Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:31-10-2015
Exécuté par Gilbert (administrateur) sur PC-DE-GILBERT (03-11-2015 21:20:01)
Exécuté depuis C:\Users\Gilsurf\Desktop
Profils chargés: Gilbert & Gilsurf (Profils disponibles: Gilbert & Gilsurf)
Platform: Microsoft Windows 10 Professionnel (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell PowerSave Solution\ePowerSvc.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(IObit) C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
() C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\capiws.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 3\creator-ws.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
() C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(VIA) C:\Program Files\VIA\VIAAUD\viaaud.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Nero AG) C:\Program Files\Nero\Nero BackItUp\BackItUp.exe
(www.dennisbabkin.com) E:\Downloads\1324305625-download\WakeupOnStandBy\wosb.exe
() C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe
(Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13821.0_x86__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x86__8wekyb3d8bbwe\Calculator.exe
(Mozilla Corporation) E:\Users\Gilsurf\Programmes portables\FirefoxPortable\App\Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [VIAAUD] => C:\Program Files\VIA\VIAAUD\viaaud.exe [356352 2009-04-01] (VIA)
HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2089056 2015-09-16] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [TrueImageMonitor.exe] => C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [6421200 2014-03-06] (Acronis)
HKLM\...\Run: [AcronisTibMounterMonitor] => C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105544 2013-01-10] (Acronis)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [412480 2013-02-15] (Acronis)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3779496 2015-10-19] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Nero BackItUp] => C:\Program Files\Nero\Nero BackItUp\BackItUp.exe [1126392 2015-07-07] (Nero AG)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2015-06-16] (Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3519144 2015-08-11] (Synaptics Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-10-16] (Apple Inc.)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2015-10-05] (Malwarebytes)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-09-28] (Glarysoft Ltd)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6495144 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [ultracopier] => C:\Program Files\Supercopier\supercopier.exe [178688 2014-02-19] (ultracopier.first-world.info)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\RunOnce: [iCloud] => C:\Program Files\Common Files\Apple\Internet Services\iCloud.exe [60688 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\RunOnce: [Report] => \AdwCleaner\AdwCleaner[C3].txt
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [135168 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [Connexion SFR 9props.exe] => C:\Program Files\SFR\Kit\9props.exe [959808 2009-10-15] (SFR)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [RemoTerm.exe] => C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe [226576 2010-06-10] (PCTV Systems S.à r.l.)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6495144 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [WOSB] => E:\Downloads\1324305625-download\WakeupOnStandBy\wosb.exe [1272320 2011-03-21] (www.dennisbabkin.com)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Fliqlo.scr [680624 2015-10-30] (ScreenTime Media)
ShellExecuteHooks: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\System32\ezUPBHook.dll [49152 2009-11-16] (EasyBits Software Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PrivateTunnel.lnk [2013-07-11]
ShortcutTarget: PrivateTunnel.lnk -> C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe ()
Startup: C:\Users\Gilsurf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2015-06-23]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
Startup: C:\Users\Gilsurf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wkcalrem.LNK [2011-01-11]
ShortcutTarget: wkcalrem.LNK -> C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe (Microsoft® Corporation)
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04a07ae6-0489-48b6-ac82-ae879ec252cd}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Software\Microsoft\Internet Explorer\Main,Default_search_url = hxxp://www.google.com/ie
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Software\Microsoft\Internet Explorer\Main,Search bar = hxxp://www.google.com/ie
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxps://www.google.com/
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = hxxps://www.google.com/
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxps://www.google.com/
SearchScopes: HKLM -> URL ${SEARCH_URL}{searchTerms}
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> DefaultScope {0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} URL =
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> URL hxxp://searchab.com/?aff=7&uid=d7ac5b2a-7754-11e2-b5a2-001d72fedc0d&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> {0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} URL =
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> {6F65E2DB-97E4-492F-AAE2-E7414F6EE670} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: PDF Architect 3 Helper -> {06E08260-0695-4EC1-A74B-1310D8899D93} -> C:\Program Files\PDF Architect 3\creator-ie-helper.dll [2015-04-24] (pdfforge GmbH)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11] (Adblock)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
Toolbar: HKLM - PDF Architect 3 Toolbar - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - C:\Program Files\PDF Architect 3\creator-ie-plugin.dll [2015-04-24] (pdfforge GmbH)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll [2010-09-14] (Belarc, Inc.)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-26] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-08-13] (Google, Inc.)
FF Plugin: @IObit.com/np_Asc_Plugin -> C:\Program Files\IObit\Surfing Protection\BrowerProtect\np_Asc_plugin.dll [2013-07-17] (IObit)
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-02-09] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BrowserPlugin\npBrowserPlugin.dll [2015-08-28] (Nero AG)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=0.8.6b -> C:\Program Files\VideoLAN\VLC-firefox\VLC\npvlc.dll [2007-04-18] (VideoLAN Team)
FF Plugin: @videolan.org/vlc,version=1.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2011-08-09] (the VideoLAN Team)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin: nuance.com/DragonRIAPlugin -> C:\PROGRA~1\Nuance\NaturallySpeaking12\Program\npDgnRia.dll [2013-02-11] (Nuance Communications Inc.)
FF Plugin: PDF Architect 2 -> C:\Program Files\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH)
FF Plugin: PDF Architect 3 -> C:\Program Files\PDF Architect 3\np-previewer.dll [2015-04-24] (pdfforge GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-12-18] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-11-09] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll [2011-12-09] (Nullsoft, Inc.)
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14] [non signé]
FF HKLM\...\Firefox\Extensions: [jid0-lmZNVK7a82O8cufhdfB9dUDfA2w@jetpack] - C:\Program Files\Nuance\NaturallySpeaking12\Program\ffShim.xpi
FF Extension: Dragon NaturallySpeaking Rich Internet Application Support - C:\Program Files\Nuance\NaturallySpeaking12\Program\ffShim.xpi [2013-02-11] [non signé]
FF HKLM\...\Firefox\Extensions: [pdf_architect_3_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension
FF Extension: PDF Architect 3 Creator - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension [2015-09-17] [non signé]
Chrome:
=======
CHR Profile: C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pas de nom) - C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\1.0.1.6_0 [2012-11-14]
CHR HKLM\...\Chrome\Extension: [mikhcaiakabeeokmenglcdebplfdjicn] - C:\Program Files\Nuance\NaturallySpeaking12\Program\chromeShim.crx [2013-02-11]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [821048 2013-06-17] (ABBYY InfoPoisk LLC)
R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [830376 2013-02-15] (Acronis)
S4 AdobeActiveFileMonitor6.0; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] ()
R2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3808248 2015-02-05] (Acronis)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3642280 2015-10-19] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [335656 2015-10-19] (AVG Technologies CZ, s.r.o.)
S2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-07] (CobianSoft, Luis Cobian) [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1883320 2015-10-07] (Microsoft Corporation)
S4 DragonSvc; C:\Program Files\Common Files\Nuance\dgnsvc.exe [311184 2013-02-11] (Nuance Communications, Inc.)
R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [36904 2015-08-01] (CHENGDU YIWO Tech Development Co., Ltd)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell PowerSave Solution\ePowerSvc.exe [703008 2009-04-07] (Acer Incorporated)
S2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [Fichier non signé]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2009-11-16] (Macrovision Europe Ltd.) [Fichier non signé]
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242880 2015-07-02] (Foxit Software Inc.)
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-04-24] (Freemake) [Fichier non signé]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [919184 2015-05-08] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [882464 2015-07-17] (IObit)
R2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [785904 2015-07-07] (Nero AG)
S2 NeroBackItUpBackgroundService; C:\Program Files\Nero\Nero BackItUp\NBService.exe [279544 2015-07-07] (Nero AG)
S4 NTI IScheduleSvc; C:\Program Files\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [44800 2009-03-10] (NewTech Infosystems, Inc.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-08] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20698768 2015-05-08] (NVIDIA Corporation)
R2 OpenVPNAccessClient; C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\capiws.exe [24064 2012-10-12] () [Fichier non signé]
S3 PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
S3 PDF Architect 3; C:\Program Files\PDF Architect 3\ws.exe [2244312 2015-04-24] (pdfforge GmbH)
S3 PDF Architect 3 CrashHandler; C:\Program Files\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-24] (pdfforge GmbH)
R2 PDF Architect 3 Creator; C:\Program Files\PDF Architect 3\creator-ws.exe [740568 2015-04-24] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7093272 2013-03-26] (Acronis)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [208552 2015-08-11] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19104 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [252336 2015-10-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [222640 2015-08-19] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [31664 2015-07-23] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [189872 2015-08-04] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [236464 2015-08-04] (AVG Technologies CZ, s.r.o.)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2010-04-17] (Phoenix Technologies) [Fichier non signé]
R1 ElRawDisk; C:\WINDOWS\system32\drivers\ElRawDsk.sys [26248 2014-01-10] (EldoS Corporation)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [15968 2014-11-18] ()
S3 EsgScanner; C:\WINDOWS\System32\DRIVERS\EsgScanner.sys [19984 2015-10-15] ()
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [51752 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
S3 EUBAKUP0; C:\WINDOWS\system32\drivers\EUBAKUP0.sys [51752 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [41512 2014-12-15] ()
R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [15912 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [189992 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUFS; C:\WINDOWS\System32\drivers\eufs.sys [21896 2009-12-02] (CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10208 2014-11-18] ()
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [17472 2015-05-21] (Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2015-02-04] (REALiX(tm))
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
S4 IObitUnlocker; C:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [27160 2015-03-16] (IObit)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2015-11-03] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7523840 2012-01-23] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-05-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [32912 2014-11-22] (NVIDIA Corporation)
R2 PDFsFilter; C:\WINDOWS\System32\DRIVERS\PDFsFilter.sys [68464 2014-01-10] (Raxco Software, Inc.)
R1 RawDisk3; C:\WINDOWS\system32\drivers\rawdsk3.sys [28256 2014-10-09] (EldoS Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-08-11] (Synaptics Incorporated)
S3 tdrpman; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [888640 2015-02-05] (Acronis International GmbH)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [736192 2015-02-05] (Acronis International GmbH)
S0 tib_mounter; C:\WINDOWS\System32\DRIVERS\tib_mounter.sys [130488 2015-02-05] (Acronis)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [985088 2009-04-01] (VIA Technologies, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
U3 idsvc; pas de ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-03 21:20 - 2015-11-03 21:21 - 00030748 _____ C:\Users\Gilsurf\Desktop\FRST.txt
2015-11-03 21:17 - 2015-11-03 21:17 - 01701888 _____ (Farbar) C:\Users\Gilsurf\Desktop\FRST.exe
2015-11-03 21:17 - 2015-11-03 21:17 - 00000000 ____D C:\Users\Gilsurf\Desktop\FRST-OlderVersion
2015-11-03 21:14 - 2015-11-03 21:14 - 00069145 _____ C:\Users\Gilsurf\Desktop\1mO_yTNk.htm
2015-11-03 20:44 - 2015-11-03 20:44 - 00002778 _____ C:\Users\Gilbert\Desktop\ZHPCleaner.txt
2015-11-03 20:39 - 2015-11-03 20:39 - 00016148 _____ C:\WINDOWS\system32\PC-DE-GILBERT_Gilsurf_HistoryPrediction.bin
2015-11-03 20:21 - 2015-11-03 20:21 - 00000928 _____ C:\Users\Gilbert\Desktop\ZHPCleaner.lnk
2015-11-03 19:28 - 2015-11-03 21:19 - 00006487 _____ C:\Users\Gilsurf\ovpntray.log
2015-11-03 14:43 - 2015-11-03 14:43 - 00000298 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Gilsurf.job
2015-11-02 20:48 - 2015-11-02 20:48 - 00001151 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-02 20:48 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-02 20:48 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-11-02 20:48 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-02 18:06 - 2015-11-02 18:06 - 00035064 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-11-02 18:04 - 2015-11-02 18:05 - 18969672 _____ C:\Users\Gilsurf\Downloads\RogueKiller (1).exe
2015-11-02 08:08 - 2015-11-03 14:55 - 00000000 ____D C:\Users\Gilbert\AppData\Local\AvgSetupLog
2015-11-02 08:06 - 2015-11-02 08:08 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\AvgSetupLog
2015-11-01 13:18 - 2015-11-01 13:18 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-31 22:53 - 2015-10-31 22:53 - 00001449 _____ C:\Users\Public\Desktop\EaseUS Partition Master 10.8.lnk
2015-10-31 22:53 - 2015-10-31 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.8
2015-10-31 22:53 - 2015-09-21 00:19 - 02658952 _____ C:\WINDOWS\system32\BootMan.exe
2015-10-31 22:53 - 2014-11-18 14:46 - 00021088 _____ C:\WINDOWS\system32\EuEpmGdi.dll
2015-10-31 22:53 - 2014-11-18 14:39 - 00015968 _____ C:\WINDOWS\system32\epmntdrv.sys
2015-10-31 22:53 - 2014-11-18 14:39 - 00010208 _____ C:\WINDOWS\system32\EuGdiDrv.sys
2015-10-31 22:53 - 2014-11-18 14:38 - 00088160 _____ C:\WINDOWS\system32\setupempdrv03.exe
2015-10-30 21:37 - 2015-10-31 23:44 - 00000000 ____D C:\ProgramData\iolo
2015-10-30 21:37 - 2015-10-30 21:37 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\iolo
2015-10-30 21:10 - 2015-10-30 21:10 - 00000000 ____D C:\Users\Gilsurf\Downloads\zedtv
2015-10-30 21:09 - 2015-10-30 21:09 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Philipp Winterberg
2015-10-30 20:43 - 2015-10-30 20:43 - 00680624 _____ (ScreenTime Media) C:\WINDOWS\system32\Fliqlo.scr
2015-10-30 19:16 - 2015-10-30 19:16 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-10-30 06:45 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 06:45 - 2015-10-21 06:57 - 00558944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 06:45 - 2015-10-21 06:55 - 00337760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 06:45 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 06:45 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-10-30 06:45 - 2015-10-21 06:15 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 06:45 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 06:45 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 06:45 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 06:45 - 2015-10-21 06:07 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 06:45 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-30 06:45 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-10-30 06:45 - 2015-10-21 06:03 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-30 06:45 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 06:45 - 2015-10-21 06:00 - 01917952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 06:45 - 2015-10-21 06:00 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-30 06:45 - 2015-10-21 05:59 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-10-30 06:45 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 06:45 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 06:45 - 2015-10-21 05:56 - 01499648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 06:45 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 06:45 - 2015-10-21 05:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-10-29 23:04 - 2015-10-29 23:09 - 133633224 _____ (PortableApps.com) C:\Users\Gilsurf\Downloads\LibreOfficePortable_5.0.2_MultilingualStandard.paf.exe
2015-10-28 21:32 - 2015-10-28 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-10-26 15:32 - 2015-10-26 15:33 - 41910592 _____ (Amazon.com) C:\Users\Gilsurf\Downloads\KindleForPC-installer-1.12.41022.exe
2015-10-26 14:44 - 2015-10-26 14:44 - 00016148 _____ C:\WINDOWS\system32\PC-DE-GILBERT_Gilbert_HistoryPrediction.bin
2015-10-26 14:32 - 2015-10-26 14:32 - 00000000 ____D C:\Users\Gilbert\AppData\Local\NetworkTiles
2015-10-26 14:29 - 2015-10-26 14:33 - 00005571 _____ C:\Users\Gilbert\ovpntray.log
2015-10-25 23:15 - 2015-10-25 23:15 - 00000000 ____D C:\Users\Gilbert\AppData\Local\MicrosoftEdge
2015-10-25 23:14 - 2015-10-25 23:14 - 00002437 _____ C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-25 23:05 - 2015-10-25 23:05 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Publishers
2015-10-25 23:03 - 2015-10-25 23:05 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Comms
2015-10-25 22:59 - 2015-10-25 22:59 - 00000000 ____D C:\Users\Gilbert\AppData\Local\TileDataLayer
2015-10-25 22:58 - 2015-10-25 22:58 - 00000916 __RSH C:\Users\Gilbert\ntuser.pol
2015-10-25 14:29 - 2015-10-25 14:29 - 00002156 _____ C:\Users\Public\Desktop\EaseUS Todo Backup Free 8.8 .lnk
2015-10-25 14:29 - 2014-12-15 00:58 - 00189992 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EuFdDisk.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00051752 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUBAKUP0.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00051752 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eubakup.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00041512 _____ C:\WINDOWS\system32\Drivers\EUBKMON.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00015912 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eudskacs.sys
2015-10-25 14:28 - 2015-10-25 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup Free 8.8
2015-10-25 14:23 - 2014-12-15 01:03 - 00019496 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\fbnative.exe
2015-10-25 14:18 - 2015-10-25 14:20 - 120289656 _____ (CHENGDU YIWO Tech Development Co., Ltd ) C:\Users\Gilsurf\Downloads\tb_free.exe
2015-10-23 12:05 - 2015-10-23 12:05 - 00001024 _____ C:\Users\Public\Desktop\AVG 2015.lnk
2015-10-22 09:21 - 2015-10-22 09:21 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-22 09:01 - 2015-10-22 09:01 - 00001824 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-10-22 09:01 - 2015-10-22 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-22 08:47 - 2015-10-22 08:47 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Sun
2015-10-22 08:47 - 2015-10-22 08:47 - 00000000 ____D C:\Users\Gilsurf\.oracle_jre_usage
2015-10-22 07:57 - 2015-10-22 07:57 - 00000000 ____D C:\Program Files\Common Files\Java
2015-10-22 07:55 - 2015-10-22 07:55 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Sun
2015-10-22 07:55 - 2015-10-22 07:55 - 00000000 ____D C:\Users\Gilbert\.oracle_jre_usage
2015-10-22 07:50 - 2015-10-22 07:50 - 00000000 ____D C:\Users\Gilbert\AppData\LocalLow\Oracle
2015-10-22 07:41 - 2015-07-10 09:25 - 00395268 __RSH C:\bootmgr
2015-10-22 07:41 - 2015-07-10 09:25 - 00000001 ___SH C:\BOOTNXT
2015-10-20 05:36 - 2015-10-16 04:10 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-20 05:36 - 2015-10-16 04:10 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-19 12:38 - 2015-10-19 12:38 - 00252336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdriverx.sys
2015-10-18 23:26 - 2015-10-18 23:27 - 10535981 _____ (Oleg N. Scherbakov) C:\Users\Gilsurf\Downloads\captvty-2.3.9-autoextract.exe
2015-10-16 16:36 - 2015-10-16 16:37 - 18832456 _____ C:\Users\Gilsurf\Downloads\RogueKiller.exe
2015-10-15 14:50 - 2015-10-15 14:50 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Enigma Software Group
2015-10-15 14:49 - 2015-10-15 14:49 - 00000000 ____D C:\sh4ldr
2015-10-15 14:47 - 2015-10-15 14:47 - 00019984 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2015-10-15 14:44 - 2015-10-15 14:46 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Gilsurf\Downloads\SpyHunter-Installer.exe
2015-10-14 07:00 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-14 07:00 - 2015-10-01 04:36 - 06265184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-14 07:00 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-14 07:00 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-14 06:59 - 2015-10-10 07:44 - 00069312 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-14 06:59 - 2015-10-01 04:36 - 01034032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-14 06:59 - 2015-10-01 04:36 - 00907992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-14 06:59 - 2015-10-01 04:36 - 00869232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-14 06:59 - 2015-10-01 04:36 - 00754080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-14 06:59 - 2015-10-01 03:40 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-14 06:59 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-14 06:59 - 2015-09-25 04:31 - 00368992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-14 06:59 - 2015-09-25 04:21 - 00851296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-14 06:59 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-14 06:59 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-14 06:59 - 2015-09-25 03:43 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-14 06:59 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-14 06:59 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-14 06:59 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 06:59 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-14 06:59 - 2015-09-25 03:35 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-14 06:59 - 2015-09-25 03:34 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-14 06:59 - 2015-09-25 03:34 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-14 06:59 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-14 06:59 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-14 06:59 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-07 20:47 - 2015-10-07 20:47 - 00001047 _____ C:\Users\Public\Desktop\DriversCloud.com - Démarrer la détection.lnk
2015-10-07 20:47 - 2015-10-07 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com
2015-10-07 20:47 - 2015-10-07 20:47 - 00000000 ____D C:\ProgramData\DriversCloud.com
2015-10-07 20:47 - 2015-10-07 20:47 - 00000000 ____D C:\Program Files\DriversCloud.com
2015-10-07 20:44 - 2015-10-07 20:44 - 05186272 _____ C:\Users\Gilsurf\Downloads\DriversCloud_8_0_2_1.exe
2015-10-07 20:37 - 2015-10-07 20:37 - 06240370 _____ C:\Users\Gilsurf\Downloads\DriversCloud_8_0_2_1.zip
2015-10-05 13:52 - 2015-11-03 20:24 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-05 13:37 - 2015-10-05 13:37 - 00002975 _____ C:\Users\Public\Desktop\Nero 2016.lnk
2015-10-05 13:35 - 2015-10-05 13:35 - 00002182 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-10-05 13:35 - 2015-10-05 13:35 - 00000000 ____D C:\Users\Public\Foxit Software
2015-10-05 13:35 - 2015-10-05 13:35 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Foxit Software
2015-10-05 13:34 - 2015-10-05 13:34 - 00002130 _____ C:\Users\Public\Desktop\Nero MediaHome.lnk
2015-10-05 13:31 - 2015-10-05 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016
2015-10-05 13:30 - 2015-10-30 19:22 - 00002185 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2015-10-05 13:30 - 2015-10-05 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-10-05 13:25 - 2015-10-05 13:25 - 00001012 _____ C:\Users\Public\Desktop\Deluge.lnk
2015-10-05 13:25 - 2015-10-05 13:25 - 00000893 _____ C:\Users\Gilbert\Desktop\Format Factory.lnk
2015-10-05 13:25 - 2015-10-05 13:25 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-10-05 13:17 - 2015-10-05 13:17 - 00001174 _____ C:\Users\Gilbert\Desktop\Sweet Home 3D.lnk
2015-10-05 12:48 - 2015-10-05 12:48 - 00001283 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-10-05 12:47 - 2015-11-03 18:29 - 00000262 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Gilbert.job
2015-10-05 12:47 - 2015-11-01 23:47 - 00002218 _____ C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-10-04 23:33 - 2015-10-07 11:02 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-03 21:20 - 2015-06-10 20:08 - 00000000 ____D C:\FRST
2015-11-03 21:04 - 2015-09-15 20:59 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-03 20:57 - 2015-07-10 06:09 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-03 20:44 - 2015-04-06 16:44 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\ZHP
2015-11-03 20:39 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-11-03 20:25 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-03 20:08 - 2010-06-12 10:02 - 00000000 _____ C:\Users\Gilsurf\AppData\LocalLow\prvlcl.dat
2015-11-03 19:29 - 2013-01-30 02:31 - 00000000 ____D C:\ProgramData\MFAData
2015-11-03 19:28 - 2015-08-11 11:27 - 00000000 ____D C:\Users\Gilsurf
2015-11-03 19:26 - 2015-09-15 20:59 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-03 19:24 - 2015-07-10 10:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-03 19:22 - 2015-07-10 07:59 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2015-11-03 18:37 - 2014-04-15 12:16 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-03 18:29 - 2015-02-07 14:49 - 00000268 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Système.job
2015-11-03 15:21 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-03 14:59 - 2013-01-26 20:46 - 00000000 ____D C:\ProgramData\AVG
2015-11-03 14:59 - 2009-11-12 16:41 - 00000000 ____D C:\Program Files\AVG
2015-11-03 13:58 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-02 20:48 - 2014-04-15 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-02 20:48 - 2014-04-15 12:16 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-11-02 14:51 - 2014-04-21 13:02 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\CrashDumps
2015-11-02 11:20 - 2013-11-14 21:12 - 00000000 ____D C:\Users\Gilsurf\Desktop\Captvty
2015-11-02 08:15 - 2014-12-04 13:19 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\Avg
2015-11-02 08:15 - 2013-01-26 20:53 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\AVG
2015-11-02 08:10 - 2014-11-10 12:58 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Avg
2015-11-02 08:10 - 2011-10-08 15:25 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\AVG
2015-11-01 23:48 - 2010-12-17 19:08 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\vlc
2015-11-01 17:40 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\rescache
2015-11-01 01:01 - 2015-07-06 16:32 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-10-31 23:04 - 2010-05-11 22:31 - 00002216 ____H C:\WINDOWS\EPMBatch.ept
2015-10-31 23:02 - 2015-08-03 17:53 - 00000000 ____D C:\Program Files\EaseUS
2015-10-30 22:01 - 2015-07-10 07:59 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-30 20:43 - 2010-07-15 22:11 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Screentime
2015-10-30 20:43 - 2010-07-15 22:11 - 00000000 ____D C:\ProgramData\Screentime
2015-10-30 20:43 - 2010-07-15 22:10 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\Screentime
2015-10-30 19:20 - 2010-05-18 20:16 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
2015-10-30 17:56 - 2015-08-20 08:06 - 00000000 ____D C:\WINDOWS\Minidump
2015-10-30 14:55 - 2015-05-15 23:58 - 00000000 ____D C:\AdwCleaner
2015-10-30 13:48 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\fr-FR
2015-10-30 13:48 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-30 06:54 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-29 23:10 - 2015-09-18 11:31 - 00000000 ____D C:\Programmes Portables
2015-10-29 16:44 - 2015-08-11 11:57 - 01839260 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-28 22:09 - 2010-08-17 15:30 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Apple Computer
2015-10-28 22:09 - 2010-08-17 15:30 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Apple Computer
2015-10-28 21:34 - 2014-04-16 14:26 - 00000000 ____D C:\Users\Gilbert\AppData\Local\CrashDumps
2015-10-28 19:02 - 2015-02-09 22:36 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-27 06:56 - 2014-08-17 12:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-27 06:39 - 2014-08-17 12:29 - 141105520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-26 15:25 - 2014-10-17 14:29 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Adobe
2015-10-26 15:25 - 2009-11-20 14:19 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\Adobe
2015-10-26 14:38 - 2009-11-12 17:18 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Mozilla
2015-10-26 14:38 - 2009-11-12 17:18 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Mozilla
2015-10-26 14:29 - 2015-08-11 11:27 - 00000000 ____D C:\Users\Gilbert
2015-10-25 23:16 - 2009-07-14 03:04 - 00000559 _____ C:\WINDOWS\win.ini
2015-10-25 23:14 - 2014-07-15 13:46 - 00000000 ___RD C:\Users\Gilbert\OneDrive
2015-10-25 23:13 - 2014-08-26 16:47 - 00000000 ____D C:\Program Files\Glary Utilities 5
2015-10-25 22:59 - 2015-08-11 11:27 - 00000000 ___RD C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-23 12:05 - 2014-03-31 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-10-22 09:23 - 2013-10-30 14:22 - 00000000 ____D C:\ProgramData\Oracle
2015-10-22 09:22 - 2015-07-15 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-22 09:20 - 2009-11-14 13:07 - 00000000 ____D C:\Program Files\Java
2015-10-22 09:01 - 2012-06-21 23:00 - 00000000 ____D C:\Program Files\iTunes
2015-10-22 08:58 - 2012-09-24 13:57 - 00000000 ____D C:\Program Files\iPod
2015-10-22 08:58 - 2009-12-06 00:18 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-22 08:33 - 2011-08-27 13:31 - 00000000 ____D C:\Program Files\Yahoo!
2015-10-16 17:09 - 2014-06-03 12:45 - 00000000 ____D C:\ProgramData\RogueKiller
2015-10-16 15:53 - 2011-08-27 13:31 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Yahoo!
2015-10-16 15:53 - 2011-08-27 13:31 - 00000000 ____D C:\Users\Gilbert\AppData\LocalLow\Yahoo!
2015-10-16 15:53 - 2010-02-05 23:57 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Thunderbird
2015-10-16 00:33 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-15 16:17 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-10-15 16:17 - 2010-12-18 12:32 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Foxit Software
2015-10-15 12:30 - 2009-11-14 12:19 - 00000000 ___HD C:\BJPrinter
2015-10-10 08:50 - 2012-06-24 17:41 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-09 22:29 - 2011-08-12 20:42 - 00007602 _____ C:\Users\Gilbert\AppData\Local\Resmon.ResmonCfg
2015-10-08 13:58 - 2015-08-11 12:44 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\MicrosoftEdge
2015-10-07 20:47 - 2010-04-16 23:19 - 00000000 ____D C:\ProgramData\ma-config.com
2015-10-07 20:47 - 2010-04-16 23:19 - 00000000 ____D C:\Program Files\ma-config.com
2015-10-05 13:39 - 2009-11-16 13:28 - 00000000 ____D C:\Program Files\Nero
2015-10-05 13:38 - 2010-07-03 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-10-05 13:35 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Public
2015-10-05 13:34 - 2010-12-16 00:12 - 00000000 ____D C:\Program Files\Foxit Software
2015-10-05 13:34 - 2009-11-16 13:28 - 00000000 ____D C:\Program Files\Common Files\Nero
2015-10-05 13:30 - 2012-05-08 20:17 - 00000000 ____D C:\Program Files\IObit
2015-10-05 13:25 - 2010-01-29 00:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluge
2015-10-05 13:24 - 2010-01-29 00:03 - 00000000 ____D C:\Program Files\Deluge
2015-10-05 13:18 - 2009-11-16 13:32 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Nero
2015-10-05 13:17 - 2015-04-10 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\,,,,,,,,,,,,,
2015-10-05 13:17 - 2009-12-18 20:40 - 00000000 ____D C:\Program Files\Sweet Home 3D
2015-10-05 13:02 - 2014-08-26 16:48 - 00001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-10-05 13:02 - 2014-08-26 16:48 - 00001123 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-10-05 13:01 - 2010-04-01 23:39 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\GlarySoft
2015-10-05 12:57 - 2015-08-11 12:15 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-05 12:47 - 2014-12-04 14:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-10-05 01:54 - 2015-09-17 15:47 - 00000000 ____D C:\Program Files\PDFCreator
2015-10-05 01:52 - 2010-12-03 17:58 - 00001040 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-05 01:52 - 2009-11-13 01:11 - 00000000 ____D C:\Program Files\CCleaner
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\L2Schemas
==================== Fichiers à la racine de certains dossiers =======
2012-03-24 21:22 - 2012-03-26 11:34 - 0000006 _____ () C:\Program Files\Common Files\WPVersion.txt
2012-10-04 22:05 - 2012-10-04 22:05 - 0000022 ___SH () C:\Users\Gilbert\AppData\Roaming\Windows1569_SettingsRepository.bin
2010-01-01 21:17 - 2010-01-12 08:40 - 0000098 _____ () C:\Users\Gilbert\AppData\Roaming\wklnhst.dat
2011-10-20 17:14 - 2013-04-16 10:39 - 0191177 _____ () C:\Users\Gilbert\AppData\Local\ars.cache
2011-10-20 17:14 - 2013-04-16 10:39 - 0717340 _____ () C:\Users\Gilbert\AppData\Local\census.cache
2012-04-21 12:10 - 2012-04-21 12:10 - 0000095 _____ () C:\Users\Gilbert\AppData\Local\fusioncache.dat
2011-10-20 17:01 - 2011-10-20 17:01 - 0000036 _____ () C:\Users\Gilbert\AppData\Local\housecall.guid.cache
2011-08-12 20:42 - 2015-10-09 22:29 - 0007602 _____ () C:\Users\Gilbert\AppData\Local\Resmon.ResmonCfg
2015-04-06 19:18 - 2015-04-06 19:18 - 0000638 _____ () C:\Users\Gilbert\AppData\Local\ZHPFixReport.txt
2012-11-09 14:33 - 2012-11-09 14:33 - 0000097 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Certains fichiers dans TEMP:
====================
C:\Users\Gilbert\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Gilsurf\AppData\Local\Temp\kernel32.dll
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-11-03 20:39
==================== Fin de FRST.txt ============================
Exécuté par Gilbert (administrateur) sur PC-DE-GILBERT (03-11-2015 21:20:01)
Exécuté depuis C:\Users\Gilsurf\Desktop
Profils chargés: Gilbert & Gilsurf (Profils disponibles: Gilbert & Gilsurf)
Platform: Microsoft Windows 10 Professionnel (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IObit) C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell PowerSave Solution\ePowerSvc.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(IObit) C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
() C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\capiws.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 3\creator-ws.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
() C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(VIA) C:\Program Files\VIA\VIAAUD\viaaud.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Nero AG) C:\Program Files\Nero\Nero BackItUp\BackItUp.exe
(www.dennisbabkin.com) E:\Downloads\1324305625-download\WakeupOnStandBy\wosb.exe
() C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe
(Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.13821.0_x86__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x86__8wekyb3d8bbwe\Calculator.exe
(Mozilla Corporation) E:\Users\Gilsurf\Programmes portables\FirefoxPortable\App\Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [VIAAUD] => C:\Program Files\VIA\VIAAUD\viaaud.exe [356352 2009-04-01] (VIA)
HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2089056 2015-09-16] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [TrueImageMonitor.exe] => C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [6421200 2014-03-06] (Acronis)
HKLM\...\Run: [AcronisTibMounterMonitor] => C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105544 2013-01-10] (Acronis)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [412480 2013-02-15] (Acronis)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3779496 2015-10-19] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Nero BackItUp] => C:\Program Files\Nero\Nero BackItUp\BackItUp.exe [1126392 2015-07-07] (Nero AG)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2015-06-16] (Apple Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3519144 2015-08-11] (Synaptics Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-10-16] (Apple Inc.)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe [54072 2015-10-05] (Malwarebytes)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-09-28] (Glarysoft Ltd)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6495144 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Run: [ultracopier] => C:\Program Files\Supercopier\supercopier.exe [178688 2014-02-19] (ultracopier.first-world.info)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\RunOnce: [iCloud] => C:\Program Files\Common Files\Apple\Internet Services\iCloud.exe [60688 2015-10-21] (Apple Inc.)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\RunOnce: [Report] => \AdwCleaner\AdwCleaner[C3].txt
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\...\Policies\Explorer: [NoLogoff] 0
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [135168 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [Connexion SFR 9props.exe] => C:\Program Files\SFR\Kit\9props.exe [959808 2009-10-15] (SFR)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [218032 2006-09-11] (Macrovision Corporation)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [RemoTerm.exe] => C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe [226576 2010-06-10] (PCTV Systems S.à r.l.)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6495144 2015-09-16] (Piriform Ltd)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\...\Run: [WOSB] => E:\Downloads\1324305625-download\WakeupOnStandBy\wosb.exe [1272320 2011-03-21] (www.dennisbabkin.com)
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Fliqlo.scr [680624 2015-10-30] (ScreenTime Media)
ShellExecuteHooks: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\System32\ezUPBHook.dll [49152 2009-11-16] (EasyBits Software Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PrivateTunnel.lnk [2013-07-11]
ShortcutTarget: PrivateTunnel.lnk -> C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe ()
Startup: C:\Users\Gilsurf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2015-06-23]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
Startup: C:\Users\Gilsurf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wkcalrem.LNK [2011-01-11]
ShortcutTarget: wkcalrem.LNK -> C:\Program Files\Common Files\microsoft shared\Works Shared\WkCalRem.exe (Microsoft® Corporation)
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04a07ae6-0489-48b6-ac82-ae879ec252cd}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Software\Microsoft\Internet Explorer\Main,Default_search_url = hxxp://www.google.com/ie
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Software\Microsoft\Internet Explorer\Main,Search bar = hxxp://www.google.com/ie
HKU\S-1-5-21-2046232423-3191327651-1452587308-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxps://www.google.com/
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = hxxps://www.google.com/
HKU\S-1-5-21-2046232423-3191327651-1452587308-1003\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxps://www.google.com/
SearchScopes: HKLM -> URL ${SEARCH_URL}{searchTerms}
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> DefaultScope {0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} URL =
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> URL hxxp://searchab.com/?aff=7&uid=d7ac5b2a-7754-11e2-b5a2-001d72fedc0d&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> {0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} URL =
SearchScopes: HKU\S-1-5-21-2046232423-3191327651-1452587308-1001 -> {6F65E2DB-97E4-492F-AAE2-E7414F6EE670} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: PDF Architect 3 Helper -> {06E08260-0695-4EC1-A74B-1310D8899D93} -> C:\Program Files\PDF Architect 3\creator-ie-helper.dll [2015-04-24] (pdfforge GmbH)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: Ads Removal -> {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} -> C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll [2014-06-11] (Adblock)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
Toolbar: HKLM - PDF Architect 3 Toolbar - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - C:\Program Files\PDF Architect 3\creator-ie-plugin.dll [2015-04-24] (pdfforge GmbH)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll [2010-09-14] (Belarc, Inc.)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-26] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-06-03] (DivX, LLC)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-08-13] (Google, Inc.)
FF Plugin: @IObit.com/np_Asc_Plugin -> C:\Program Files\IObit\Surfing Protection\BrowerProtect\np_Asc_plugin.dll [2013-07-17] (IObit)
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-02-09] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BrowserPlugin\npBrowserPlugin.dll [2015-08-28] (Nero AG)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=0.8.6b -> C:\Program Files\VideoLAN\VLC-firefox\VLC\npvlc.dll [2007-04-18] (VideoLAN Team)
FF Plugin: @videolan.org/vlc,version=1.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2011-08-09] (the VideoLAN Team)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> E:\Users\Gilsurf\Programmes portables\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin: nuance.com/DragonRIAPlugin -> C:\PROGRA~1\Nuance\NaturallySpeaking12\Program\npDgnRia.dll [2013-02-11] (Nuance Communications Inc.)
FF Plugin: PDF Architect 2 -> C:\Program Files\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH)
FF Plugin: PDF Architect 3 -> C:\Program Files\PDF Architect 3\np-previewer.dll [2015-04-24] (pdfforge GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-12-18] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2014-03-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2012-11-09] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll [2011-12-09] (Nullsoft, Inc.)
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14] [non signé]
FF HKLM\...\Firefox\Extensions: [jid0-lmZNVK7a82O8cufhdfB9dUDfA2w@jetpack] - C:\Program Files\Nuance\NaturallySpeaking12\Program\ffShim.xpi
FF Extension: Dragon NaturallySpeaking Rich Internet Application Support - C:\Program Files\Nuance\NaturallySpeaking12\Program\ffShim.xpi [2013-02-11] [non signé]
FF HKLM\...\Firefox\Extensions: [pdf_architect_3_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension
FF Extension: PDF Architect 3 Creator - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension [2015-09-17] [non signé]
Chrome:
=======
CHR Profile: C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pas de nom) - C:\Users\Gilbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\1.0.1.6_0 [2012-11-14]
CHR HKLM\...\Chrome\Extension: [mikhcaiakabeeokmenglcdebplfdjicn] - C:\Program Files\Nuance\NaturallySpeaking12\Program\chromeShim.crx [2013-02-11]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [821048 2013-06-17] (ABBYY InfoPoisk LLC)
R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [830376 2013-02-15] (Acronis)
S4 AdobeActiveFileMonitor6.0; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] ()
R2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3808248 2015-02-05] (Acronis)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3642280 2015-10-19] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [335656 2015-10-19] (AVG Technologies CZ, s.r.o.)
S2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-07] (CobianSoft, Luis Cobian) [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1883320 2015-10-07] (Microsoft Corporation)
S4 DragonSvc; C:\Program Files\Common Files\Nuance\dgnsvc.exe [311184 2013-02-11] (Nuance Communications, Inc.)
R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [36904 2015-08-01] (CHENGDU YIWO Tech Development Co., Ltd)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell PowerSave Solution\ePowerSvc.exe [703008 2009-04-07] (Acer Incorporated)
S2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [Fichier non signé]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2009-11-16] (Macrovision Europe Ltd.) [Fichier non signé]
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242880 2015-07-02] (Foxit Software Inc.)
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-04-24] (Freemake) [Fichier non signé]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [919184 2015-05-08] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 IMFservice; C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [882464 2015-07-17] (IObit)
R2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [785904 2015-07-07] (Nero AG)
S2 NeroBackItUpBackgroundService; C:\Program Files\Nero\Nero BackItUp\NBService.exe [279544 2015-07-07] (Nero AG)
S4 NTI IScheduleSvc; C:\Program Files\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [44800 2009-03-10] (NewTech Infosystems, Inc.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-08] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20698768 2015-05-08] (NVIDIA Corporation)
R2 OpenVPNAccessClient; C:\Program Files\OpenVPN Technologies\PrivateTunnel\core\capiws.exe [24064 2012-10-12] () [Fichier non signé]
S3 PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
S3 PDF Architect 3; C:\Program Files\PDF Architect 3\ws.exe [2244312 2015-04-24] (pdfforge GmbH)
S3 PDF Architect 3 CrashHandler; C:\Program Files\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-24] (pdfforge GmbH)
R2 PDF Architect 3 Creator; C:\Program Files\PDF Architect 3\creator-ws.exe [740568 2015-04-24] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7093272 2013-03-26] (Acronis)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [208552 2015-08-11] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19104 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [252336 2015-10-19] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [222640 2015-08-19] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [31664 2015-07-23] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [189872 2015-08-04] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [236464 2015-08-04] (AVG Technologies CZ, s.r.o.)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2010-04-17] (Phoenix Technologies) [Fichier non signé]
R1 ElRawDisk; C:\WINDOWS\system32\drivers\ElRawDsk.sys [26248 2014-01-10] (EldoS Corporation)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [15968 2014-11-18] ()
S3 EsgScanner; C:\WINDOWS\System32\DRIVERS\EsgScanner.sys [19984 2015-10-15] ()
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [51752 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
S3 EUBAKUP0; C:\WINDOWS\system32\drivers\EUBAKUP0.sys [51752 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [41512 2014-12-15] ()
R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [15912 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [189992 2014-12-15] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUFS; C:\WINDOWS\System32\drivers\eufs.sys [21896 2009-12-02] (CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10208 2014-11-18] ()
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [17472 2015-05-21] (Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2015-02-04] (REALiX(tm))
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
S4 IObitUnlocker; C:\Program Files\IObit\IObit Unlocker\IObitUnlocker.sys [27160 2015-03-16] (IObit)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2015-11-03] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7523840 2012-01-23] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-05-08] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [32912 2014-11-22] (NVIDIA Corporation)
R2 PDFsFilter; C:\WINDOWS\System32\DRIVERS\PDFsFilter.sys [68464 2014-01-10] (Raxco Software, Inc.)
R1 RawDisk3; C:\WINDOWS\system32\drivers\rawdsk3.sys [28256 2014-10-09] (EldoS Corporation)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [18624 2014-06-04] (IObit)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-08-11] (Synaptics Incorporated)
S3 tdrpman; C:\WINDOWS\system32\DRIVERS\tdrpman.sys [888640 2015-02-05] (Acronis International GmbH)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [736192 2015-02-05] (Acronis International GmbH)
S0 tib_mounter; C:\WINDOWS\System32\DRIVERS\tib_mounter.sys [130488 2015-02-05] (Acronis)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [985088 2009-04-01] (VIA Technologies, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
U3 idsvc; pas de ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-03 21:20 - 2015-11-03 21:21 - 00030748 _____ C:\Users\Gilsurf\Desktop\FRST.txt
2015-11-03 21:17 - 2015-11-03 21:17 - 01701888 _____ (Farbar) C:\Users\Gilsurf\Desktop\FRST.exe
2015-11-03 21:17 - 2015-11-03 21:17 - 00000000 ____D C:\Users\Gilsurf\Desktop\FRST-OlderVersion
2015-11-03 21:14 - 2015-11-03 21:14 - 00069145 _____ C:\Users\Gilsurf\Desktop\1mO_yTNk.htm
2015-11-03 20:44 - 2015-11-03 20:44 - 00002778 _____ C:\Users\Gilbert\Desktop\ZHPCleaner.txt
2015-11-03 20:39 - 2015-11-03 20:39 - 00016148 _____ C:\WINDOWS\system32\PC-DE-GILBERT_Gilsurf_HistoryPrediction.bin
2015-11-03 20:21 - 2015-11-03 20:21 - 00000928 _____ C:\Users\Gilbert\Desktop\ZHPCleaner.lnk
2015-11-03 19:28 - 2015-11-03 21:19 - 00006487 _____ C:\Users\Gilsurf\ovpntray.log
2015-11-03 14:43 - 2015-11-03 14:43 - 00000298 _____ C:\WINDOWS\Tasks\Uninstaller_SkipUac_Gilsurf.job
2015-11-02 20:48 - 2015-11-02 20:48 - 00001151 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-02 20:48 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-02 20:48 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-11-02 20:48 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-02 18:06 - 2015-11-02 18:06 - 00035064 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-11-02 18:04 - 2015-11-02 18:05 - 18969672 _____ C:\Users\Gilsurf\Downloads\RogueKiller (1).exe
2015-11-02 08:08 - 2015-11-03 14:55 - 00000000 ____D C:\Users\Gilbert\AppData\Local\AvgSetupLog
2015-11-02 08:06 - 2015-11-02 08:08 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\AvgSetupLog
2015-11-01 13:18 - 2015-11-01 13:18 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-31 22:53 - 2015-10-31 22:53 - 00001449 _____ C:\Users\Public\Desktop\EaseUS Partition Master 10.8.lnk
2015-10-31 22:53 - 2015-10-31 22:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.8
2015-10-31 22:53 - 2015-09-21 00:19 - 02658952 _____ C:\WINDOWS\system32\BootMan.exe
2015-10-31 22:53 - 2014-11-18 14:46 - 00021088 _____ C:\WINDOWS\system32\EuEpmGdi.dll
2015-10-31 22:53 - 2014-11-18 14:39 - 00015968 _____ C:\WINDOWS\system32\epmntdrv.sys
2015-10-31 22:53 - 2014-11-18 14:39 - 00010208 _____ C:\WINDOWS\system32\EuGdiDrv.sys
2015-10-31 22:53 - 2014-11-18 14:38 - 00088160 _____ C:\WINDOWS\system32\setupempdrv03.exe
2015-10-30 21:37 - 2015-10-31 23:44 - 00000000 ____D C:\ProgramData\iolo
2015-10-30 21:37 - 2015-10-30 21:37 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\iolo
2015-10-30 21:10 - 2015-10-30 21:10 - 00000000 ____D C:\Users\Gilsurf\Downloads\zedtv
2015-10-30 21:09 - 2015-10-30 21:09 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Philipp Winterberg
2015-10-30 20:43 - 2015-10-30 20:43 - 00680624 _____ (ScreenTime Media) C:\WINDOWS\system32\Fliqlo.scr
2015-10-30 19:16 - 2015-10-30 19:16 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-10-30 06:45 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 06:45 - 2015-10-21 06:57 - 00558944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 06:45 - 2015-10-21 06:55 - 00337760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 06:45 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 06:45 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-10-30 06:45 - 2015-10-21 06:15 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 06:45 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 06:45 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 06:45 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 06:45 - 2015-10-21 06:07 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 06:45 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-30 06:45 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-10-30 06:45 - 2015-10-21 06:03 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-30 06:45 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 06:45 - 2015-10-21 06:00 - 01917952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 06:45 - 2015-10-21 06:00 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-30 06:45 - 2015-10-21 05:59 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-10-30 06:45 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 06:45 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 06:45 - 2015-10-21 05:56 - 01499648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 06:45 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 06:45 - 2015-10-21 05:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-10-29 23:04 - 2015-10-29 23:09 - 133633224 _____ (PortableApps.com) C:\Users\Gilsurf\Downloads\LibreOfficePortable_5.0.2_MultilingualStandard.paf.exe
2015-10-28 21:32 - 2015-10-28 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-10-26 15:32 - 2015-10-26 15:33 - 41910592 _____ (Amazon.com) C:\Users\Gilsurf\Downloads\KindleForPC-installer-1.12.41022.exe
2015-10-26 14:44 - 2015-10-26 14:44 - 00016148 _____ C:\WINDOWS\system32\PC-DE-GILBERT_Gilbert_HistoryPrediction.bin
2015-10-26 14:32 - 2015-10-26 14:32 - 00000000 ____D C:\Users\Gilbert\AppData\Local\NetworkTiles
2015-10-26 14:29 - 2015-10-26 14:33 - 00005571 _____ C:\Users\Gilbert\ovpntray.log
2015-10-25 23:15 - 2015-10-25 23:15 - 00000000 ____D C:\Users\Gilbert\AppData\Local\MicrosoftEdge
2015-10-25 23:14 - 2015-10-25 23:14 - 00002437 _____ C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-25 23:05 - 2015-10-25 23:05 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Publishers
2015-10-25 23:03 - 2015-10-25 23:05 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Comms
2015-10-25 22:59 - 2015-10-25 22:59 - 00000000 ____D C:\Users\Gilbert\AppData\Local\TileDataLayer
2015-10-25 22:58 - 2015-10-25 22:58 - 00000916 __RSH C:\Users\Gilbert\ntuser.pol
2015-10-25 14:29 - 2015-10-25 14:29 - 00002156 _____ C:\Users\Public\Desktop\EaseUS Todo Backup Free 8.8 .lnk
2015-10-25 14:29 - 2014-12-15 00:58 - 00189992 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EuFdDisk.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00051752 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUBAKUP0.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00051752 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eubakup.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00041512 _____ C:\WINDOWS\system32\Drivers\EUBKMON.sys
2015-10-25 14:29 - 2014-12-15 00:58 - 00015912 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\eudskacs.sys
2015-10-25 14:28 - 2015-10-25 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup Free 8.8
2015-10-25 14:23 - 2014-12-15 01:03 - 00019496 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\fbnative.exe
2015-10-25 14:18 - 2015-10-25 14:20 - 120289656 _____ (CHENGDU YIWO Tech Development Co., Ltd ) C:\Users\Gilsurf\Downloads\tb_free.exe
2015-10-23 12:05 - 2015-10-23 12:05 - 00001024 _____ C:\Users\Public\Desktop\AVG 2015.lnk
2015-10-22 09:21 - 2015-10-22 09:21 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-22 09:01 - 2015-10-22 09:01 - 00001824 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-10-22 09:01 - 2015-10-22 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-22 08:47 - 2015-10-22 08:47 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Sun
2015-10-22 08:47 - 2015-10-22 08:47 - 00000000 ____D C:\Users\Gilsurf\.oracle_jre_usage
2015-10-22 07:57 - 2015-10-22 07:57 - 00000000 ____D C:\Program Files\Common Files\Java
2015-10-22 07:55 - 2015-10-22 07:55 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Sun
2015-10-22 07:55 - 2015-10-22 07:55 - 00000000 ____D C:\Users\Gilbert\.oracle_jre_usage
2015-10-22 07:50 - 2015-10-22 07:50 - 00000000 ____D C:\Users\Gilbert\AppData\LocalLow\Oracle
2015-10-22 07:41 - 2015-07-10 09:25 - 00395268 __RSH C:\bootmgr
2015-10-22 07:41 - 2015-07-10 09:25 - 00000001 ___SH C:\BOOTNXT
2015-10-20 05:36 - 2015-10-16 04:10 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-10-20 05:36 - 2015-10-16 04:10 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-10-19 12:38 - 2015-10-19 12:38 - 00252336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdriverx.sys
2015-10-18 23:26 - 2015-10-18 23:27 - 10535981 _____ (Oleg N. Scherbakov) C:\Users\Gilsurf\Downloads\captvty-2.3.9-autoextract.exe
2015-10-16 16:36 - 2015-10-16 16:37 - 18832456 _____ C:\Users\Gilsurf\Downloads\RogueKiller.exe
2015-10-15 14:50 - 2015-10-15 14:50 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Enigma Software Group
2015-10-15 14:49 - 2015-10-15 14:49 - 00000000 ____D C:\sh4ldr
2015-10-15 14:47 - 2015-10-15 14:47 - 00019984 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2015-10-15 14:44 - 2015-10-15 14:46 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Gilsurf\Downloads\SpyHunter-Installer.exe
2015-10-14 07:00 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-14 07:00 - 2015-10-01 04:36 - 06265184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-14 07:00 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-14 07:00 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-14 06:59 - 2015-10-10 07:44 - 00069312 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-14 06:59 - 2015-10-01 04:36 - 01034032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-14 06:59 - 2015-10-01 04:36 - 00907992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-14 06:59 - 2015-10-01 04:36 - 00869232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-14 06:59 - 2015-10-01 04:36 - 00754080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-14 06:59 - 2015-10-01 03:40 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-14 06:59 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-14 06:59 - 2015-09-25 04:31 - 00368992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-14 06:59 - 2015-09-25 04:21 - 00851296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-14 06:59 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-14 06:59 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-14 06:59 - 2015-09-25 03:43 - 00997376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-14 06:59 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-14 06:59 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-14 06:59 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-14 06:59 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-14 06:59 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-14 06:59 - 2015-09-25 03:35 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-14 06:59 - 2015-09-25 03:34 - 01133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-14 06:59 - 2015-09-25 03:34 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-14 06:59 - 2015-09-25 03:34 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-14 06:59 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-14 06:59 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-14 06:59 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-07 20:47 - 2015-10-07 20:47 - 00001047 _____ C:\Users\Public\Desktop\DriversCloud.com - Démarrer la détection.lnk
2015-10-07 20:47 - 2015-10-07 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com
2015-10-07 20:47 - 2015-10-07 20:47 - 00000000 ____D C:\ProgramData\DriversCloud.com
2015-10-07 20:47 - 2015-10-07 20:47 - 00000000 ____D C:\Program Files\DriversCloud.com
2015-10-07 20:44 - 2015-10-07 20:44 - 05186272 _____ C:\Users\Gilsurf\Downloads\DriversCloud_8_0_2_1.exe
2015-10-07 20:37 - 2015-10-07 20:37 - 06240370 _____ C:\Users\Gilsurf\Downloads\DriversCloud_8_0_2_1.zip
2015-10-05 13:52 - 2015-11-03 20:24 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-05 13:37 - 2015-10-05 13:37 - 00002975 _____ C:\Users\Public\Desktop\Nero 2016.lnk
2015-10-05 13:35 - 2015-10-05 13:35 - 00002182 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2015-10-05 13:35 - 2015-10-05 13:35 - 00000000 ____D C:\Users\Public\Foxit Software
2015-10-05 13:35 - 2015-10-05 13:35 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Foxit Software
2015-10-05 13:34 - 2015-10-05 13:34 - 00002130 _____ C:\Users\Public\Desktop\Nero MediaHome.lnk
2015-10-05 13:31 - 2015-10-05 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016
2015-10-05 13:30 - 2015-10-30 19:22 - 00002185 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2015-10-05 13:30 - 2015-10-05 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-10-05 13:25 - 2015-10-05 13:25 - 00001012 _____ C:\Users\Public\Desktop\Deluge.lnk
2015-10-05 13:25 - 2015-10-05 13:25 - 00000893 _____ C:\Users\Gilbert\Desktop\Format Factory.lnk
2015-10-05 13:25 - 2015-10-05 13:25 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2015-10-05 13:17 - 2015-10-05 13:17 - 00001174 _____ C:\Users\Gilbert\Desktop\Sweet Home 3D.lnk
2015-10-05 12:48 - 2015-10-05 12:48 - 00001283 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-10-05 12:47 - 2015-11-03 18:29 - 00000262 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Gilbert.job
2015-10-05 12:47 - 2015-11-01 23:47 - 00002218 _____ C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
2015-10-04 23:33 - 2015-10-07 11:02 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-11-03 21:20 - 2015-06-10 20:08 - 00000000 ____D C:\FRST
2015-11-03 21:04 - 2015-09-15 20:59 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-03 20:57 - 2015-07-10 06:09 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-03 20:44 - 2015-04-06 16:44 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\ZHP
2015-11-03 20:39 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-11-03 20:25 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-03 20:08 - 2010-06-12 10:02 - 00000000 _____ C:\Users\Gilsurf\AppData\LocalLow\prvlcl.dat
2015-11-03 19:29 - 2013-01-30 02:31 - 00000000 ____D C:\ProgramData\MFAData
2015-11-03 19:28 - 2015-08-11 11:27 - 00000000 ____D C:\Users\Gilsurf
2015-11-03 19:26 - 2015-09-15 20:59 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-03 19:24 - 2015-07-10 10:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-03 19:22 - 2015-07-10 07:59 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2015-11-03 18:37 - 2014-04-15 12:16 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-03 18:29 - 2015-02-07 14:49 - 00000268 _____ C:\WINDOWS\Tasks\ASC8_SkipUac_Système.job
2015-11-03 15:21 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-03 14:59 - 2013-01-26 20:46 - 00000000 ____D C:\ProgramData\AVG
2015-11-03 14:59 - 2009-11-12 16:41 - 00000000 ____D C:\Program Files\AVG
2015-11-03 13:58 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-02 20:48 - 2014-04-15 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-02 20:48 - 2014-04-15 12:16 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-11-02 14:51 - 2014-04-21 13:02 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\CrashDumps
2015-11-02 11:20 - 2013-11-14 21:12 - 00000000 ____D C:\Users\Gilsurf\Desktop\Captvty
2015-11-02 08:15 - 2014-12-04 13:19 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\Avg
2015-11-02 08:15 - 2013-01-26 20:53 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\AVG
2015-11-02 08:10 - 2014-11-10 12:58 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Avg
2015-11-02 08:10 - 2011-10-08 15:25 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\AVG
2015-11-01 23:48 - 2010-12-17 19:08 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\vlc
2015-11-01 17:40 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\rescache
2015-11-01 01:01 - 2015-07-06 16:32 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-10-31 23:04 - 2010-05-11 22:31 - 00002216 ____H C:\WINDOWS\EPMBatch.ept
2015-10-31 23:02 - 2015-08-03 17:53 - 00000000 ____D C:\Program Files\EaseUS
2015-10-30 22:01 - 2015-07-10 07:59 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-30 20:43 - 2010-07-15 22:11 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Screentime
2015-10-30 20:43 - 2010-07-15 22:11 - 00000000 ____D C:\ProgramData\Screentime
2015-10-30 20:43 - 2010-07-15 22:10 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\Screentime
2015-10-30 19:20 - 2010-05-18 20:16 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
2015-10-30 17:56 - 2015-08-20 08:06 - 00000000 ____D C:\WINDOWS\Minidump
2015-10-30 14:55 - 2015-05-15 23:58 - 00000000 ____D C:\AdwCleaner
2015-10-30 13:48 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\fr-FR
2015-10-30 13:48 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-30 06:54 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-29 23:10 - 2015-09-18 11:31 - 00000000 ____D C:\Programmes Portables
2015-10-29 16:44 - 2015-08-11 11:57 - 01839260 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-28 22:09 - 2010-08-17 15:30 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Apple Computer
2015-10-28 22:09 - 2010-08-17 15:30 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Apple Computer
2015-10-28 21:34 - 2014-04-16 14:26 - 00000000 ____D C:\Users\Gilbert\AppData\Local\CrashDumps
2015-10-28 19:02 - 2015-02-09 22:36 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-27 06:56 - 2014-08-17 12:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-27 06:39 - 2014-08-17 12:29 - 141105520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-26 15:25 - 2014-10-17 14:29 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Adobe
2015-10-26 15:25 - 2009-11-20 14:19 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\Adobe
2015-10-26 14:38 - 2009-11-12 17:18 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Mozilla
2015-10-26 14:38 - 2009-11-12 17:18 - 00000000 ____D C:\Users\Gilbert\AppData\Local\Mozilla
2015-10-26 14:29 - 2015-08-11 11:27 - 00000000 ____D C:\Users\Gilbert
2015-10-25 23:16 - 2009-07-14 03:04 - 00000559 _____ C:\WINDOWS\win.ini
2015-10-25 23:14 - 2014-07-15 13:46 - 00000000 ___RD C:\Users\Gilbert\OneDrive
2015-10-25 23:13 - 2014-08-26 16:47 - 00000000 ____D C:\Program Files\Glary Utilities 5
2015-10-25 22:59 - 2015-08-11 11:27 - 00000000 ___RD C:\Users\Gilbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-23 12:05 - 2014-03-31 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-10-22 09:23 - 2013-10-30 14:22 - 00000000 ____D C:\ProgramData\Oracle
2015-10-22 09:22 - 2015-07-15 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-22 09:20 - 2009-11-14 13:07 - 00000000 ____D C:\Program Files\Java
2015-10-22 09:01 - 2012-06-21 23:00 - 00000000 ____D C:\Program Files\iTunes
2015-10-22 08:58 - 2012-09-24 13:57 - 00000000 ____D C:\Program Files\iPod
2015-10-22 08:58 - 2009-12-06 00:18 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-22 08:33 - 2011-08-27 13:31 - 00000000 ____D C:\Program Files\Yahoo!
2015-10-16 17:09 - 2014-06-03 12:45 - 00000000 ____D C:\ProgramData\RogueKiller
2015-10-16 15:53 - 2011-08-27 13:31 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Yahoo!
2015-10-16 15:53 - 2011-08-27 13:31 - 00000000 ____D C:\Users\Gilbert\AppData\LocalLow\Yahoo!
2015-10-16 15:53 - 2010-02-05 23:57 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Thunderbird
2015-10-16 00:33 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-15 16:17 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-10-15 16:17 - 2010-12-18 12:32 - 00000000 ____D C:\Users\Gilsurf\AppData\Roaming\Foxit Software
2015-10-15 12:30 - 2009-11-14 12:19 - 00000000 ___HD C:\BJPrinter
2015-10-10 08:50 - 2012-06-24 17:41 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-09 22:29 - 2011-08-12 20:42 - 00007602 _____ C:\Users\Gilbert\AppData\Local\Resmon.ResmonCfg
2015-10-08 13:58 - 2015-08-11 12:44 - 00000000 ____D C:\Users\Gilsurf\AppData\Local\MicrosoftEdge
2015-10-07 20:47 - 2010-04-16 23:19 - 00000000 ____D C:\ProgramData\ma-config.com
2015-10-07 20:47 - 2010-04-16 23:19 - 00000000 ____D C:\Program Files\ma-config.com
2015-10-05 13:39 - 2009-11-16 13:28 - 00000000 ____D C:\Program Files\Nero
2015-10-05 13:38 - 2010-07-03 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-10-05 13:35 - 2015-07-10 09:28 - 00000000 ___RD C:\Users\Public
2015-10-05 13:34 - 2010-12-16 00:12 - 00000000 ____D C:\Program Files\Foxit Software
2015-10-05 13:34 - 2009-11-16 13:28 - 00000000 ____D C:\Program Files\Common Files\Nero
2015-10-05 13:30 - 2012-05-08 20:17 - 00000000 ____D C:\Program Files\IObit
2015-10-05 13:25 - 2010-01-29 00:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluge
2015-10-05 13:24 - 2010-01-29 00:03 - 00000000 ____D C:\Program Files\Deluge
2015-10-05 13:18 - 2009-11-16 13:32 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\Nero
2015-10-05 13:17 - 2015-04-10 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\,,,,,,,,,,,,,
2015-10-05 13:17 - 2009-12-18 20:40 - 00000000 ____D C:\Program Files\Sweet Home 3D
2015-10-05 13:02 - 2014-08-26 16:48 - 00001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-10-05 13:02 - 2014-08-26 16:48 - 00001123 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-10-05 13:01 - 2010-04-01 23:39 - 00000000 ____D C:\Users\Gilbert\AppData\Roaming\GlarySoft
2015-10-05 12:57 - 2015-08-11 12:15 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-05 12:47 - 2014-12-04 14:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
2015-10-05 01:54 - 2015-09-17 15:47 - 00000000 ____D C:\Program Files\PDFCreator
2015-10-05 01:52 - 2010-12-03 17:58 - 00001040 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-10-05 01:52 - 2009-11-13 01:11 - 00000000 ____D C:\Program Files\CCleaner
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-04 21:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\L2Schemas
==================== Fichiers à la racine de certains dossiers =======
2012-03-24 21:22 - 2012-03-26 11:34 - 0000006 _____ () C:\Program Files\Common Files\WPVersion.txt
2012-10-04 22:05 - 2012-10-04 22:05 - 0000022 ___SH () C:\Users\Gilbert\AppData\Roaming\Windows1569_SettingsRepository.bin
2010-01-01 21:17 - 2010-01-12 08:40 - 0000098 _____ () C:\Users\Gilbert\AppData\Roaming\wklnhst.dat
2011-10-20 17:14 - 2013-04-16 10:39 - 0191177 _____ () C:\Users\Gilbert\AppData\Local\ars.cache
2011-10-20 17:14 - 2013-04-16 10:39 - 0717340 _____ () C:\Users\Gilbert\AppData\Local\census.cache
2012-04-21 12:10 - 2012-04-21 12:10 - 0000095 _____ () C:\Users\Gilbert\AppData\Local\fusioncache.dat
2011-10-20 17:01 - 2011-10-20 17:01 - 0000036 _____ () C:\Users\Gilbert\AppData\Local\housecall.guid.cache
2011-08-12 20:42 - 2015-10-09 22:29 - 0007602 _____ () C:\Users\Gilbert\AppData\Local\Resmon.ResmonCfg
2015-04-06 19:18 - 2015-04-06 19:18 - 0000638 _____ () C:\Users\Gilbert\AppData\Local\ZHPFixReport.txt
2012-11-09 14:33 - 2012-11-09 14:33 - 0000097 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Certains fichiers dans TEMP:
====================
C:\Users\Gilbert\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Gilsurf\AppData\Local\Temp\kernel32.dll
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-11-03 20:39
==================== Fin de FRST.txt ============================