cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Exécuté par Vinciane (administrateur) sur PC-SALON (31-03-2016 12:32:08)
Exécuté depuis C:\Users\Vinciane\Desktop
Profils chargés: Vinciane (Profils disponibles: Vinciane)
Platform: Windows 8.1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Conduit) C:\Users\Vinciane\AppData\Local\ValueApps\ValueApps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Windows\SysWOW64\UMonit64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Users\Vinciane\AppData\Local\ValueApps\ValueAppsTrayIcon.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [894048 2013-01-12] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-18] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296520 2013-09-12] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-21] (Avast Software s.r.o.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3199634993-518937472-4119080787-1001\...\Run: [ValueAppsTrayIcon] => C:\Users\Vinciane\AppData\Local\ValueApps\ValueAppsTrayIcon.exe [20280 2014-03-13] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-21] (Avast Software s.r.o.)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyEnable: [.DEFAULT] => Proxy est activé.
ProxyServer: [.DEFAULT] => http=127.0.0.1:60083;https=127.0.0.1:60083
Winsock: Catalog9 01 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit)
Winsock: Catalog9 02 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit)
Winsock: Catalog9 03 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit)
Winsock: Catalog9 04 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit)
Winsock: Catalog9 16 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit)
Winsock: Catalog9-x64 01 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit)
Winsock: Catalog9-x64 02 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit)
Winsock: Catalog9-x64 03 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit)
Winsock: Catalog9-x64 04 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit)
Winsock: Catalog9-x64 16 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C0BBBB6C-4FD7-49DA-A8E6-F6620355C053}: [DhcpNameServer] 40.41.1.201 40.41.1.203
Tcpip\..\Interfaces\{FA6FE8E4-C8BB-454B-BC58-059C841DE510}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com?fr=hp-avast&type=avastbcl
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3199634993-518937472-4119080787-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-3199634993-518937472-4119080787-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?gd=&ctid=CT3319415&octid=EB_ORIGINAL_CTID&ISID=M65AD2808-6810-4FC8-AE7B-D7C5307DC4EE&SearchSource=55&CUI=&UM=5&UP=SP1840C35D-8E84-4E96-9960-FBA300A1D8EE&SSPV=
SearchScopes: HKLM -> DefaultScope {D041A96F-27FA-4787-AB93-0087CDE1FF2A} URL = hxxp://speedial.com/results.php?f=4&q={searchTerms}&a=spd_tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyDyCyB0EyE0FzztG0Fzy0B0EtGyCtByD0AtGzztAzz0DtGyB0DzyyBzztDtAyCzyyBzytA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=1537163213&ir=
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {31090377-0740-419E-BEFC-A56E50500D5B} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyD0DzztC0E0DyBzytGtBtA0AtCtGtB0CyEzztGtC0C0BtBtGyB0FzytD0F0CyD0FyE0D0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=747175941&ir=
SearchScopes: HKLM -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyEtB0C0ByEyDyD0FtGzyzyzztAtGtB0Bzz0FtGyBtBtCyCtGyCtB0FtCyByE0EyDzyyEyCtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=959382111&ir=
SearchScopes: HKLM -> {D041A96F-27FA-4787-AB93-0087CDE1FF2A} URL = hxxp://speedial.com/results.php?f=4&q={searchTerms}&a=spd_tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyDyCyB0EyE0FzztG0Fzy0B0EtGyCtByD0AtGzztAzz0DtGyB0DzyyBzztDtAyCzyyBzytA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=1537163213&ir=
SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3319415&octid=EB_ORIGINAL_CTID&ISID=M65AD2808-6810-4FC8-AE7B-D7C5307DC4EE&SearchSource=58&CUI=&UM=5&UP=SP1840C35D-8E84-4E96-9960-FBA300A1D8EE&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {31090377-0740-419E-BEFC-A56E50500D5B} URL =
SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-21] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\ssv.dll [2016-03-29] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-21] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-03-29] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-04-19] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Vinciane\AppData\Roaming\Mozilla\Firefox\Profiles\d7ordo0a.default-1448720446826
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-23] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-23] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-03-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-03-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-19] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-12-21] (Adobe Systems Inc.)
FF Extension: cacaoweb - C:\Users\Vinciane\AppData\Roaming\Mozilla\Firefox\Profiles\d7ordo0a.default-1448720446826\Extensions\cacaoweb@cacaoweb.org [2016-01-20] [non signé]
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-20] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-11]

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://www.allobebe.fr/favicon.png?123456
CHR Profile: C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-06]
CHR Extension: (Google Docs) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-04]
CHR Extension: (Google Drive) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30]
CHR Extension: (Recherche Google) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Sheets) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-25]
CHR Extension: (Avast Online Security) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-13]
CHR Extension: (Bouton Pin It) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2015-09-24]
CHR Extension: (Ma liste de naissance
allobébé) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcgfdfagankgcpmgeljfidbabneggbbo [2015-12-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-27]
CHR Extension: (Gmail) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-21]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-08-22] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-21] (Avast Software s.r.o.)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1854056 2012-12-07] (Microsoft Corporation)
R3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-07-19] (Toshiba Europe GmbH)
R2 ValueApps; C:\Users\Vinciane\AppData\Local\ValueApps\ValueApps.exe [2149176 2014-03-13] (Conduit)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-21] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-21] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-21] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-04] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-21] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-21] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-24] (Qualcomm Atheros Communications, Inc.)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [105704 2013-08-16] (GenesysLogic)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.)
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2014-08-06] (Synaptics Incorporated)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R1 {29b136c9-938d-4d3d-8df8-d649d9b74d02}Gw64; C:\Windows\System32\drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}Gw64.sys [61120 2014-04-24] (StdLib)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-03-31 12:32 - 2016-03-31 12:32 - 00022172 _____ C:\Users\Vinciane\Desktop\FRST.txt
2016-03-31 12:31 - 2016-03-31 12:32 - 00000000 ____D C:\FRST
2016-03-31 12:29 - 2016-03-31 12:30 - 02374144 _____ (Farbar) C:\Users\Vinciane\Desktop\FRST64.exe
2016-03-31 12:24 - 2016-03-31 12:25 - 01725440 _____ (Farbar) C:\Users\Vinciane\Downloads\FRST.exe
2016-03-30 09:52 - 2016-03-30 09:56 - 06846688 _____ C:\Users\Vinciane\Downloads\pieces jointes_30_03_2016(1).zip
2016-03-30 09:47 - 2016-03-30 09:53 - 10535315 _____ C:\Users\Vinciane\Downloads\pieces jointes_30_03_2016.zip
2016-03-29 20:12 - 2016-03-29 20:12 - 00000000 ____D C:\Users\Vinciane\AppData\Roaming\Sun
2016-03-29 20:12 - 2016-03-29 20:12 - 00000000 ____D C:\Users\Vinciane\.oracle_jre_usage
2016-03-29 20:10 - 2016-03-29 20:10 - 00000000 ____D C:\Users\Vinciane\AppData\LocalLow\Oracle
2016-03-25 20:06 - 2016-03-08 09:00 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-03-25 20:06 - 2016-03-08 09:00 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-20 17:14 - 2016-03-25 20:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-09 21:23 - 2016-02-20 17:45 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 21:23 - 2016-02-20 17:45 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 21:23 - 2016-02-20 17:45 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 21:23 - 2016-02-20 17:45 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 21:23 - 2016-02-20 17:45 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 21:23 - 2016-02-20 17:45 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-09 21:23 - 2016-02-05 21:06 - 00046768 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 21:23 - 2016-01-24 20:19 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-03-09 21:23 - 2016-01-24 20:19 - 00378712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-03-09 21:23 - 2016-01-24 20:19 - 00331608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2016-03-09 21:23 - 2016-01-24 13:57 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2016-03-09 21:23 - 2016-01-24 13:45 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2016-03-09 21:23 - 2016-01-06 20:25 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-03-09 21:23 - 2015-12-30 23:53 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-09 21:22 - 2016-02-06 18:58 - 00987648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-09 21:22 - 2016-02-06 18:32 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-09 21:22 - 2016-01-15 18:56 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2016-03-09 21:22 - 2016-01-15 18:45 - 01482240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2016-03-09 21:22 - 2016-01-10 18:41 - 01707008 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-03-09 21:22 - 2016-01-10 18:31 - 01344512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-03-09 21:22 - 2016-01-09 03:49 - 00218448 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2016-03-09 21:22 - 2016-01-09 03:49 - 00192120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2016-03-09 21:22 - 2016-01-07 01:46 - 00148752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2016-03-09 21:22 - 2016-01-07 01:45 - 00177712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2016-03-09 21:22 - 2016-01-06 18:47 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-03-09 21:22 - 2016-01-05 17:00 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-03-09 21:22 - 2015-12-30 22:49 - 00470360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-03-09 21:22 - 2015-12-20 16:57 - 00839168 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-03-09 21:22 - 2015-12-20 16:56 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2016-03-09 21:22 - 2015-12-20 16:43 - 00696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2016-03-09 21:22 - 2015-11-19 16:33 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-09 21:22 - 2015-11-19 16:26 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-09 21:21 - 2016-01-09 03:38 - 00091992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-03-09 21:02 - 2016-03-25 19:35 - 00013520 _____ C:\Users\Vinciane\Desktop\bapteme Leandrinou.ods
2016-03-09 15:22 - 2016-03-09 15:22 - 00623512 _____ C:\Users\Vinciane\Downloads\fermeture relais affichette jaune mars 2016.pdf
2016-03-09 15:20 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-09 15:20 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-09 15:20 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-09 15:20 - 2016-02-08 22:29 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-03-09 15:20 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-09 15:20 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-09 15:20 - 2016-02-08 22:07 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-03-09 15:20 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-09 15:20 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-09 15:20 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-09 15:20 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-09 15:20 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-09 15:20 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-09 15:20 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-09 15:20 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-09 15:20 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-09 15:20 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-09 15:20 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-09 15:20 - 2016-02-08 20:14 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-03-09 15:20 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-09 15:20 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-09 15:20 - 2016-02-08 19:42 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-03-09 15:20 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-09 15:20 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-09 15:20 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-09 15:20 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-09 15:20 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-09 15:20 - 2016-02-08 19:15 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-03-09 15:20 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-09 15:20 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-09 15:18 - 2016-02-05 16:59 - 07784960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-03-09 15:18 - 2016-02-05 16:55 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-03-09 15:18 - 2016-02-05 16:48 - 07075840 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2016-03-09 15:18 - 2016-02-05 16:47 - 05268480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2016-03-09 15:17 - 2016-02-12 21:14 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-09 15:17 - 2016-02-12 17:14 - 03708416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-09 15:17 - 2016-02-12 16:55 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2016-03-09 15:17 - 2016-02-12 16:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-09 15:17 - 2016-02-12 16:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-09 15:17 - 2016-02-12 16:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-09 15:17 - 2016-02-12 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-09 15:17 - 2016-02-12 16:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-09 15:17 - 2016-02-12 16:51 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-09 15:17 - 2016-02-12 16:48 - 02244096 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-09 15:17 - 2016-02-12 16:47 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-09 15:17 - 2016-02-12 16:46 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-09 15:17 - 2016-02-11 16:21 - 00869576 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2016-03-09 15:17 - 2016-02-11 16:21 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2016-03-09 15:17 - 2016-02-11 16:20 - 00875720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2016-03-09 15:17 - 2016-02-11 16:20 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2016-03-09 15:17 - 2016-02-06 20:08 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-09 15:17 - 2016-02-05 21:07 - 00292696 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL
2016-03-09 15:17 - 2016-02-05 21:07 - 00243032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL
2016-03-09 15:17 - 2016-02-05 17:03 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-09 15:17 - 2016-02-05 17:00 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-09 15:17 - 2016-02-04 20:18 - 04174336 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-09 15:17 - 2016-02-04 20:18 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-09 15:17 - 2016-02-04 20:12 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-09 15:17 - 2016-02-04 19:44 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-09 15:17 - 2016-02-04 19:39 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-09 15:17 - 2016-02-04 19:24 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-09 15:17 - 2016-02-04 19:02 - 00483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-03-09 15:17 - 2016-02-03 22:37 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-03-09 15:17 - 2016-02-03 22:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-03-09 15:17 - 2016-02-03 17:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-03-09 15:17 - 2016-02-03 17:00 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-09 15:17 - 2016-02-03 17:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-09 15:17 - 2016-01-31 21:16 - 00148832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-08 18:42 - 2016-03-08 18:42 - 00107621 _____ C:\Users\Vinciane\Downloads\LCL - Le Crédit Lyonnais.pdf
2016-03-08 18:40 - 2016-03-08 18:40 - 00013672 _____ C:\Users\Vinciane\Downloads\OIS199PF_160308_103317_389717_715861997224 (1).PDF
2016-03-08 15:47 - 2016-03-08 15:47 - 00013672 _____ C:\Users\Vinciane\Downloads\OIS199PF_160308_103317_389717_715861997224.PDF
2016-03-07 17:26 - 2016-03-07 17:29 - 11239434 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (6).zip
2016-03-07 15:17 - 2016-03-07 15:19 - 08885722 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (5).zip
2016-03-07 15:07 - 2016-03-07 15:09 - 08160920 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (4).zip
2016-03-07 14:58 - 2016-03-07 15:00 - 07464051 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (3).zip
2016-03-07 14:54 - 2016-03-07 14:56 - 09843664 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (2).zip
2016-03-07 14:49 - 2016-03-07 14:55 - 24087707 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (1).zip
2016-03-07 14:41 - 2016-03-07 14:46 - 26645766 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016.zip

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-03-31 12:22 - 2014-03-29 16:44 - 00003948 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{966D2F21-AA14-4F90-A622-B7E4D98CD01B}
2016-03-31 11:58 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-03-31 11:47 - 2014-05-09 12:43 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-30 21:04 - 2015-07-04 08:44 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-30 10:03 - 2014-12-22 13:32 - 00867328 ___SH C:\Users\Vinciane\Downloads\Thumbs.db
2016-03-29 20:21 - 2014-03-29 16:45 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3199634993-518937472-4119080787-1001
2016-03-29 20:14 - 2014-03-29 16:43 - 00000000 ___DO C:\Users\Vinciane\SkyDrive
2016-03-29 20:14 - 2013-09-11 01:32 - 03641726 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-29 20:14 - 2013-08-28 17:57 - 00788756 _____ C:\Windows\system32\prfh0816.dat
2016-03-29 20:14 - 2013-08-28 17:57 - 00163828 _____ C:\Windows\system32\prfc0816.dat
2016-03-29 20:14 - 2013-08-28 17:49 - 00714814 _____ C:\Windows\system32\perfh01F.dat
2016-03-29 20:14 - 2013-08-28 17:49 - 00149960 _____ C:\Windows\system32\perfc01F.dat
2016-03-29 20:14 - 2013-08-28 17:40 - 00812350 _____ C:\Windows\system32\perfh00C.dat
2016-03-29 20:14 - 2013-08-28 17:40 - 00159412 _____ C:\Windows\system32\perfc00C.dat
2016-03-29 20:13 - 2014-04-21 20:11 - 00001093 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-03-29 20:12 - 2014-12-10 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-29 20:12 - 2014-03-29 16:37 - 00000000 ____D C:\Users\Vinciane
2016-03-29 20:11 - 2014-12-10 22:43 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-29 20:10 - 2015-07-04 08:44 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-29 20:10 - 2014-12-10 22:43 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-29 20:06 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-29 19:04 - 2015-06-24 18:49 - 00000000 ____D C:\Users\Vinciane\AppData\Local\avabvdxvy
2016-03-29 19:04 - 2015-06-14 11:59 - 00000000 ____D C:\Users\Vinciane\AppData\Local\avabvbavad
2016-03-29 18:51 - 2014-03-29 19:49 - 00000000 ____D C:\Program Files (x86)\Mega Browse
2016-03-29 18:33 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-03-29 18:29 - 2015-04-08 06:50 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-03-29 18:29 - 2015-04-08 06:50 - 00000000 ___SD C:\Windows\system32\GWX
2016-03-29 18:28 - 2014-04-21 18:39 - 00000000 ____D C:\Users\Vinciane\AppData\Local\ValueApps
2016-03-28 08:57 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-03-25 21:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-03-25 20:11 - 2015-11-28 16:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-25 20:04 - 2013-08-22 16:44 - 00509632 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-25 19:59 - 2014-12-13 21:12 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-25 19:35 - 2016-02-21 22:12 - 00028994 _____ C:\Users\Vinciane\Desktop\CONTRAT NOUNOU MME DUSSAUX.odt
2016-03-25 19:35 - 2014-05-01 18:22 - 01348096 ___SH C:\Users\Vinciane\Desktop\Thumbs.db
2016-03-24 01:48 - 2014-05-09 12:43 - 00003890 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-03-15 15:08 - 2015-07-04 08:46 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-15 15:08 - 2015-07-04 08:46 - 00002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-14 20:25 - 2013-09-12 03:02 - 00000000 ____D C:\Windows\Panther
2016-03-14 20:19 - 2016-02-13 16:22 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-14 07:53 - 2014-04-21 20:31 - 00000000 ____D C:\Users\Vinciane\AppData\Roaming\vlc
2016-03-12 20:48 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-03-09 21:44 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-09 21:43 - 2014-04-02 21:28 - 00000000 ____D C:\Windows\system32\MRT
2016-03-09 21:33 - 2014-04-02 21:27 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers =======

2014-05-02 22:34 - 2014-05-02 22:34 - 0000042 _____ () C:\Users\Vinciane\AppData\Roaming\WB.CFG

Certains fichiers dans TEMP:
====================
C:\Users\Vinciane\AppData\Local\Temp\cct.dll
C:\Users\Vinciane\AppData\Local\Temp\dlLogic.exe
C:\Users\Vinciane\AppData\Local\Temp\JavaIC.dll
C:\Users\Vinciane\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Vinciane\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Vinciane\AppData\Local\Temp\jre-8u40-windows-au.exe
C:\Users\Vinciane\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Vinciane\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Vinciane\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Vinciane\AppData\Local\Temp\jre-8u66-windows-au.exe
C:\Users\Vinciane\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Vinciane\AppData\Local\Temp\msscct32.dll
C:\Users\Vinciane\AppData\Local\Temp\nslD7A6.exe
C:\Users\Vinciane\AppData\Local\Temp\nsnD023.exe
C:\Users\Vinciane\AppData\Local\Temp\nsp5572.exe
C:\Users\Vinciane\AppData\Local\Temp\nsw4D72.exe
C:\Users\Vinciane\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Vinciane\AppData\Local\Temp\SetupO365HomePremRetail.x86.fr-FR_O365HomePremRetail_C8QJD-6GNX4-MX4JJ-3Y349-WTWGJ_act_1_.exe
C:\Users\Vinciane\AppData\Local\Temp\SetupO365HomePremRetail.x86.fr-FR_O365HomePremRetail_G2NXQ-2Y9XV-9XF2M-PWB2J-YPXCW_act_1_.exe
C:\Users\Vinciane\AppData\Local\Temp\SpOrder.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite10371.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite12636.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite13350.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite13550.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite14271.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite14534.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite15116.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite15978.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite16105.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite16149.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite17122.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite17579.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite18107.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite18839.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite19337.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite20722.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite21835.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite22899.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite25434.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite26115.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite26317.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite27076.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite27330.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite28406.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite29075.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite29312.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite31574.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite31777.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite31788.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite32470.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite34046.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite34780.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite34999.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite36049.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite36266.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite37498.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite38820.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite38913.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite39634.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite40615.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43176.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43204.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43241.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43715.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite45674.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46250.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46281.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46559.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46980.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite47489.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite47533.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite48488.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite48757.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite48834.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite49659.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite49827.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite50357.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite51911.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite53050.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite53060.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite54659.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite54679.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite54723.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite55293.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite55893.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite56151.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite56215.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite56264.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite58568.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite59259.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite60829.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite61400.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite62491.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite62545.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite63675.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite63883.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite64785.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite64832.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite66223.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite66777.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite66930.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite67241.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite67723.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite67730.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite68469.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite68827.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite69949.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite70894.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite71268.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite71274.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite72182.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite72462.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite76308.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite76574.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite80139.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite80820.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite81445.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite81869.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite81923.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite82467.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite83112.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite83532.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite84870.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite85558.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite86002.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite86072.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite86531.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite87598.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite87685.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite88291.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite89953.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite89986.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite92770.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite94755.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite96923.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98293.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98642.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98668.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98968.dll
C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite99870.dll
C:\Users\Vinciane\AppData\Local\Temp\vlc-2.2.1-win32.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-03-16 11:00

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité