cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:02-03-2016
Exécuté par Laura (administrateur) sur DESKTOP-1J3G16D (02-03-2016 17:20:08)
Exécuté depuis C:\Users\Laura\Downloads
Profils chargés: Laura (Profils disponibles: Laura)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Zhuhai Kingsoft Office Software Co.,Ltd) C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(The Chromium Authors) C:\Users\Laura\AppData\Local\Chromium\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(The Chromium Authors) C:\Users\Laura\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Laura\AppData\Local\Chromium\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\swriter.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
(Apache Software Foundation) C:\Program Files (x86)\OpenOffice 4\program\soffice.bin
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6568.46121.0_x64__8wekyb3d8bbwe\HxTsr.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] ()
HKU\S-1-5-21-2190312533-2500501139-1021311570-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.)
HKU\S-1-5-21-2190312533-2500501139-1021311570-1001\...\Run: [GoogleChromeAutoLaunch_9474758583232671A2981E5ABA1E492F] => C:\Users\Laura\AppData\Local\Chromium\Application\chrome.exe [667136 2015-08-11] (The Chromium Authors)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-10-12]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\Parameters: [NameServer] 82.163.142.7 95.211.158.134
Tcpip\..\Interfaces\{09553e97-867b-42c3-81d8-c340216d9c6e}: [DhcpNameServer] 82.163.142.7
Tcpip\..\Interfaces\{3f03247a-9721-49bc-8113-1f0ded299c7d}: [DhcpNameServer] 82.163.142.7
Tcpip\..\Interfaces\{68e7a724-f2d1-44cd-b503-27f926ba0e3a}: [DhcpNameServer] 82.163.142.7
Tcpip\..\Interfaces\{7f973bbe-c713-470a-9370-b09902be004e}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2190312533-2500501139-1021311570-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2190312533-2500501139-1021311570-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> OldSearch URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_05¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0FzztAtB0EyE0DzytC0D0F0EyDyBzyyEtN0D0Tzu0StCyEzyyBtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyD0AtD0CtAyD0E0AtGtC0E0CyEtGtDzytAyBtGyE0E0AzztGyBtCtD0CyDtA0F0C0EzyyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEyD0EyE0C0Fzz0AtG0DyDyE0FtGyE0DyD0FtG0B0ByBtAtGzyyB0B0D0CtD0B0EyB0ByCtB2QtN0A0LzuyE%26cr%3D200496466%26a%3Dwbf_ir_16_05%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2190312533-2500501139-1021311570-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2190312533-2500501139-1021311570-1001 -> OldSearch URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ir_16_05¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0FzztAtB0EyE0DzytC0D0F0EyDyBzyyEtN0D0Tzu0StCyEzyyBtN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyD0AtD0CtAyD0E0AtGtC0E0CyEtGtDzytAyBtGyE0E0AzztGyBtCtD0CyDtA0F0C0EzyyEtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyEyD0EyE0C0Fzz0AtG0DyDyE0FtGyE0DyD0FtG0B0ByBtAtGzyyB0B0D0CtD0B0EyB0ByCtB2QtN0A0LzuyE%26cr%3D200496466%26a%3Dwbf_ir_16_05%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2190312533-2500501139-1021311570-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-01-08] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-01-08] (McAfee, Inc.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-02-06] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-01-08] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-02-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-01-08] ()
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] ()
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2016-01-31] [non signé]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Fichier non signé]
R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-07-29] (Windows (R) Win 7 DDK provider)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-08-04] (Intel Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-02-02] (Hi-Rez Studios) [Fichier non signé]
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370088 2015-08-13] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
R2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [863448 2016-01-08] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-19] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe [1696712 2016-02-23] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [681680 2016-01-08] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [234192 2015-11-18] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [380896 2016-01-04] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [275368 2015-11-18] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [902112 2015-12-14] (Intel Security, Inc.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [465088 2016-03-01] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317808 2015-07-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [79248 2015-11-25] (McAfee, Inc.)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [43512 2015-08-04] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [41976 2015-08-04] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [251384 2015-08-04] (Intel Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-28] (Intel Corporation)
R2 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419624 2015-11-25] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [351144 2015-11-25] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [83096 2015-11-25] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496368 2015-11-25] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [846080 2015-11-25] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [539496 2015-11-20] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109480 2015-11-20] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [245096 2015-11-25] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-03-02 17:20 - 2016-03-02 17:21 - 00021037 _____ C:\Users\Laura\Downloads\FRST.txt
2016-03-02 17:20 - 2016-03-02 17:20 - 00000000 ____D C:\FRST
2016-03-02 17:19 - 2016-03-02 17:19 - 02371584 _____ (Farbar) C:\Users\Laura\Downloads\FRST64.exe
2016-03-02 17:18 - 2016-03-02 17:19 - 01722368 _____ (Farbar) C:\Users\Laura\Downloads\FRST (2).exe
2016-03-02 17:16 - 2016-03-02 17:16 - 00011982 _____ C:\Users\Laura\Desktop\AdwCleaner[C1].txt
2016-03-02 17:16 - 2016-03-02 17:16 - 00000108 ____H C:\Users\Laura\Desktop\.~lock.AdwCleaner[C1].txt#
2016-03-02 17:10 - 2016-03-02 17:10 - 01722368 _____ (Farbar) C:\Users\Laura\Downloads\FRST (1).exe
2016-03-02 17:04 - 2016-03-02 17:05 - 01722368 _____ (Farbar) C:\Users\Laura\Downloads\FRST.exe
2016-03-02 17:03 - 2016-03-02 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2016-03-02 16:56 - 2016-03-02 16:56 - 00016148 _____ C:\Windows\system32\DESKTOP-1J3G16D_Laura_HistoryPrediction.bin
2016-03-02 16:46 - 2016-03-02 16:47 - 01518592 _____ C:\Users\Laura\Downloads\adwcleaner_5.037.exe
2016-03-02 16:28 - 2016-03-02 16:29 - 01135744 _____ (Download Assistant) C:\Users\Laura\Downloads\AdwCleaner_Setup (2).exe
2016-03-02 16:26 - 2016-03-02 16:26 - 01013416 _____ C:\Users\Laura\Downloads\ccleaner-setup (1).exe
2016-03-02 15:55 - 2016-03-02 15:56 - 01144840 _____ (Download Assistant) C:\Users\Laura\Downloads\CCleaner_Setup (1).exe
2016-03-02 15:54 - 2016-03-02 15:54 - 01141040 _____ (Download Assistant) C:\Users\Laura\Downloads\CCleaner_Setup.exe
2016-03-02 15:42 - 2016-03-02 15:43 - 01013416 _____ C:\Users\Laura\Downloads\ccleaner-setup.exe
2016-03-02 15:14 - 2016-03-02 15:14 - 00000000 ____D C:\Users\Laura\AppData\Roaming\AVAST Software
2016-03-01 18:42 - 2016-03-02 17:16 - 00000000 ____D C:\AdwCleaner
2016-03-01 18:41 - 2016-03-01 18:41 - 01131304 _____ (Download Assistant) C:\Users\Laura\Downloads\AdwCleaner_Setup (1).exe
2016-03-01 18:33 - 2016-03-01 18:33 - 01131224 _____ (Download Assistant) C:\Users\Laura\Downloads\AdwCleaner_Setup.exe
2016-02-23 17:53 - 2016-03-02 17:05 - 00004020 _____ C:\Windows\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2016-02-22 02:07 - 2016-03-01 21:06 - 00004208 _____ C:\Windows\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2016-02-21 16:22 - 2016-02-21 16:22 - 00452355 ____T C:\Users\Laura\Documents\kkkkk.pdf
2016-02-21 16:22 - 2016-02-21 16:22 - 00000000 ____D C:\Users\Laura\AppData\LocalLow\Temp
2016-02-21 00:00 - 2016-03-02 16:57 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-02-20 23:17 - 2016-02-20 23:17 - 00003628 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher
2016-02-20 23:16 - 2016-02-20 23:16 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-02-20 23:15 - 2016-02-20 23:15 - 00065648 _____ C:\Windows\system32\ASGCoInstaller_x64.dll
2016-02-20 01:54 - 2016-02-20 01:54 - 00000059 _____ C:\Users\Laura\Documents\z.txt
2016-02-15 21:07 - 2016-02-15 21:07 - 00001128 _____ C:\Users\Public\Desktop\OpenOffice 4.1.2.lnk
2016-02-15 21:07 - 2016-02-15 21:07 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2016-02-15 21:07 - 2016-02-15 21:07 - 00000000 ____D C:\Users\Laura\AppData\Roaming\OpenOffice
2016-02-15 21:06 - 2016-02-15 21:06 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2016-02-15 18:10 - 2016-02-15 18:10 - 00000000 ____D C:\Users\Laura\Desktop\OpenOffice 4.1.2 (en-US) Installation Files
2016-02-15 18:08 - 2016-02-15 18:09 - 140783556 _____ C:\Users\Laura\Downloads\Apache_OpenOffice_4.1.2_Win_x86_install_en-US.exe
2016-02-14 23:05 - 2016-02-14 23:05 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-02-14 00:05 - 2016-02-14 00:05 - 00002108 _____ C:\Users\Public\Desktop\Hi-Rez Diagnostics and Support.lnk
2016-02-14 00:05 - 2016-02-14 00:05 - 00002099 _____ C:\Users\Public\Desktop\Smite.lnk
2016-02-14 00:05 - 2016-02-14 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2016-02-14 00:02 - 2016-02-14 00:04 - 50838208 _____ (Hi-Rez Studios) C:\Users\Laura\Downloads\InstallSmite (1).exe
2016-02-13 23:59 - 2016-02-13 23:59 - 00003314 _____ C:\Windows\System32\Tasks\{0184E96D-0EB5-430F-851B-BF1550483878}
2016-02-13 20:36 - 2016-02-13 20:36 - 00024787 _____ C:\Users\Laura\Documents\dossier course de duree.html
2016-02-13 20:29 - 2016-02-13 20:29 - 00076863 _____ C:\Users\Laura\Documents\dossier course de duree.pdf
2016-02-13 20:17 - 2016-02-13 20:23 - 00947864 _____ (program ) C:\Users\Laura\Downloads\Apache_OpenOffice_incubating_3.4.1_Win_x86_install_fr (1).exe
2016-02-13 20:13 - 2016-02-13 20:14 - 135517944 _____ C:\Users\Laura\Downloads\office-setup1.exe.b0062t6.partial
2016-02-12 19:20 - 2016-02-12 19:20 - 00819995 _____ C:\Users\Laura\Documents\DossierCourseDureeLyceeSECONDE2012_01.pdf
2016-02-11 02:15 - 2016-02-21 16:22 - 00655996 _____ C:\Users\Laura\Documents\dossier course de duree.odt
2016-02-11 02:03 - 2016-02-11 02:03 - 00000000 ____D C:\Users\Laura\AppData\Roaming\OpenOffice.org
2016-02-11 02:01 - 2016-02-11 02:01 - 00000000 ____D C:\Users\Laura\Desktop\OpenOffice.org 3.4.1 (fr) Installation Files
2016-02-11 02:00 - 2016-02-11 02:00 - 126019687 _____ C:\Users\Laura\Downloads\Apache_OpenOffice_incubating_3.4.1_Win_x86_install_fr [1].exe
2016-02-11 01:58 - 2016-02-11 01:59 - 00947864 _____ (program ) C:\Users\Laura\Downloads\Apache_OpenOffice_incubating_3.4.1_Win_x86_install_fr.exe
2016-02-10 00:30 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-02-10 00:30 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-02-10 00:30 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-02-10 00:30 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-02-10 00:30 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-02-10 00:30 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-02-10 00:30 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-02-10 00:30 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-02-10 00:30 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-02-10 00:30 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-02-10 00:30 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-02-10 00:30 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2016-02-10 00:30 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-02-10 00:30 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll
2016-02-10 00:30 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-02-10 00:30 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2016-02-10 00:30 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-02-10 00:30 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-02-10 00:30 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-02-10 00:30 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-10 00:30 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-02-10 00:30 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-02-10 00:30 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-02-10 00:30 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-02-10 00:30 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-02-10 00:30 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-02-10 00:30 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2016-02-10 00:30 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-02-10 00:30 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-02-10 00:30 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-02-10 00:30 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll
2016-02-10 00:30 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-02-10 00:30 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-02-10 00:30 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-02-10 00:30 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-02-10 00:30 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-02-10 00:30 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-02-10 00:30 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-02-10 00:30 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-02-10 00:30 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-02-10 00:30 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2016-02-10 00:30 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll
2016-02-10 00:30 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-02-10 00:30 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-10 00:30 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-10 00:30 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-02-10 00:30 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-02-10 00:30 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-02-10 00:30 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-02-10 00:30 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2016-02-10 00:30 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-02-10 00:30 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-02-10 00:30 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-02-10 00:30 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-02-10 00:30 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-02-10 00:30 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-02-10 00:30 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll
2016-02-10 00:11 - 2016-02-10 00:11 - 00000003 _____ C:\Windows\SysWOW64\HRUPPROG.TXT
2016-02-10 00:11 - 2016-02-10 00:11 - 00000003 _____ C:\Windows\SysWOW64\HRUPPROG.EXIT
2016-02-07 00:39 - 2016-03-01 18:39 - 00000125 _____ C:\Users\Laura\AppData\Roaming\WB.CFG
2016-02-06 23:41 - 2016-02-07 02:06 - 00000000 ____D C:\Users\Laura\AppData\Roaming\PhotoScape
2016-02-06 23:41 - 2016-02-06 23:41 - 00001106 _____ C:\Users\Laura\Desktop\PhotoScape.lnk
2016-02-06 23:41 - 2016-02-06 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2016-02-06 23:41 - 2016-02-06 23:41 - 00000000 ____D C:\Program Files (x86)\PhotoScape
2016-02-06 23:40 - 2016-03-02 16:53 - 00000950 _____ C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk
2016-02-06 23:40 - 2016-02-13 23:59 - 00000000 ____D C:\Users\Laura\AppData\Local\Sparta
2016-02-06 23:40 - 2016-02-06 23:40 - 00002332 _____ C:\Users\Laura\Desktop\Chromium.lnk
2016-02-06 23:40 - 2016-02-06 23:40 - 00000000 ____D C:\Users\Laura\AppData\Roaming\WarThunder
2016-02-06 23:40 - 2016-02-06 23:40 - 00000000 ____D C:\Users\Laura\AppData\Roaming\sparta111
2016-02-06 23:40 - 2016-02-06 23:40 - 00000000 ____D C:\Users\Laura\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium
2016-02-06 23:40 - 2016-02-06 23:40 - 00000000 ____D C:\Users\Laura\AppData\Local\Chromium
2016-02-06 23:39 - 2016-02-07 00:39 - 00000000 ____D C:\Users\Laura\AppData\Local\{E340D51C-C7E8-B9A4-AA70-9C4C8E1860D4}
2016-02-06 23:39 - 2016-02-06 23:39 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-02-06 23:38 - 2016-02-06 23:38 - 00938344 _____ (Application Generic ) C:\Users\Laura\Downloads\PhotoScape_V3.6.3.exe
2016-02-06 22:27 - 2016-03-02 16:56 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-02-06 22:27 - 2016-02-06 22:27 - 00003978 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-03-02 17:00 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsNotifyTask_Administrator.job
2016-03-02 16:57 - 2016-01-23 03:57 - 00000165 _____ C:\Users\Laura\AppData\Roaming\sp_data.sys
2016-03-02 16:57 - 2015-08-18 06:29 - 00000424 _____ C:\Windows\Tasks\WpsUpdateTask_Administrator.job
2016-03-02 16:56 - 2016-01-23 03:57 - 00000000 __SHD C:\Users\Laura\IntelGraphicsProfiles
2016-03-02 16:56 - 2016-01-23 03:51 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-03-02 16:55 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-02 16:54 - 2015-07-10 10:05 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-03-02 16:04 - 2015-08-18 14:21 - 00822456 _____ C:\Windows\system32\perfh00C.dat
2016-03-02 16:04 - 2015-08-18 14:21 - 00154770 _____ C:\Windows\system32\perfc00C.dat
2016-03-02 16:04 - 2015-08-18 06:20 - 01839260 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-02 16:04 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF
2016-03-02 15:35 - 2015-10-12 20:24 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2016-03-02 15:08 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-02 15:08 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2016-03-02 15:05 - 2016-01-22 21:52 - 00004178 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{D4B90533-D357-46E2-9AEF-66C0457F30C5}
2016-03-01 21:29 - 2015-08-18 15:00 - 00000000 ____D C:\Windows\Panther
2016-03-01 21:23 - 2015-10-30 20:24 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-01 18:38 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-03-01 18:36 - 2016-01-23 03:57 - 00000000 ____D C:\Users\Laura
2016-03-01 18:01 - 2015-10-12 20:31 - 00003544 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2016-03-01 18:01 - 2015-10-12 20:31 - 00003534 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2016-02-27 02:06 - 2016-01-31 02:01 - 00000000 ____D C:\Users\Laura\AppData\Roaming\TS3Client
2016-02-20 23:17 - 2015-10-12 20:31 - 00000000 ____D C:\Program Files\DIFX
2016-02-20 23:17 - 2015-08-18 06:27 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-02-20 23:16 - 2016-01-23 04:13 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-02-20 02:28 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\LiveKernelReports
2016-02-17 01:52 - 2015-07-10 13:20 - 00226096 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-15 18:17 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2016-02-15 17:36 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2016-02-15 17:34 - 2015-08-18 14:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\winrm
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\WCN
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\slmgr
2016-02-15 17:34 - 2015-07-10 17:26 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\dsc
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Com
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\MUI
2016-02-15 17:34 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz
2016-02-15 17:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-02-15 17:34 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep
2016-02-15 17:33 - 2015-07-10 17:30 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Com
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-15 17:33 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-15 17:33 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism
2016-02-15 17:33 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing
2016-02-14 00:05 - 2016-01-23 21:17 - 00000000 ____D C:\ProgramData\Hi-Rez Studios
2016-02-14 00:05 - 2016-01-23 21:17 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2016-02-14 00:05 - 2015-10-12 20:20 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-13 02:15 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2016-02-13 02:15 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB
2016-02-11 02:29 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\NDF
2016-02-11 00:50 - 2016-01-23 14:46 - 00000000 ____D C:\Windows\system32\MRT
2016-02-11 00:47 - 2016-01-23 14:46 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-07 16:44 - 2016-01-23 04:24 - 00000000 ____D C:\Users\Laura\AppData\Roaming\Skype
2016-02-06 23:39 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-02-06 23:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-02-06 18:26 - 2015-07-10 17:27 - 00000000 ____D C:\Windows\OCR
2016-02-06 13:37 - 2015-10-12 20:07 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-02 23:47 - 2016-01-31 22:16 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-02 23:47 - 2016-01-31 22:16 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Fichiers à la racine de certains dossiers =======

2016-01-23 03:57 - 2016-03-02 16:57 - 0000165 _____ () C:\Users\Laura\AppData\Roaming\sp_data.sys
2016-02-07 00:39 - 2016-03-01 18:39 - 0000125 _____ () C:\Users\Laura\AppData\Roaming\WB.CFG
2015-10-12 20:21 - 2015-10-12 20:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Certains fichiers dans TEMP:
====================
C:\Users\Laura\AppData\Local\Temp\39328693.t.exe
C:\Users\Laura\AppData\Local\Temp\ICReinstall_Apache_OpenOffice_incubating_3.4.1_Win_x86_install_fr (1).exe
C:\Users\Laura\AppData\Local\Temp\sqlite3.dll
C:\Users\Laura\AppData\Local\Temp\{333BD599-C9CE-4DCF-B53F-A491DB003471}.dll
C:\Users\Laura\AppData\Local\Temp\{4884E2E2-9B12-46F7-B287-DA10287A3ADE}.dll
C:\Users\Laura\AppData\Local\Temp\{493DF247-7CF6-44A9-A43E-38C728B53193}.dll
C:\Users\Laura\AppData\Local\Temp\{CE14ABCE-0B36-4022-A12D-63B5F04407A2}.dll


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-02-27 15:42

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité