001
2015-10-12 10:45 - 2015-08-20 22:57 - 00000093 _____ C:\Users\claire\AppData\Roaming\sp_data.sys
2015-10-12 10:44 - 2014-03-18 10:16 - 01865364 _____ C:\Windows\PFRO.log
2015-10-12 10:44 - 2013-08-22 16:46 - 00027482 _____ C:\Windows\setupact.log
2015-10-12 10:44 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-12 10:41 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-10-12 10:41 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-10-12 07:39 - 2015-08-24 22:17 - 00000000 ____D C:\AdwCleaner
2015-10-12 07:34 - 2015-08-24 20:56 - 00003944 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{1F60FF99-3ED6-4087-9BAA-29EC1503AF1B}
2015-10-12 00:21 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-10-12 00:20 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-10-12 00:15 - 2014-10-29 14:01 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-10-12 00:15 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2015-10-12 00:15 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-10-12 00:15 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-10-12 00:15 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-10-12 00:15 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-10-12 00:15 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\system32\winrm
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\IME
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-10-12 00:15 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-10-12 00:15 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-10-12 00:15 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-10-12 00:15 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe
2015-10-12 00:15 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing
2015-10-12 00:14 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\system32\WCN
2015-10-12 00:14 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\system32\slmgr
2015-10-12 00:14 - 2014-03-18 16:58 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-10-12 00:14 - 2013-08-22 17:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-10-12 00:14 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-10-12 00:14 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\MUI
2015-10-12 00:14 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Com
2015-10-12 00:14 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2015-10-12 00:14 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-10-12 00:14 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Dism
2015-10-11 21:22 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\ELAMBKUP
2015-10-11 21:22 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-10-11 20:42 - 2015-01-21 05:17 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2015-10-11 12:24 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-10-10 22:36 - 2015-08-31 19:36 - 00000000 ____D C:\Users\claire\AppData\Local\CrashDumps
2015-10-09 22:51 - 2014-10-29 14:12 - 00819776 _____ C:\Windows\system32\perfh00C.dat
2015-10-09 22:51 - 2014-10-29 14:12 - 00162356 _____ C:\Windows\system32\perfc00C.dat
2015-10-09 22:51 - 2014-03-18 17:26 - 02773430 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-09 22:20 - 2015-08-24 23:31 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-10-09 22:19 - 2013-08-22 16:44 - 00362680 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-09 22:17 - 2015-08-20 22:52 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-10-09 22:17 - 2015-08-20 22:52 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-06 19:05 - 2015-08-27 20:18 - 00388608 ___SH C:\Users\claire\Downloads\Thumbs.db
2015-10-03 20:18 - 2015-08-24 23:55 - 00000951 _____ C:\Users\claire\Desktop\adsl TV.lnk
2015-10-03 20:18 - 2015-08-24 22:39 - 00001797 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-10-03 20:18 - 2015-08-24 21:07 - 00001110 _____ C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-10-03 20:18 - 2015-08-20 22:54 - 00000551 _____ C:\Users\claire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-10-03 20:18 - 2015-08-20 22:54 - 00000549 _____ C:\Users\claire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-10-03 20:18 - 2014-03-18 17:27 - 00000551 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-10-03 20:18 - 2014-03-18 17:27 - 00000551 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-10-03 20:18 - 2014-03-18 17:27 - 00000549 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-10-03 20:18 - 2014-03-18 17:27 - 00000549 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-10-03 14:46 - 2015-08-24 20:51 - 00000000 ____D C:\Users\claire\Downloads\cheval
2015-10-03 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2015-10-03 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\en-GB
2015-09-30 14:09 - 2015-09-10 18:22 - 00038912 ___SH C:\Users\claire\Desktop\Thumbs.db
2015-09-27 12:29 - 2015-09-05 10:19 - 00000000 ____D C:\Users\claire\Desktop\a imprimer
2015-09-27 09:27 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-09-18 20:43 - 2014-10-29 08:25 - 00000000 ____D C:\ProgramData\Skype
2015-09-18 19:40 - 2015-08-20 22:54 - 00000000 ____D C:\Users\claire
2015-09-15 03:18 - 2015-09-04 19:57 - 00812008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-09-15 03:18 - 2015-09-04 19:57 - 00178152 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-09-14 20:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat
2015-09-13 08:15 - 2015-08-20 22:55 - 00000000 ____D C:\Users\claire\AppData\Local\Packages
2015-09-13 08:01 - 2015-09-04 19:48 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-09-13 08:01 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-09-13 08:01 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-13 08:01 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-13 08:01 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories

==================== Fichiers à la racine de certains dossiers =======

2015-08-20 22:57 - 2015-10-12 10:45 - 0000093 _____ () C:\Users\claire\AppData\Roaming\sp_data.sys
2015-10-03 20:18 - 2015-10-06 18:40 - 0001330 _____ () C:\Users\claire\AppData\Local\Chrome .lnk
2015-10-03 20:18 - 2015-10-06 18:40 - 0001145 _____ () C:\Users\claire\AppData\Local\Firefox .lnk
2015-10-03 20:18 - 2015-10-06 18:40 - 0000979 _____ () C:\Users\claire\AppData\Local\Iexplore .lnk
2015-01-21 05:10 - 2015-01-21 05:10 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-10-29 08:25 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2014-10-29 08:25 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe

Certains fichiers dans TEMP:
====================
C:\Users\claire\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-10-11 23:24

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité