cjoint

Publicité


Publicité

Commentaire : RAPPORT FRST

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016
Exécuté par Théo DENISOT (administrateur) sur MSI-CX70 (04-02-2016 07:36:37)
Exécuté depuis C:\Users\Théo DENISOT\Desktop
Profils chargés: Théo DENISOT (Profils disponibles: Théo DENISOT)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Joyent, Inc) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2015-01-07] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [216576 2014-03-10] (Realtek Semiconductor Corporation)
HKLM\...\Run: [SCM] => c:\Program Files (x86)\SCM\SCM.exe [405504 2014-11-06] (MSI)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-09] (AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2304688 2015-12-15] (Adobe Systems Incorporated)
HKU\S-1-5-21-3848720558-837399475-1800476687-1001\...\Run: [C] => C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol [750 2016-02-03] ()
HKU\S-1-5-21-3848720558-837399475-1800476687-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37056 2016-02-01] (Glarysoft Ltd)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-11-14] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-09] (AVAST Software)
BootExecute: autocheck autochk *
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyEnable: [.DEFAULT] => Proxy est activé.
ProxyServer: [.DEFAULT] => http=127.0.0.1:52039;https=127.0.0.1:52039
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{ecb90034-6abc-47ca-84f8-519a8e769ad0}: [DhcpNameServer] 212.27.40.240 212.27.40.241

Internet Explorer:
==================
URLSearchHook: [S-1-5-21-3848720558-837399475-1800476687-1001] ATTENTION => URLSearchHook par défaut est absent
URLSearchHook: HKU\S-1-5-21-3848720558-837399475-1800476687-1001 - (Pas de nom) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - Pas de fichier
SearchScopes: HKU\S-1-5-21-3848720558-837399475-1800476687-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3848720558-837399475-1800476687-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-12-23] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-09] (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-12-23] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-09] (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-12-15] (Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-12-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-12-15] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-12-23] (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-09]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-09]

Chrome:
=======
CHR HomePage: Profile 2 -> hxxp://istart.webssearches.com/?type=hp&ts=1416407904&from=ill&uid=ST9750423AS_6WS02TAFXXXX6WS02TAF
CHR StartupUrls: Profile 2 -> "hxxp://google.fr/"
CHR Profile: C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-09]
CHR Extension: (Google Docs) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-09]
CHR Extension: (Google Drive) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-09]
CHR Extension: (YouTube) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-09]
CHR Extension: (Recherche Google) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-09]
CHR Extension: (Avast SafePrice) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-01-28]
CHR Extension: (Google Sheets) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-10]
CHR Extension: (AdBlock) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-28]
CHR Extension: (Avast Online Security) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-12-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-09]
CHR Extension: (Gmail) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-09]
CHR Profile: C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-03]
CHR Extension: (Google Docs) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-03]
CHR Extension: (Google Drive) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-03]
CHR Extension: (YouTube) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-03]
CHR Extension: (Recherche Google) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-03]
CHR Extension: (Avast SafePrice) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-02-03]
CHR Extension: (Google Sheets) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-03]
CHR Extension: (Avast Online Security) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-03]
CHR Extension: (Gmail) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-03]
CHR Profile: C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Slides) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-03]
CHR Extension: (Google Docs) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-03]
CHR Extension: (Google Drive) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-03]
CHR Extension: (YouTube) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-03]
CHR Extension: (Adblock Plus) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-03]
CHR Extension: (Recherche Google) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-03]
CHR Extension: (Avast SafePrice) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-02-03]
CHR Extension: (Google Sheets) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-03]
CHR Extension: (Avast Online Security) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-03]
CHR Extension: (Gmail) - C:\Users\Théo DENISOT\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-03]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-12-09]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-09]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [683696 2015-11-16] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016448 2015-11-25] (Adobe Systems, Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-09] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5561368 2015-12-09] (Avast Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [95232 2014-03-27] () [Fichier non signé]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)
R2 Micro Star SCM; c:\Program Files (x86)\SCM\MSIService.exe [160768 2014-11-06] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-10-20] (CyberLink)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065208 2016-01-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [464256 2016-01-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-09] (AVAST Software)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [20160 2016-02-03] (Glarysoft Ltd)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [193336 2015-12-09] (Intel Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [147088 2015-12-09] (AVAST Software)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [559832 2014-03-03] (Realtek Semiconductor Corporation)
R3 rtwlane_13; C:\Windows\System32\drivers\rtwlane_13.sys [3749888 2015-06-24] (Realtek Semiconductor Corporation )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [310904 2015-12-09] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 XSplit_Dummy; C:\Windows\system32\drivers\xspltspk.sys [26200 2015-05-25] (SplitmediaLabs Limited)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-04 07:36 - 2016-02-04 07:36 - 02370560 _____ (Farbar) C:\Users\Théo DENISOT\Desktop\FRST64.exe
2016-02-04 07:36 - 2016-02-04 07:36 - 00022652 _____ C:\Users\Théo DENISOT\Desktop\FRST.txt
2016-02-04 07:36 - 2016-02-04 07:36 - 00000000 ____D C:\FRST
2016-02-04 07:31 - 2016-02-04 07:31 - 00016148 _____ C:\WINDOWS\system32\MSI-CX70_Théo DENISOT_HistoryPrediction.bin
2016-02-04 07:31 - 2016-02-04 07:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-02-03 21:54 - 2016-02-03 22:13 - 00000000 ____D C:\Users\Théo DENISOT\Downloads\Adobe Premiere Pro CS6 6.0.0 LS7 Multilanguage [ChingLiu]
2016-02-03 21:45 - 2016-02-03 21:45 - 02065944 _____ (BitTorrent Inc.) C:\Users\Théo DENISOT\Downloads\uTorrent.exe
2016-02-03 20:27 - 2016-02-03 20:27 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\MicrosoftEdge
2016-02-03 20:19 - 2016-02-03 20:25 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-02-03 20:16 - 2016-02-03 20:17 - 03521617 _____ (Nicolas Coolman ) C:\Users\Théo DENISOT\Downloads\ZHPFix.exe
2016-02-03 20:13 - 2016-02-03 20:13 - 01064194 _____ C:\Users\Théo DENISOT\Downloads\SFTGC.exe
2016-02-03 17:35 - 2016-02-03 20:21 - 00000214 _____ C:\Users\Théo
2016-02-03 17:34 - 2016-02-03 20:24 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\ZHP
2016-02-03 17:34 - 2016-02-03 17:34 - 02110464 _____ C:\Users\Théo DENISOT\Downloads\ZHPDiag3.exe
2016-02-03 16:58 - 2016-02-03 16:58 - 00002342 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-03 16:58 - 2016-02-03 16:58 - 00002330 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-03 16:55 - 2016-02-04 07:31 - 00001090 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-03 16:55 - 2016-02-03 22:06 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-03 16:55 - 2016-02-03 17:01 - 00004152 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 16:55 - 2016-02-03 17:01 - 00003920 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-03 16:55 - 2016-02-03 16:55 - 00880784 _____ (Google Inc.) C:\Users\Théo DENISOT\Downloads\ChromeSetup [1].exe
2016-02-03 16:50 - 2016-02-04 07:34 - 00004176 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{64886154-9B9A-43B9-B388-46137FD24802}
2016-02-03 15:38 - 2016-02-03 16:25 - 00000000 ____D C:\AdwCleaner
2016-02-03 15:35 - 2016-02-04 07:31 - 00000000 ___RD C:\Users\Théo DENISOT\Creative Cloud Files
2016-02-03 15:35 - 2016-02-03 15:36 - 00000000 ____D C:\ProgramData\iWdMi
2016-02-03 15:34 - 2016-02-03 15:34 - 00001298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-02-03 15:34 - 2016-02-03 15:34 - 00001286 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-02-03 15:13 - 2016-02-03 15:13 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2016-02-03 15:13 - 2016-02-03 15:13 - 00000000 ____D C:\Users\Public\Documents\Adobe
2016-02-03 15:09 - 2016-02-03 15:09 - 00001161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2016-02-03 15:09 - 2016-02-03 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2016-02-03 15:08 - 2016-02-04 07:31 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
2016-02-03 15:08 - 2016-02-03 15:12 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\GlarySoft
2016-02-03 15:08 - 2016-02-03 15:08 - 00020160 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
2016-02-03 15:08 - 2016-02-03 15:08 - 00003396 _____ C:\WINDOWS\System32\Tasks\GlaryInitialize 5
2016-02-03 15:08 - 2016-02-03 15:08 - 00003042 _____ C:\WINDOWS\System32\Tasks\GU5SkipUAC
2016-02-03 15:08 - 2016-02-03 15:08 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\DiskDefrag
2016-02-03 14:46 - 2016-02-03 14:46 - 00000110 _____ C:\WINDOWS\SysWOW64\L
2016-02-03 14:44 - 2016-02-03 15:39 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-02-03 14:44 - 2016-02-03 14:44 - 00000008 __RSH C:\Users\Théo DENISOT\ntuser.pol
2016-02-02 21:55 - 2016-02-02 21:55 - 00042981 _____ C:\Users\Théo DENISOT\AppData\Local\recently-used.xbel
2016-02-02 21:26 - 2016-02-02 21:26 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\inkscape
2016-02-02 21:24 - 2016-02-02 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape 0.91
2016-02-02 21:24 - 2016-02-02 21:24 - 00000000 ____D C:\Program Files\Inkscape
2016-01-31 17:32 - 2016-01-31 17:32 - 02004598 _____ C:\Users\Théo DENISOT\Desktop\Tuto perspective.pdf
2016-01-30 19:29 - 2016-01-30 19:29 - 00001243 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS6.lnk
2016-01-30 19:28 - 2016-01-30 19:28 - 00001596 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2016-01-30 19:28 - 2016-01-30 19:28 - 00001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS6.lnk
2016-01-30 12:08 - 2016-01-30 12:11 - 00000000 ____D C:\Users\Théo DENISOT\Desktop\Wallpapers
2016-01-26 18:12 - 2016-01-26 18:12 - 00000000 ____D C:\Users\Théo DENISOT\Documents\Modèles Office personnalisés
2016-01-24 17:15 - 2016-01-24 17:15 - 00003668 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-theodenisot@gmail.com
2016-01-24 17:02 - 2016-02-03 15:14 - 00000000 ____D C:\Program Files\Adobe
2016-01-24 17:01 - 2016-02-03 15:37 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-01-24 16:04 - 2016-02-03 22:27 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\uTorrent
2016-01-23 17:35 - 2016-02-03 15:36 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-01-23 17:31 - 2016-02-03 15:35 - 00000000 ____D C:\ProgramData\Adobe
2016-01-23 17:17 - 2016-01-24 17:03 - 00000000 ____D C:\Users\Théo DENISOT\Documents\Adobe
2016-01-23 11:46 - 2016-01-23 11:46 - 00000112 ____H C:\A4E1C79979DC
2016-01-23 11:46 - 2016-01-23 11:46 - 00000040 ____H C:\F3748DD14E61
2016-01-23 11:45 - 2016-01-23 11:45 - 00000000 ____D C:\Program Files (x86)\AdobePhotoshopCS6Portable
2016-01-21 23:19 - 2016-01-21 23:19 - 00000895 _____ C:\WINDOWS\SysWOW64\${LOGFILE}
2016-01-13 15:42 - 2016-01-13 15:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-13 07:27 - 2016-01-05 03:18 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-01-13 07:27 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-01-13 07:27 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-01-13 07:26 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-01-13 07:26 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-01-13 07:26 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-01-13 07:26 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-01-13 07:26 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-01-13 07:26 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-01-13 07:26 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-01-13 07:26 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-01-13 07:26 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-01-13 07:26 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-01-13 07:26 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-01-13 07:26 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-01-13 07:26 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-01-13 07:26 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-01-13 07:26 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-01-13 07:26 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-01-13 07:26 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-01-13 07:26 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-01-13 07:26 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-01-13 07:26 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-01-13 07:26 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-01-13 07:26 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-01-13 07:26 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-01-13 07:26 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-01-13 07:26 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-01-13 07:26 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-01-13 07:26 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-01-13 07:26 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-01-13 07:26 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-01-13 07:26 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-01-13 07:26 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-01-13 07:26 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-01-13 07:26 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-01-13 07:26 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-01-13 07:26 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-01-13 07:26 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-01-13 07:26 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-01-13 07:26 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-01-13 07:26 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-01-13 07:26 - 2016-01-05 03:15 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-01-13 07:26 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2016-01-13 07:26 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-01-13 07:26 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll
2016-01-13 07:26 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2016-01-13 07:26 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-01-13 07:26 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-01-13 07:26 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-01-13 07:26 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-01-13 07:26 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-01-13 07:26 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-01-13 07:26 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-01-13 07:26 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-01-13 07:26 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-01-13 07:26 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-01-13 07:26 - 2016-01-05 03:00 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-01-13 07:26 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-01-13 07:26 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-01-13 07:26 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-01-13 07:26 - 2016-01-05 02:56 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-01-13 07:26 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-01-13 07:26 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-01-13 07:26 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-01-13 07:26 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-01-13 07:26 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-01-13 07:26 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-01-13 07:26 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll
2016-01-13 07:26 - 2016-01-05 02:43 - 19324928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-01-13 07:26 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2016-01-13 07:26 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2016-01-13 07:26 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-01-13 07:26 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-01-13 07:26 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-01-13 07:26 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-01-13 07:26 - 2016-01-05 02:30 - 18802176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-01-13 07:26 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-01-13 07:26 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-01-13 07:26 - 2016-01-05 02:24 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-01-13 07:26 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-01-13 07:26 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-01-13 07:26 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-01-13 07:26 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-01-13 07:26 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-01-11 17:15 - 2016-01-11 17:15 - 25281183 _____ C:\Users\Théo DENISOT\Documents\fumée.mp4
2016-01-10 12:53 - 2016-01-10 12:53 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2016-01-09 20:06 - 2016-02-03 07:28 - 00000000 ____D C:\Users\Théo DENISOT\Desktop\Magic Waves
2016-01-09 19:19 - 2016-01-09 19:25 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\IrfanView
2016-01-08 19:40 - 2016-01-27 17:07 - 00000000 ____D C:\Users\Théo DENISOT\Documents\CyberLink
2016-01-08 19:40 - 2016-01-27 17:01 - 00000000 ____D C:\Users\Public\CyberLink
2016-01-08 19:34 - 2016-01-08 19:40 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\CyberLink
2016-01-08 19:34 - 2016-01-08 19:34 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\CyberLink
2016-01-08 19:17 - 2016-01-08 19:17 - 00002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Screen Recorder.lnk
2016-01-08 19:17 - 2016-01-08 19:17 - 00002065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 14 (64-bit).lnk
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\proDAD
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Users\Théo DENISOT\AppData\LocalLow\Apple Computer
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\ProgramData\proDAD
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Program Files\proDAD
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Program Files\NewBlue
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Program Files\Common Files\NewBlue
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Program Files (x86)\NewBlue
2016-01-08 19:17 - 2016-01-08 19:17 - 00000000 ____D C:\Program Files (x86)\CyberLink
2016-01-08 19:17 - 2015-08-27 19:41 - 00607256 _____ (proDAD GmbH) C:\WINDOWS\system32\prodad-codec.dll
2016-01-08 19:17 - 2015-08-27 19:41 - 00376344 _____ (proDAD GmbH) C:\WINDOWS\system32\proDAD-PA-Support.dll
2016-01-08 19:16 - 2016-01-08 19:17 - 00000000 ____D C:\Program Files\CyberLink
2016-01-08 19:15 - 2016-01-22 16:38 - 00000000 ____D C:\ProgramData\CyberLink
2016-01-08 19:15 - 2016-01-08 19:15 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2016-01-08 19:15 - 2016-01-08 19:15 - 00000000 ____D C:\ProgramData\install_clap
2016-01-08 19:08 - 2016-01-08 19:08 - 00000000 ____D C:\Users\Théo DENISOT\Documents\Giorgio by morder_data
2016-01-08 18:55 - 2016-01-08 18:55 - 00000000 ____D C:\Users\Théo DENISOT\Documents\Im picky_data
2016-01-08 18:48 - 2016-01-08 18:48 - 00000000 ____D C:\Users\Théo DENISOT\Documents\burn it down_data
2016-01-08 18:42 - 2016-01-08 18:42 - 00000000 ____D C:\Users\Théo DENISOT\Documents\Madness_data
2016-01-08 18:30 - 2016-01-08 18:30 - 00000000 ____D C:\Users\Théo DENISOT\Documents\Coldplay_data
2016-01-08 18:14 - 2016-01-08 19:48 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\Audacity
2016-01-08 18:14 - 2016-01-08 18:14 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-01-08 18:14 - 2016-01-08 18:14 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-01-08 18:03 - 2016-01-23 17:18 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\NVIDIA
2016-01-08 17:56 - 2016-01-08 17:56 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\SplitMediaLabs
2016-01-08 17:55 - 2016-01-08 17:55 - 00000000 ____D C:\ProgramData\SplitMediaLabs
2016-01-08 17:55 - 2016-01-08 17:55 - 00000000 ____D C:\Program Files (x86)\SplitmediaLabs
2016-01-08 17:54 - 2016-01-08 17:54 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\SplitmediaLabs
2016-01-08 17:18 - 2016-01-08 17:18 - 00001447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2016-01-08 17:18 - 2016-01-08 17:18 - 00001378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2016-01-08 17:18 - 2016-01-08 17:18 - 00000000 ____D C:\WINDOWS\fr
2016-01-08 17:16 - 2016-01-08 17:16 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-01-08 17:15 - 2016-01-08 17:16 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-01-08 17:15 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-01-08 17:15 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-01-08 17:15 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-01-08 17:15 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-01-08 17:15 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-01-08 17:15 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-01-08 17:15 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-01-08 17:15 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-01-08 17:15 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-01-08 17:14 - 2016-01-11 17:07 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\Windows Live

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-04 07:34 - 2015-12-09 13:19 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\Adobe
2016-02-04 07:31 - 2015-12-09 11:14 - 00000000 __SHD C:\Users\Théo DENISOT\IntelGraphicsProfiles
2016-02-04 07:31 - 2015-12-08 21:42 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-03 22:15 - 2015-12-29 12:15 - 00000937 _____ C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Update {C5C53428-C282-4DB3-90EF-EC79D451A8A7}.job
2016-02-03 22:15 - 2015-12-29 12:15 - 00000751 _____ C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Invitation {C5C53428-C282-4DB3-90EF-EC79D451A8A7}.job
2016-02-03 22:15 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-02-03 21:58 - 2015-12-09 13:05 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\Skype
2016-02-03 21:46 - 2015-12-09 12:30 - 00000000 ____D C:\Users\Théo DENISOT\Desktop\Logiciel
2016-02-03 20:40 - 2015-12-25 16:16 - 00000000 ____D C:\Users\Théo DENISOT\Desktop\Musique
2016-02-03 20:40 - 2015-12-09 12:41 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-02-03 20:19 - 2015-12-09 13:15 - 00000000 ____D C:\WINDOWS\AutoKMS
2016-02-03 20:10 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-03 16:58 - 2015-12-09 12:33 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-03 16:30 - 2015-12-08 21:48 - 01839260 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-03 16:30 - 2015-09-10 06:08 - 00821020 _____ C:\WINDOWS\system32\perfh00C.dat
2016-02-03 16:30 - 2015-09-10 06:08 - 00154350 _____ C:\WINDOWS\system32\perfc00C.dat
2016-02-03 16:30 - 2015-07-30 23:40 - 00000000 ____D C:\WINDOWS\INF
2016-02-03 16:26 - 2015-12-09 11:14 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\Adobe
2016-02-03 16:25 - 2015-12-09 11:14 - 00000000 ____D C:\Users\Théo DENISOT
2016-02-03 16:25 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-03 16:25 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-02-03 15:39 - 2015-07-30 22:49 - 05033560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-03 15:34 - 2015-09-10 06:54 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-03 15:14 - 2016-01-03 15:26 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\JDownloader v2.0
2016-02-03 14:46 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-02-03 14:44 - 2015-07-30 23:42 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-02-02 21:41 - 2015-12-25 23:54 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\gtk-2.0
2016-02-02 21:41 - 2015-12-25 23:38 - 00000000 ____D C:\Users\Théo DENISOT\.gimp-2.8
2016-02-02 17:19 - 2015-07-30 23:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-28 19:45 - 2015-12-09 13:20 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\vlc
2016-01-25 20:36 - 2015-12-08 22:40 - 00000000 ___DC C:\WINDOWS\Panther
2016-01-25 20:34 - 2015-10-30 20:24 - 00000000 ___HD C:\$WINDOWS.~BT
2016-01-24 15:50 - 2015-12-09 11:50 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-23 14:49 - 2015-12-29 15:07 - 00000000 ____D C:\Users\Théo DENISOT\Documents\ManiaPlanet
2016-01-23 14:36 - 2015-12-29 15:07 - 00000000 ____D C:\ProgramData\ManiaPlanet
2016-01-22 18:56 - 2016-01-03 19:54 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Roaming\dvdcss
2016-01-20 21:18 - 2015-12-09 12:58 - 01065208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-01-20 21:18 - 2015-12-09 12:58 - 00464256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-01-16 17:12 - 2015-07-30 23:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-15 17:24 - 2015-12-09 13:05 - 00000000 ____D C:\Users\Théo DENISOT\AppData\Local\Google
2016-01-14 21:48 - 2015-12-09 12:42 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-14 21:48 - 2015-12-09 12:42 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-13 15:47 - 2015-12-28 23:48 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-13 15:45 - 2015-12-28 23:48 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-13 15:44 - 2015-12-09 13:14 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-01-13 15:41 - 2015-07-30 23:42 - 00000167 _____ C:\WINDOWS\win.ini
2016-01-13 14:20 - 2015-12-25 16:15 - 00000000 ____D C:\Users\Théo DENISOT\Desktop\Travail
2016-01-08 19:17 - 2015-12-09 11:23 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

==================== Fichiers à la racine de certains dossiers =======

2015-12-09 11:50 - 2016-02-04 07:31 - 0171068 _____ () C:\Users\Théo DENISOT\AppData\Local\BTServer.log
2016-02-02 21:55 - 2016-02-02 21:55 - 0042981 _____ () C:\Users\Théo DENISOT\AppData\Local\recently-used.xbel
2015-12-09 13:19 - 2015-12-09 13:19 - 0000108 _____ () C:\ProgramData\CameraRecorder.ini

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-01-25 19:26

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité