cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:09-06-2016
Exécuté par mlleb_000 (administrateur) sur EMMAXEL (09-06-2016 17:23:53)
Exécuté depuis C:\Users\mlleb_000\Desktop
Profils chargés: mlleb_000 (Profils disponibles: mlleb_000 & Invité)
Platform: Windows 8.1 Connected (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe
(Bouygues Telecom) C:\Program Files (x86)\Bouygues Telecom\Controle Parental\bin\optproxy.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Bouygues Telecom) C:\Program Files (x86)\Bouygues Telecom\Controle Parental\bin\OPTGui.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-01-20] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111312 2015-12-03] (AVAST Software)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [90880 2015-04-16] ()
HKLM-x32\...\Run: [Arc] => C:\Program Files (x86)\Arc\ArcLauncher.exe /autorun
HKLM-x32\...\Run: [OPTENET_GUI] => C:\Program Files (x86)\Bouygues Telecom\Controle Parental\bin\OPTGui.exe [410520 2014-07-10] (Bouygues Telecom)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Qualcomm®Atheros®)
HKU\S-1-5-21-1299485779-2906301089-2221063742-1001\...\Run: [AcerPortal] => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2541312 2015-03-18] (Acer)
HKU\S-1-5-21-1299485779-2906301089-2221063742-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-03-18] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-03-18] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-03-18] (Acer Incorporated)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\mlleb_000\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-15] (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{B762B570-18AE-415C-805A-0178045FC53F}: [DhcpNameServer] 192.168.1.254
ManualProxies:

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1299485779-2906301089-2221063742-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-15] (AVAST Software)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll [2015-04-22] (Perfect World Entertainment Inc)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-15] (AVAST Software)
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/fr/Core/Player/2020PlayerAX_IKEA_Win32.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2016-05-16] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2016-05-16] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2016-05-16] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2016-05-16] (McAfee, Inc.)

FireFox:
========
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-01-26] (Unity Technologies ApS)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Program Files (x86)\Arc\plugins\NPSWF32.dll [2015-04-22] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Arc\Plugins\npArcPluginFF.dll [2015-04-22] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-06-06]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-17]

Chrome:
=======
CHR Profile: C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-17]
CHR Extension: (Polycraft @ turbulenz.com) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\agmbldmkkdelpflgfadnegaapddjekee [2015-03-26]
CHR Extension: (Google Docs) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-17]
CHR Extension: (Google Drive) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-10]
CHR Extension: (YouTube) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-10]
CHR Extension: (Recherche Google) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-10]
CHR Extension: (Google Sheets) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-17]
CHR Extension: (SiteAdvisor) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-01-10]
CHR Extension: (Tank Riders) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdmmodjlfegeieihcdcgcalkgmhgmiae [2015-03-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-24]
CHR Extension: (Avast Online Security) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-24]
CHR Extension: (Caandy Crush Saga Free Games) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiclkbkbbjlcpfnckmiopoghmkfdbbci [2015-04-02]
CHR Extension: (KingsRoad) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbcbablgmkkdnioiekpgjfacejkfomlg [2015-03-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-24]
CHR Extension: (Skin Preview) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohdlgeeonbgjfbopceooloplkljedifa [2016-01-10]
CHR Extension: (Gmail) - C:\Users\mlleb_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-02]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-21]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-05-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-15]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 0111221465321095mcinstcleanup; C:\Windows\TEMP\011122~1.EXE [883024 2015-05-04] (McAfee, Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-15] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-09-15] (Avast Software)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237864 2015-04-02] (EasyAntiCheat Ltd)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-18] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [93408 2015-03-17] (Intel(R) Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-06-09] ()
R3 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [163592 2016-05-16] (McAfee, Inc.)
R2 OPTENET_FILTER; C:\Program Files (x86)\Bouygues Telecom\Controle Parental\bin\optproxy.exe [749424 2014-07-30] (Bouygues Telecom)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [233216 2014-06-23] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-15] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-15] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-12-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-12-03] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-09-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-15] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-12] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-12-24] (Qualcomm Atheros)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-10] (Intel Corporation)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [45728 2016-03-15] (McAfee, Inc.)
R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [41688 2014-10-30] (Intel Corporation)
R3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [67800 2014-10-30] (Intel Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-09-15] (AVAST Software)
R1 OptMon; C:\Windows\system32\drivers\OptMon64.sys [108728 2014-05-29] (Optenet)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [290520 2013-10-18] (Realtek Semiconductor Corp.)
R2 RtkIOAC60; C:\Windows\system32\DRIVERS\RtkIOAC60.sys [38504 2014-03-26] (Windows (R) Codename Longhorn DDK provider)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-09-15] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-06-09 17:23 - 2016-06-09 17:24 - 00020387 _____ C:\Users\mlleb_000\Desktop\FRST.txt
2016-06-09 17:22 - 2016-06-09 17:23 - 00000000 ____D C:\FRST
2016-06-09 17:22 - 2016-06-09 17:22 - 02385408 _____ (Farbar) C:\Users\mlleb_000\Desktop\FRST64.exe
2016-06-08 18:37 - 2016-06-08 18:41 - 00000000 ___RD C:\Users\mlleb_000\Documents\Scanned Documents
2016-06-08 18:37 - 2016-06-08 18:37 - 00000000 ____D C:\Users\mlleb_000\Documents\Fax
2016-06-06 22:47 - 2016-06-06 22:47 - 00008192 _____ C:\Windows\system32\config\userdiff
2016-06-06 21:27 - 2016-06-06 22:40 - 00013338 _____ C:\Windows\diagwrn.xml
2016-06-06 21:27 - 2016-06-06 22:40 - 00013338 _____ C:\Windows\diagerr.xml
2016-06-05 22:13 - 2016-06-05 22:13 - 00018944 ___SH C:\Users\mlleb_000\Desktop\Thumbs.db
2016-06-05 21:51 - 2016-06-05 21:51 - 00101198 _____ C:\Users\mlleb_000\Documents\impots revenus 2016.pdf
2016-05-29 15:27 - 2016-05-29 15:27 - 00101312 _____ C:\Users\Invité\Desktop\IMPOT 2016.pdf
2016-05-17 18:58 - 2016-05-17 18:58 - 00000000 ____D C:\Users\mlleb_000\AppData\Local\GWX
2016-05-12 21:06 - 2016-05-12 21:07 - 00000000 ____D C:\Users\Invité\Downloads\Musique Ben
2016-05-12 21:05 - 2016-06-06 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InfraRecorder
2016-05-12 21:05 - 2016-05-12 21:08 - 00000000 ____D C:\Users\Invité\AppData\Roaming\InfraRecorder
2016-05-12 21:05 - 2016-05-12 21:05 - 04153344 _____ C:\Users\Invité\Downloads\ir053_x64.msi
2016-05-12 21:05 - 2016-05-12 21:05 - 00001043 _____ C:\Users\Public\Desktop\InfraRecorder.lnk
2016-05-12 21:05 - 2016-05-12 21:05 - 00000000 ____D C:\Program Files (x86)\InfraRecorder
2016-05-12 21:03 - 2016-05-12 21:04 - 04153344 _____ C:\Users\Invité\Downloads\Non confirmé 881239.crdownload
2016-05-12 21:02 - 2016-05-12 21:02 - 04151536 _____ C:\Users\Invité\Downloads\ir053.exe
2016-05-11 21:41 - 2016-05-11 21:42 - 03640384 _____ C:\Users\Invité\Downloads\adwcleaner_5.116.exe
2016-05-11 04:12 - 2016-04-22 22:54 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-11 04:12 - 2016-04-22 22:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-11 04:12 - 2016-04-22 22:14 - 02893312 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-11 04:12 - 2016-04-22 22:08 - 06052864 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-11 04:12 - 2016-04-22 22:06 - 20349952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-05-11 04:12 - 2016-04-22 22:00 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-11 04:12 - 2016-04-22 21:35 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-05-11 04:12 - 2016-04-22 21:29 - 02285568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-05-11 04:12 - 2016-04-22 21:24 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-05-11 04:12 - 2016-04-22 21:23 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-05-11 04:12 - 2016-04-22 21:19 - 15414784 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-11 04:12 - 2016-04-22 21:17 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-11 04:12 - 2016-04-22 21:14 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-11 04:12 - 2016-04-22 21:14 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-11 04:12 - 2016-04-22 21:14 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-11 04:12 - 2016-04-22 21:12 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-11 04:12 - 2016-04-22 20:58 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-05-11 04:12 - 2016-04-22 20:58 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-05-11 04:12 - 2016-04-22 20:54 - 13811200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-05-11 04:12 - 2016-04-22 20:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-05-11 04:12 - 2016-04-22 20:52 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-11 04:12 - 2016-04-22 20:52 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-05-11 04:12 - 2016-04-22 20:52 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-05-11 04:12 - 2016-04-22 20:51 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-05-11 04:12 - 2016-04-22 20:40 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-11 04:12 - 2016-04-22 20:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-11 04:12 - 2016-04-22 20:27 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-05-11 04:12 - 2016-04-22 20:24 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-05-11 04:12 - 2016-04-22 20:23 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-05-11 04:12 - 2016-03-31 08:50 - 01307328 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-11 04:12 - 2016-03-31 05:40 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-05-11 04:12 - 2016-02-27 20:28 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-05-11 04:12 - 2016-02-27 19:57 - 03273728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-05-11 04:12 - 2016-02-27 19:19 - 03820544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-05-11 04:12 - 2016-02-27 18:32 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-05-11 04:10 - 2016-04-11 08:21 - 00074584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2016-05-11 04:10 - 2016-04-10 09:48 - 00738096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-11 04:10 - 2016-04-10 09:48 - 00613624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-05-11 04:10 - 2016-04-10 07:37 - 01549144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-11 04:10 - 2016-04-10 06:21 - 01763376 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-11 04:10 - 2016-04-10 06:21 - 01489088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-05-11 04:10 - 2016-04-10 06:14 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-11 04:10 - 2016-04-10 01:29 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-11 04:10 - 2016-04-10 00:07 - 01097728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-05-11 04:10 - 2016-04-09 23:58 - 00534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-05-11 04:10 - 2016-04-09 23:50 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-05-11 04:10 - 2016-04-06 23:13 - 00561960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-05-11 04:10 - 2016-04-06 23:13 - 00137976 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-11 04:10 - 2016-04-06 20:20 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-11 04:10 - 2016-04-06 20:19 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-11 04:10 - 2016-04-06 20:19 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-11 04:10 - 2016-04-06 19:49 - 00120384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-05-11 04:10 - 2016-04-06 19:40 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-05-11 04:10 - 2016-04-06 18:57 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-11 04:10 - 2016-04-06 18:52 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-11 04:10 - 2016-04-06 18:20 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-05-11 04:10 - 2016-04-06 17:48 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-05-11 04:10 - 2016-03-29 03:42 - 07446368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-11 04:10 - 2016-03-16 03:58 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-11 04:10 - 2016-03-16 03:58 - 00332632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-05-11 04:10 - 2016-03-14 18:50 - 00316760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2016-05-11 04:10 - 2016-03-12 02:49 - 02466136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-05-11 04:10 - 2016-03-12 02:47 - 00160160 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2016-05-11 04:10 - 2016-03-12 02:47 - 00121912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2016-05-11 04:10 - 2016-03-10 19:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dsparse.dll
2016-05-11 04:10 - 2016-03-10 18:55 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-05-11 04:10 - 2016-03-10 18:52 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2016-05-11 04:10 - 2016-03-10 18:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsparse.dll
2016-05-11 04:10 - 2016-03-10 18:42 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-05-11 04:10 - 2016-03-05 19:44 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-05-11 04:10 - 2016-03-05 19:04 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-06-09 17:20 - 2015-02-17 20:17 - 00002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-09 17:20 - 2015-02-17 20:17 - 00002165 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-09 17:16 - 2015-03-02 17:31 - 00007990 _____ C:\IFRToolLog.txt
2016-06-09 17:11 - 2015-02-17 20:16 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-09 17:11 - 2015-01-10 21:29 - 00000000 ___RD C:\Users\mlleb_000\OneDrive
2016-06-08 21:52 - 2015-02-17 20:16 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-08 18:39 - 2015-02-13 22:09 - 00082432 ___SH C:\Users\mlleb_000\Downloads\Thumbs.db
2016-06-07 21:11 - 2015-01-10 21:22 - 00000000 ____D C:\Users\mlleb_000
2016-06-07 19:37 - 2014-07-21 03:33 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-06-07 18:24 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-06-07 07:53 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-06 23:46 - 2016-01-10 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-06-06 23:46 - 2015-10-06 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Contrôle Parental Bouygues Telecom
2016-06-06 23:46 - 2015-09-19 10:22 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2016-06-06 23:46 - 2015-06-18 19:02 - 00000000 ____D C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-06-06 23:46 - 2015-05-14 12:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-06-06 23:46 - 2015-03-26 08:55 - 00000000 ____D C:\Users\mlleb_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2016-06-06 23:46 - 2015-03-26 08:27 - 00000000 ____D C:\Users\mlleb_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2016-06-06 23:46 - 2015-03-02 17:15 - 00000000 ____D C:\Users\Invité
2016-06-06 23:46 - 2015-02-26 22:05 - 00000000 ____D C:\Users\mlleb_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-06-06 23:46 - 2015-02-26 21:50 - 00000000 ____D C:\Windows\SysWOW64\vbox
2016-06-06 23:46 - 2015-02-26 21:50 - 00000000 ____D C:\Windows\system32\vbox
2016-06-06 23:46 - 2015-02-26 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-06-06 23:46 - 2015-02-10 18:04 - 00000000 ____D C:\Windows\SysWOW64\20-20 Technologies
2016-06-06 23:46 - 2015-01-15 05:26 - 00000000 ____D C:\Windows\system32\MRT
2016-06-06 23:46 - 2014-09-18 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2016-06-06 23:46 - 2014-09-18 12:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power Media Player 12
2016-06-06 23:46 - 2014-09-18 12:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2016-06-06 23:46 - 2014-09-18 12:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 3
2016-06-06 23:46 - 2014-09-18 12:03 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2016-06-06 23:46 - 2014-09-18 11:57 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2016-06-06 23:46 - 2014-09-18 11:52 - 00000000 ____D C:\Program Files\Intel
2016-06-06 23:46 - 2014-09-18 11:51 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-06-06 23:46 - 2014-09-18 11:45 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2016-06-06 23:46 - 2014-07-21 03:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-06-06 23:46 - 2014-03-18 12:00 - 00000000 ____D C:\Windows\SysWOW64\ca-es-valencia
2016-06-06 23:46 - 2014-03-18 12:00 - 00000000 ____D C:\Windows\system32\ca-es-valencia
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ___SD C:\Windows\Downloaded Program Files
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\spool
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\MediaViewer
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-06-06 23:46 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-06-06 23:46 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe
2016-06-06 23:01 - 2015-02-26 21:49 - 00002866 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-06-06 22:55 - 2015-10-30 21:24 - 00000000 ___HD C:\$WINDOWS.~BT
2016-06-06 22:38 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Registration
2016-06-06 22:34 - 2015-02-17 20:16 - 00003460 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-06-06 22:33 - 2015-04-07 18:03 - 00002374 _____ C:\Windows\System32\Tasks\InfoCollect
2016-06-06 22:33 - 2015-04-07 18:03 - 00002372 _____ C:\Windows\System32\Tasks\AcerCloud
2016-06-06 22:33 - 2015-02-26 21:44 - 00002868 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2016-06-06 22:33 - 2015-02-26 21:44 - 00002494 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon
2016-06-06 22:33 - 2015-02-17 20:16 - 00003232 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-06 22:33 - 2015-01-10 21:33 - 00003090 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F762F63D-0BF5-4E1D-84A6-63482CEE4630}
2016-06-06 22:33 - 2015-01-10 21:28 - 00002812 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1299485779-2906301089-2221063742-1001
2016-06-06 22:33 - 2014-09-18 12:20 - 00002574 _____ C:\Windows\System32\Tasks\UbtFrameworkService
2016-06-06 22:33 - 2014-09-18 12:17 - 00002182 _____ C:\Windows\System32\Tasks\Quick Access Quick Launcher
2016-06-06 22:33 - 2014-09-18 12:17 - 00002062 _____ C:\Windows\System32\Tasks\Quick Access
2016-06-06 22:33 - 2014-09-18 12:09 - 00002078 _____ C:\Windows\System32\Tasks\Hotkey Utility
2016-06-06 22:33 - 2014-09-18 12:03 - 00004154 _____ C:\Windows\System32\Tasks\Software Update Application
2016-06-06 22:33 - 2014-09-18 12:03 - 00003744 _____ C:\Windows\System32\Tasks\ACCAgent
2016-06-06 22:33 - 2014-09-18 12:03 - 00002796 _____ C:\Windows\System32\Tasks\ACC
2016-06-06 22:33 - 2014-09-18 11:57 - 00002118 _____ C:\Windows\System32\Tasks\DolbySelectorTask
2016-06-06 22:33 - 2014-09-18 11:11 - 00002750 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1299485779-2906301089-2221063742-500
2016-06-06 22:27 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-06-06 22:25 - 2014-09-18 12:22 - 00000000 ____D C:\Users\Default\AppData\Local\Pokki
2016-06-06 22:25 - 2014-09-18 12:22 - 00000000 ____D C:\Users\Default User\AppData\Local\Pokki
2016-06-06 22:25 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2016-06-06 21:27 - 2014-07-21 03:45 - 00000000 ____D C:\Windows\Panther
2016-06-05 19:24 - 2015-01-10 21:23 - 00000000 ____D C:\Users\mlleb_000\Documents\Bluetooth Folder
2016-06-03 18:52 - 2015-01-10 21:30 - 00000000 ____D C:\Users\mlleb_000\AppData\Local\CrashDumps
2016-06-02 21:36 - 2015-04-30 21:31 - 00000000 ____D C:\Users\mlleb_000\AppData\Local\Ankama
2016-06-02 21:33 - 2015-04-30 21:32 - 00009276 _____ C:\Users\mlleb_000\AppData\Localtransition_e9ad0a61abcac9e37bc387016c1c2b92.ini
2016-06-02 21:33 - 2015-01-10 21:23 - 00000000 ____D C:\Users\mlleb_000\AppData\Local\Packages
2016-06-02 21:33 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-06-02 18:05 - 2015-05-03 20:21 - 00000000 ____D C:\Users\Invité\AppData\Local\CrashDumps
2016-06-01 14:47 - 2015-06-21 17:36 - 00521216 ___SH C:\Users\Invité\Downloads\Thumbs.db
2016-05-29 15:27 - 2015-09-29 13:28 - 00135680 ___SH C:\Users\Invité\Desktop\Thumbs.db
2016-05-27 17:04 - 2015-04-06 13:18 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-27 17:04 - 2015-04-06 13:18 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-27 17:04 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-05-22 12:38 - 2016-05-02 16:08 - 00307712 ___SH C:\Users\Invité\Documents\Thumbs.db
2016-05-16 19:12 - 2015-01-10 21:24 - 00000000 ____D C:\Users\mlleb_000\AppData\Local\clear.fi
2016-05-16 17:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\schemas
2016-05-16 17:28 - 2015-05-14 12:18 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-16 17:25 - 2015-05-14 12:18 - 00001082 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-16 17:25 - 2015-05-14 12:18 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-12 17:26 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-05-12 17:04 - 2015-01-16 08:57 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-12 07:51 - 2013-08-22 16:44 - 00371504 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-11 22:08 - 2015-12-29 15:40 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-11 22:08 - 2015-12-29 15:40 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-11 21:43 - 2015-05-14 11:59 - 00000000 ____D C:\AdwCleaner
2016-05-11 16:23 - 2015-03-02 17:16 - 00000000 ____D C:\Users\Invité\AppData\Local\VirtualStore
2016-05-11 08:37 - 2014-03-18 11:33 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-11 08:18 - 2015-01-15 05:26 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-10 17:30 - 2016-05-08 15:38 - 00000000 ____D C:\Users\Invité\Desktop\yutube max

==================== Fichiers à la racine de certains dossiers =======

2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\mlleb_000\AppData\Roaming\8h7WeNCbv
2016-01-10 22:31 - 2016-01-10 22:31 - 0000057 _____ () C:\ProgramData\Ament.ini
2014-09-18 11:57 - 2014-09-18 11:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Certains fichiers dans TEMP:
====================
C:\Users\Invité\AppData\Local\Temp\Foxit PhantomPDF Updater.exe
C:\Users\Invité\AppData\Local\Temp\octD37.tmp.exe
C:\Users\Invité\AppData\Local\Temp\Quarantine.exe
C:\Users\mlleb_000\AppData\Local\Temp\Ank1DA0.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\AOPSetup.exe
C:\Users\mlleb_000\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmppjopud.dll
C:\Users\mlleb_000\AppData\Local\Temp\Foxit PhantomPDF Updater.exe
C:\Users\mlleb_000\AppData\Local\Temp\Intel_Technology_Access_Software.exe
C:\Users\mlleb_000\AppData\Local\Temp\mccspuninstall.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct1A0.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct1F39.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct29F3.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct2C7.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct3B6.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct4736.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct47B.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\oct8417.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\octAA55.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\octD6F2.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\octF1B3.tmp.exe
C:\Users\mlleb_000\AppData\Local\Temp\Quarantine.exe
C:\Users\mlleb_000\AppData\Local\Temp\sqlite3.dll
C:\Users\mlleb_000\AppData\Local\Temp\YesMessenger-full-installer-sign.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-06-03 05:45

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité