cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:05-11-2015
Exécuté par madinina (administrateur) sur MADININA-PC (06-11-2015 13:49:32)
Exécuté depuis C:\Users\madinina\Desktop
Profils chargés: madinina & UpdatusUser (Profils disponibles: madinina & UpdatusUser & DefaultAppPool)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1026.13580.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.15081.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242712 2015-09-21] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor)
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2076272 2012-11-02] (Microsoft Corporation)
HKLM\...\Run: [IntelliType Pro] => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1464944 2012-11-02] (Microsoft Corporation)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe [87336 2010-09-20] (CyberLink Corp.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-819639659-4150350305-585420797-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-819639659-4150350305-585420797-1001\...\RunOnce: [Uninstall C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-819639659-4150350305-585420797-1001\...\RunOnce: [Uninstall C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-819639659-4150350305-585420797-1001\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-819639659-4150350305-585420797-1010\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-819639659-4150350305-585420797-1010\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517632 2015-07-10] (Microsoft Corporation)
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-07-23] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-23] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64\FileSyncShell64.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64\FileSyncShell64.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64\FileSyncShell64.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\madinina\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{bf45394a-3b57-4523-b3f7-2292f73afd3f}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-819639659-4150350305-585420797-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-819639659-4150350305-585420797-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-819639659-4150350305-585420797-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
SearchScopes: HKU\S-1-5-21-819639659-4150350305-585420797-1001 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-819639659-4150350305-585420797-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-18] (Oracle Corporation)
BHO-x32: Samsung BHO Class -> {AA609D72-8482-4076-8991-8CDAE5B93BCB} -> C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-10-25] ()
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-18] (Oracle Corporation)
DPF: HKLM-x32 {0742B9EF-8C83-41CA-BFBA-830A59E23533} hxxps://oas.support.microsoft.com/ActiveX/MSDcode.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} hxxp://fichiers2.touslesdrivers.com/maconfig/MaConfig_6_5_1_0.cab

FireFox:
========
FF ProfilePath: C:\Users\madinina\AppData\Roaming\Mozilla\Firefox\Profiles\req735fo.default
FF Homepage: hxxps://www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-16] ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\windows\system32\npDeployJava1.dll [2013-10-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-16] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [2013-11-02] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [2013-11-02] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Extension: WOT - C:\Users\madinina\AppData\Roaming\Mozilla\Firefox\Profiles\req735fo.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-10]
FF Extension: NoScript - C:\Users\madinina\AppData\Roaming\Mozilla\Firefox\Profiles\req735fo.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-10-27]
FF Extension: Adblock Plus - C:\Users\madinina\AppData\Roaming\Mozilla\Firefox\Profiles\req735fo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-25]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-11-02] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => non trouvé(e)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ETDService; C:\Program Files\Elantech\ETDService.exe [131288 2015-09-21] (ELAN Microelectronics Corp.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-09-21] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Fichier non signé]
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Fichier non signé]
S4 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] () [Fichier non signé]
S3 Samsung UPD Service2; C:\WINDOWS\System32\SUPDSvc2.exe [165456 2011-12-02] (Samsung Electronics)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-09-21] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-09-21] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)
R3 ETDSMBus; C:\Windows\system32\DRIVERS\ETDSMBus.sys [32328 2015-09-21] (ELAN Microelectronic Corp.)
S3 HtcVCom32; C:\Windows\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-09-21] (Microsoft Corporation)
R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [32168 2015-09-21] (Windows (R) Win 7 DDK provider)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-06-18] (Realtek )
S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2012-05-02] (Windows (R) 2003 DDK 3790 provider)
R2 SGDrv; C:\Windows\System32\drivers\SGdrv64.sys [7680 2011-04-11] (Phoenix Technologies Ltd.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; pas de ImagePath
U5 REALPLAYERUPDATESVC; pas de ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-11-06 13:49 - 2015-11-06 13:50 - 00020322 _____ C:\Users\madinina\Desktop\FRST.txt
2015-11-06 13:49 - 2015-11-06 13:49 - 00000000 ____D C:\FRST
2015-11-06 13:48 - 2015-11-06 13:48 - 02198528 _____ (Farbar) C:\Users\madinina\Desktop\FRST64.exe
2015-11-06 13:45 - 2015-11-06 13:45 - 00016148 _____ C:\WINDOWS\system32\MADININA-PC_madinina_HistoryPrediction.bin
2015-11-06 13:45 - 2015-11-06 13:45 - 00004079 _____ C:\Users\madinina\Desktop\AdwCleaner[C1].txt
2015-11-06 13:13 - 2015-11-06 13:16 - 00000000 ____D C:\AdwCleaner
2015-11-06 13:12 - 2015-11-06 13:12 - 01713664 _____ C:\Users\madinina\Desktop\adwcleaner_5.018.exe
2015-11-05 22:13 - 2015-11-05 22:14 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-05 22:13 - 2015-11-05 22:13 - 00001171 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-05 22:13 - 2015-11-05 22:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-05 22:13 - 2015-11-05 22:13 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-05 22:13 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-11-05 22:13 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-11-05 22:13 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-11-05 22:10 - 2015-11-05 22:11 - 22908888 _____ (Malwarebytes ) C:\Users\madinina\Desktop\mbam-setup-2.2.0.1024.exe
2015-11-02 12:15 - 2015-11-02 12:15 - 00000000 ____D C:\Users\madinina\AppData\Local\CEF
2015-11-01 13:25 - 2015-11-01 13:37 - 367169536 _____ C:\Users\madinina\Downloads\Once.Upon.A.Time.S05E05.FASTSUB.VOSTFR.HDTV.XviD-ARK01.avi
2015-11-01 13:10 - 2015-11-01 14:12 - 1403641888 _____ C:\Users\madinina\Downloads\Beasts.of.No.Nation.2015.FRENCH.WEB-DL.XviD-Slay3R.avi
2015-11-01 13:01 - 2015-11-01 13:07 - 00000000 ____D C:\Users\madinina\Downloads\The.Gift.2015.FRENCH.BDRip.XviD-EXTREME
2015-10-31 11:35 - 2015-11-03 15:51 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-31 11:35 - 2015-10-31 11:35 - 00002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-10-31 11:35 - 2015-10-31 11:35 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-10-30 23:43 - 2015-10-30 23:43 - 00000218 _____ C:\Users\madinina\AppData\Local\recently-used.xbel
2015-10-30 21:27 - 2015-10-30 22:08 - 659858392 _____ C:\Users\madinina\Downloads\Vacation.2015.FRENCH.BDRip.x264.KiKi.mkv
2015-10-30 21:10 - 2015-10-30 22:04 - 734947328 _____ C:\Users\madinina\Downloads\Visions.2015.FRENCH.BDRiP.XViD-AViTECH.avi
2015-10-30 20:14 - 2015-10-28 00:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-30 20:14 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-30 20:14 - 2015-10-21 13:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-10-30 20:14 - 2015-10-21 13:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-10-30 20:14 - 2015-10-21 13:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-30 20:14 - 2015-10-21 13:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-10-30 20:14 - 2015-10-21 13:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-30 20:14 - 2015-10-21 13:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-30 20:14 - 2015-10-21 12:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-10-30 20:14 - 2015-10-21 12:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-30 20:14 - 2015-10-21 12:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-30 20:14 - 2015-10-21 12:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-10-30 20:14 - 2015-10-21 12:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-30 20:14 - 2015-10-21 12:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-10-30 20:14 - 2015-10-21 12:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-30 20:14 - 2015-10-21 12:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-10-30 20:14 - 2015-10-21 12:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-10-30 20:14 - 2015-10-21 12:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-30 20:14 - 2015-10-21 12:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-10-30 20:14 - 2015-10-21 12:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-30 20:14 - 2015-10-21 12:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-30 20:14 - 2015-10-21 12:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-10-30 20:14 - 2015-10-21 12:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-10-30 20:14 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-30 20:14 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-10-30 20:14 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-30 20:14 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-30 20:14 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-30 20:14 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-30 20:14 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-10-30 20:14 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-10-30 20:14 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-10-30 20:14 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-30 20:14 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-10-25 16:06 - 2015-10-25 16:07 - 00000000 ____D C:\Users\madinina\Downloads\Red Rat - 777 EP (2015)
2015-10-25 15:54 - 2015-10-25 16:13 - 00000000 ____D C:\Users\madinina\Downloads\Kranium - Rumors (2015)
2015-10-25 15:53 - 2015-10-25 15:58 - 00000000 ____D C:\Users\madinina\Downloads\Anthony B - Tears Of Luv (2015)
2015-10-25 15:51 - 2015-10-25 16:07 - 367048704 _____ C:\Users\madinina\Downloads\Once.Upon.A.Time.S05E04.FASTSUB.VOSTFR.HDTV.XviD-ARK01.avi
2015-10-24 20:04 - 2015-10-24 21:11 - 00000000 ____D C:\Users\madinina\Downloads\The Vatican Tapes 2015 FRENCH BDRip x264 AC3-HD Workshop
2015-10-24 19:59 - 2015-10-24 20:54 - 614494715 _____ C:\Users\madinina\Downloads\Knock.Knock.2015.FRENCH.BDRiP.x264-AViTECH.mkv
2015-10-23 23:32 - 2015-10-23 23:32 - 00000000 ____D C:\WINDOWS\Panther
2015-10-18 21:15 - 2015-10-18 21:38 - 438926596 _____ C:\Users\madinina\Downloads\Dark.Places.2015.FRENCH.BDRip.x264-PRiDEHD.mkv
2015-10-18 20:58 - 2015-10-18 21:25 - 00000000 ____D C:\Users\madinina\Downloads\Jessabelle.2014.FRENCH.DVDRip.XviD-PREM
2015-10-17 21:29 - 2015-10-17 22:25 - 00000000 ____D C:\Users\madinina\Downloads\Return.to.Sender.2015.FRENCH.BDRip.x264-PRiDEHD
2015-10-17 20:06 - 2015-10-17 20:17 - 367118336 _____ C:\Users\madinina\Downloads\Once.Upon.A.Time.S05E03.FASTSUB.VOSTFR.HDTV.XviD-RUDY.avi
2015-10-17 19:45 - 2015-11-01 14:57 - 00000000 ____D C:\Users\madinina\AppData\Roaming\deluge
2015-10-17 19:44 - 2015-10-17 20:49 - 00001048 _____ C:\Users\madinina\Desktop\Deluge.lnk
2015-10-17 19:44 - 2015-10-17 19:44 - 00000000 ____D C:\Program Files (x86)\Deluge
2015-10-17 19:39 - 2015-10-17 19:40 - 14758443 _____ (Deluge Team) C:\Users\madinina\Desktop\deluge-1.3.12-1-win32-py2.6-setup.exe
2015-10-15 16:30 - 2015-10-15 16:30 - 00000000 ____D C:\Users\madinina\AppData\Roaming\1
2015-10-14 07:38 - 2015-10-14 07:38 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-10-13 22:46 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-13 22:46 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-13 22:45 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-13 22:45 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-10-13 22:45 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-10-13 22:45 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-10-13 22:45 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-13 22:45 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-13 22:45 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-10-13 20:07 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-10-13 20:07 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-10-13 20:07 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-10-13 20:07 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-13 20:07 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-10-13 20:07 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-13 20:07 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-13 20:07 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-13 20:07 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-13 20:07 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-13 20:07 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-10-13 20:07 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-13 20:07 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-13 20:07 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-13 20:07 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-10-13 20:06 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-13 20:06 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-10-13 20:06 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-10-13 20:06 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-10-13 20:06 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-10-13 20:06 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-10-13 20:06 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-10-13 20:06 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-13 20:06 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-13 20:06 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-13 20:06 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-10-13 20:06 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-10-13 20:06 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:06 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-13 20:06 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-13 20:06 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-13 20:06 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-13 20:06 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-13 20:06 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-13 20:06 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-13 20:06 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-13 20:06 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-13 20:06 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-10-13 20:06 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-13 20:06 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-10-13 20:06 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-10-13 20:06 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-13 20:06 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-13 20:06 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-13 20:06 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-13 20:06 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-13 20:06 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-13 20:06 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-13 20:06 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-11 16:04 - 2015-10-11 16:07 - 00000000 ____D C:\Users\madinina\AppData\Roaming\HTC
2015-10-11 16:01 - 2015-11-06 13:32 - 00000000 ____D C:\Users\madinina\AppData\Local\HTC MediaHub
2015-10-11 16:01 - 2015-10-29 13:32 - 00002104 _____ C:\Users\Public\Desktop\HTC Sync Manager.lnk
2015-10-11 16:01 - 2015-10-11 16:04 - 00000000 ____D C:\Users\madinina\Documents\HTC
2015-10-11 16:01 - 2015-10-11 16:01 - 00000000 ____D C:\Users\madinina\AppData\Roaming\Apple Computer
2015-10-11 16:01 - 2015-10-11 16:01 - 00000000 ____D C:\Users\madinina\AppData\Local\Apple Computer
2015-10-11 16:01 - 2015-10-11 16:01 - 00000000 ____D C:\Users\madinina\.android
2015-10-11 16:00 - 2015-10-11 16:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HTC
2015-10-11 16:00 - 2015-10-11 16:00 - 00000000 ____D C:\Program Files (x86)\Spirent Communications
2015-10-11 15:44 - 2015-10-29 13:52 - 00004991 _____ C:\WINDOWS\setupact.log
2015-10-11 15:44 - 2015-10-11 15:44 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\Program Files\Microsoft Security Client
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\c5568062cb6c042a79bdf112e4fc
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\c08730331d8e6ea5ea
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\b61c9d12449c9bcf8df7fe7966c131
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\9203b874a4c69e65d8899b
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\81f58ae51b3895fd5327
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\7a6514807ac9ea289c36c4
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\6ef112043e9c9e0f05e1bf5b878e6d
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\62706a7f3fc2550cbf3ae7
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\254f5105505d8bd4af29ebe01e2d
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\22aafe4e4c649b285f281b
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\103c3c934014639068
2015-10-11 12:25 - 2015-10-11 12:25 - 00000000 _____ C:\00e36bc691d86a6dca
2015-10-10 20:57 - 2015-10-10 21:22 - 367286272 ____R C:\Users\madinina\Downloads\Once.Upon.A.Time.S05E02.FASTSUB.VOSTFR.HDTV.XviD-ARK01.avi
2015-10-10 20:56 - 2015-10-10 21:08 - 368222208 ____R C:\Users\madinina\Downloads\Once.Upon.A.Time.S05E01.FASTSUB.VOSTFR.HDTV.XviD-RUDY.avi
2015-10-10 19:48 - 2015-10-10 19:49 - 00000000 ____D C:\Users\madinina\Downloads\Lost.River.2014.LiMiTED.FRENCH.BDRip.x264-MELBA
2015-10-10 19:40 - 2015-10-10 19:40 - 00000000 ____D C:\Users\madinina\Downloads\Selma.2014.FRENCH.BDRip.XviD-DesTroY
2015-10-10 19:35 - 2015-10-10 21:48 - 1469038592 ____R C:\Users\madinina\Downloads\Southpaw.2015.FRENCH.BDRiP.XViD-AViTECH.avi
2015-10-07 22:13 - 2015-10-07 23:45 - 1468516359 ____R C:\Users\madinina\Downloads\Ted.2.2015.UNRATED.FRENCH.WEBRiP.XViD-AViTECH.avi
2015-10-07 22:10 - 2015-10-07 22:37 - 734222336 ____R C:\Users\madinina\Downloads\Mississippi.Grind.2015.FRENCH.WEBRiP.XViD-AViTECH.avi
2015-10-07 22:10 - 2015-10-07 22:37 - 733851648 ____R C:\Users\madinina\Downloads\Max.2015.FRENCH.WEBRiP.XViD-AViTECH.avi
2015-10-07 21:21 - 2015-10-07 21:45 - 743159816 ____R C:\Users\madinina\Downloads\Pixels.2015.FRENCH.WEBRiP.x264-AViTECH.mkv

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-11-06 13:32 - 2015-09-25 00:41 - 00003522 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-819639659-4150350305-585420797-1001
2015-11-06 13:32 - 2015-09-15 20:28 - 00003586 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-819639659-4150350305-585420797-1001
2015-11-06 13:32 - 2013-11-30 21:06 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-06 13:21 - 2015-09-21 18:24 - 02122748 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-06 13:21 - 2015-09-10 06:08 - 00929056 _____ C:\WINDOWS\system32\perfh00C.dat
2015-11-06 13:21 - 2015-09-10 06:08 - 00197038 _____ C:\WINDOWS\system32\perfc00C.dat
2015-11-06 13:19 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-06 13:16 - 2015-09-21 18:26 - 00000000 ____D C:\Users\madinina
2015-11-06 13:16 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-06 13:16 - 2015-07-10 10:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-11-06 13:16 - 2013-03-08 19:44 - 00000000 ____D C:\Users\madinina\AppData\Roaming\Yahoo!
2015-11-06 12:56 - 2014-03-17 15:55 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-11-06 12:35 - 2015-09-09 21:43 - 00004308 _____ C:\WINDOWS\PFRO.log
2015-11-06 12:35 - 2015-03-01 16:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-06 11:39 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-05 23:06 - 2013-02-02 18:41 - 00004172 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6DD82F00-90B5-492A-ABCF-CA26800E148E}
2015-11-05 23:01 - 2014-11-01 10:45 - 00000000 ____D C:\Users\madinina\Desktop\SANDRA
2015-11-05 22:01 - 2015-04-04 22:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-05 21:55 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-05 20:01 - 2014-08-02 12:52 - 00000000 ____D C:\Users\madinina\AppData\Local\PokerStars.FR
2015-11-04 12:02 - 2015-07-01 11:02 - 00000000 ____D C:\Users\madinina\Documents\caf
2015-11-04 10:25 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\rescache
2015-11-03 19:22 - 2015-09-21 19:00 - 00002428 _____ C:\Users\madinina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-03 19:22 - 2015-08-19 15:26 - 00000000 ___RD C:\Users\madinina\OneDrive
2015-11-03 11:23 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\appcompat
2015-11-02 12:15 - 2014-08-31 09:28 - 00000000 ____D C:\Users\madinina\AppData\Local\Adobe
2015-11-01 19:01 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-31 11:35 - 2014-12-29 11:12 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-10-31 11:35 - 2013-12-16 08:38 - 00000000 ____D C:\ProgramData\Adobe
2015-10-30 20:54 - 2015-07-30 23:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-29 13:31 - 2015-09-03 13:33 - 00051880 _____ C:\WINDOWS\DPINST.LOG
2015-10-29 13:31 - 2012-11-10 21:50 - 00000000 ____D C:\Users\madinina\AppData\Local\Downloaded Installations
2015-10-24 13:37 - 2015-09-21 19:06 - 00000000 ____D C:\Windows.old
2015-10-23 20:47 - 2015-08-19 16:21 - 00000000 ____D C:\Users\madinina\AppData\Roaming\vlc
2015-10-23 20:17 - 2012-07-28 16:32 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-23 20:17 - 2012-07-19 19:30 - 00000000 ____D C:\Users\madinina\AppData\Local\Google
2015-10-17 20:09 - 2015-04-26 13:03 - 00000000 ____D C:\Users\madinina\Downloads\Jugez Moi Coupable French DvdRip Xvid Ac3 llk
2015-10-16 15:40 - 2012-11-18 19:41 - 00000000 ____D C:\Users\madinina\Documents\GAEL
2015-10-16 15:39 - 2014-08-16 20:52 - 00000944 _____ C:\Users\madinina\Desktop\Downloads.lnk
2015-10-16 04:10 - 2015-09-30 23:28 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-16 04:10 - 2015-09-30 23:28 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-15 16:40 - 2013-02-25 00:17 - 00000000 ____D C:\Users\madinina\AppData\Roaming\CharliePoker
2015-10-14 07:40 - 2012-07-21 23:02 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 07:37 - 2009-07-14 03:34 - 00000478 _____ C:\WINDOWS\win.ini
2015-10-14 07:35 - 2013-07-20 13:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-14 07:28 - 2012-07-21 14:29 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-12 10:47 - 2015-07-30 22:49 - 00351376 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-11 16:01 - 2015-09-03 13:33 - 00000000 ____D C:\Program Files (x86)\HTC
2015-10-11 15:48 - 2015-09-03 13:33 - 00000000 ____D C:\Temp
2015-10-11 12:25 - 2015-09-21 18:20 - 00000000 ____D C:\Program Files (x86)\Samsung
2015-10-10 20:36 - 2015-09-21 21:42 - 00000000 ____D C:\Users\DefaultAppPool

==================== Fichiers à la racine de certains dossiers =======

2015-10-11 12:25 - 2015-10-11 12:25 - 0000000 _____ () C:\Program Files\Microsoft Security Client
2012-11-20 21:14 - 2012-11-20 21:14 - 0000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2013-09-17 15:36 - 2013-09-17 15:36 - 0132694 _____ () C:\Users\madinina\AppData\Local\ars.cache
2013-09-17 15:36 - 2013-09-17 15:36 - 0272457 _____ () C:\Users\madinina\AppData\Local\census.cache
2013-09-17 14:40 - 2013-09-17 14:40 - 0000036 _____ () C:\Users\madinina\AppData\Local\housecall.guid.cache
2015-10-30 23:43 - 2015-10-30 23:43 - 0000218 _____ () C:\Users\madinina\AppData\Local\recently-used.xbel
2012-11-28 13:19 - 2012-11-28 13:19 - 0000017 _____ () C:\Users\madinina\AppData\Local\resmon.resmoncfg
2012-08-08 15:36 - 2012-08-08 15:46 - 0000083 ___SH () C:\ProgramData\.zreglib
2015-09-21 18:22 - 2015-09-21 18:22 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Certains fichiers dans TEMP:
====================
C:\Users\madinina\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-10-31 11:29

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité