cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-07-2016
Exécuté par ADIDOU-ADDA (administrateur) sur ADIDOU-PC (08-07-2016 11:16:54)
Exécuté depuis C:\Users\ADIDOU-ADDA\Downloads\Programs
Profils chargés: ADIDOU-ADDA (Profils disponibles: ADIDOU-ADDA)
Platform: Windows 10 Pro (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Monect) C:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRManager.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Viber Media S.à r.l.) C:\Users\ADIDOU-ADDA\AppData\Local\Viber\Viber.exe
(Sand Studio) C:\Program Files (x86)\AirDroid\AirDroid.exe
() C:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Informer Technologies, Inc.) C:\Program Files\Software Informer\softinfo.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\AtBroker.exe
(Microsoft Corporation) C:\Windows\System32\osk.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-04-09] (Realtek Semiconductor)
HKLM-x32\...\Run: [5KPlayer.exe] => C:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe [4184624 2016-06-16] ()
HKLM\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs,
HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3961968 2016-07-05] (Tonec Inc.)
HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37056 2016-02-01] (Glarysoft Ltd)
HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\Run: [IDM trial reset] => C:\Users\ADIDOU-ADDA\Desktop\idm_trial_reset.exe [1179136 2015-08-19] ()
HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\Run: [Viber] => C:\Users\ADIDOU-ADDA\AppData\Local\Viber\Viber.exe [71876176 2016-06-24] (Viber Media S.à r.l.)
HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [8679424 2016-06-02] (Sand Studio)
HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\Run: [GoogleChromeAutoLaunch_DC7C9F87FF8901E02F9EE770EC66922C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1122456 2016-06-15] (Google Inc.)
HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\MountPoints2: {07d17821-8aa8-11e5-8d76-001a4df3a9e3} - "F:\AutoRun.exe"
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [!BTSync2.3.3Done] -> {581FFA04-FC33-0003-0302-95003A5CDE89} => C:\ProgramData\BitTorrent Sync\ShellExtensionOverlay64_128.dll [2016-03-05] ()
ShellIconOverlayIdentifiers: [!BTSync2.3.3RO] -> {581FFA03-FC33-0003-0302-95003A5CDE89} => C:\ProgramData\BitTorrent Sync\ShellExtensionOverlay64_128.dll [2016-03-05] ()
ShellIconOverlayIdentifiers: [!BTSync2.3.3RW] -> {581FFA02-FC33-0003-0302-95003A5CDE89} => C:\ProgramData\BitTorrent Sync\ShellExtensionOverlay64_128.dll [2016-03-05] ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\ADIDOU-ADDA\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\ADIDOU-ADDA\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\ADIDOU-ADDA\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [!BTSync2.3.3Done] -> {581FFA04-FC33-0003-0302-95003A5CDE89} => C:\ProgramData\BitTorrent Sync\ShellExtensionOverlay86_128.dll [2016-03-05] ()
ShellIconOverlayIdentifiers-x32: [!BTSync2.3.3RO] -> {581FFA03-FC33-0003-0302-95003A5CDE89} => C:\ProgramData\BitTorrent Sync\ShellExtensionOverlay86_128.dll [2016-03-05] ()
ShellIconOverlayIdentifiers-x32: [!BTSync2.3.3RW] -> {581FFA02-FC33-0003-0302-95003A5CDE89} => C:\ProgramData\BitTorrent Sync\ShellExtensionOverlay86_128.dll [2016-03-05] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\ADIDOU-ADDA\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\ADIDOU-ADDA\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\ADIDOU-ADDA\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\Users\ADIDOU-ADDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2016-01-29]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk [2016-01-29]
ShortcutTarget: ImageBrowser EX Agent.lnk -> C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe ()
BootExecute: autocheck autochk *
GroupPolicyScripts: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1b657e76-2587-4545-9b79-a80e11d99ba1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8892b4bc-b0ef-4677-a90b-e69e6338402c}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-07-05] (Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-07-05] (Internet Download Manager, Tonec Inc.)
BHO-x32: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (BitComet)

FireFox:
========
FF ProfilePath: C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745
FF SelectedSearchEngine: Yahoo®
FF Homepage: hxxps://www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Extension: Tiny JavaScript Debugger - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\extensions\tinyjsdebugger@enigmail.net.xpi [2016-03-17]
FF Extension: QuickJava - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2016-03-25]
FF Extension: ReminderFox - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae} [2016-04-06]
FF Extension: Pray Times! - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\extensions\azan-times@hamid.net.xpi [2016-04-27]
FF Extension: IDM integration - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-06-08]
FF Extension: S3.Google Translator - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\extensions\s3google@translator.xpi [2016-06-27]
FF Extension: Flash and Video Download - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2016-06-28]
FF Extension: Everywhere YouTube Downloader - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\@youtubedownloadere.xpi [2016-05-27]
FF Extension: Forecastfox (fix version) - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\forecastfox@s3_fix_version.xpi [2016-06-15]
FF Extension: Dictionnaire français - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org [2016-07-03]
FF Extension: Turbo Download Manager - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\jid0-dsq67mf5kjjhiiju2dfb6kk8dfw@jetpack.xpi [2016-06-16]
FF Extension: Google™ Weather - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\jid0-lQyK6JstbAGdiq1fp28Cl@jetpack.xpi [2016-02-16]
FF Extension: Pinterest™ Panel - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\jid1-Jf3tAGwqs5Hjqz@jetpack.xpi [2016-04-22]
FF Extension: Weather Forecast Global - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\jid1-pqwXAhIle2AJKr@jetpack.xpi [2016-05-04]
FF Extension: Pin It button - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2016-01-16]
FF Extension: uBlock Origin - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\uBlock0@raymondhill.net.xpi [2016-06-27]
FF Extension: gtranslate - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi [2016-05-14]
FF Extension: BitComet Video Downloader - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2016-04-26] [non signé]
FF Extension: Video DownloadHelper - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-05-24]
FF Extension: Adblock Plus - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
FF Extension: FoxClocks - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}.xpi [2016-04-17]
FF Extension: Metal Lion Australis Theme - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\{F2C70981-7CDC-4c46-ACF3-41F18693E79E} [2016-01-21]
FF Extension: YouTube Flash Video Player - C:\Users\ADIDOU-ADDA\AppData\Roaming\Mozilla\Firefox\Profiles\clwkkjam.default-1452791012745\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2016-06-18]
FF HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-2999735017-1450820813-405448688-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ADIDOU-ADDA\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\ADIDOU-ADDA\AppData\Roaming\IDM\idmmzcc5 [2016-07-08] [non signé]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.delta-search.com/?affID=119722&babsrc=HP_ss&mntrId=c6d5aba5000000000000001fd003b422
CHR Profile: C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-06]
CHR Extension: (Simply Land) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aofgaffmjpmafelneekkoffbeclnglbn [2016-02-06]
CHR Extension: (Google Docs) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-06]
CHR Extension: (Google Drive) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-06]
CHR Extension: (YouTube) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-06]
CHR Extension: (Watsapp messaging for Chrome™) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\bommmmpbplimfmebiadkflfgbgejahgm [2016-03-19]
CHR Extension: (TV) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\bppbpeijolfcampacpljolaegibfhjph [2016-02-12]
CHR Extension: (Adblock Plus) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-07-04]
CHR Extension: (Recherche Google) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-06]
CHR Extension: (Viber) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafalpmmoljglecaoelijmbkhpdoobmm [2016-03-19]
CHR Extension: (BitComet Download Extension for Chrome) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhigneefebkcagnpnpbibganpmfgebnk [2016-05-01]
CHR Extension: (GNews (actualités)) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebapnihcfgbllhdfmgbdblhfmbokjkka [2016-02-07]
CHR Extension: (Google Sheets) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-06]
CHR Extension: (Tag Quran) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkhegfhnlmoegfmmnkakipmchkdoggce [2016-02-06]
CHR Extension: (Birthday Party) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkjkllddhlpmcnjnphkjdffankkaonop [2016-02-06]
CHR Extension: (Full Screen Weather) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2016-02-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Porsche) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkclphmapdcppbmekmbkcjfanpmoidpg [2016-02-06]
CHR Extension: (Cut the Rope) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj [2016-02-06]
CHR Extension: (TV) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\keifaembfgkpkgaiijafmaeoponhdmfk [2016-02-12]
CHR Extension: (Shareaholic for Pinterest) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfjkehmceppcpjoaoegdmffmkdhiegmc [2016-03-19]
CHR Extension: (Solitaire Games - World Collection) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpmleklkkbobaonglkhkedkjofilkfjk [2016-02-12]
CHR Extension: (Space TV) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\mclkmgodgigjnbfkbobclaaafjmldcdo [2016-02-12]
CHR Extension: (Coloriages) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbldodhfmmfcfaooalepihkfkmjhnmei [2016-02-06]
CHR Extension: (IDM Integration Module) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-06-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-22]
CHR Extension: (Gmail) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-06]
CHR Extension: (Learn Alphabet and Numbers) - C:\Users\ADIDOU-ADDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\podikmghblokmmdgoilcnnpgogaocoal [2016-02-06]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-07-05]
CHR HKLM-x32\...\Chrome\Extension: [dhigneefebkcagnpnpbibganpmfgebnk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-07-05]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Fichier non signé]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Fichier non signé]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-03-30] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 MonectServerService; C:\Program Files (x86)\PC Remote Receiver\MonectServerService.exe [83456 2015-05-31] (Monect) [Fichier non signé]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634048 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522496 2016-03-30] (NVIDIA Corporation)
S3 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [575488 2008-09-08] (Nokia.) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4323976 2016-04-09] (Qualcomm Atheros Communications, Inc.)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
S0 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [25056 2011-12-21] (IVT Corporation.)
S3 DroidCam; C:\Windows\system32\DRIVERS\droidcam.sys [33592 2015-12-29] (Dev47Apps)
S3 DroidCamVideo; C:\Windows\system32\DRIVERS\droidcamvideo.sys [230712 2015-12-29] (Windows (R) Win 7 DDK provider)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2016-02-10] (Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-11-19] (REALiX(tm))
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
S3 IvtAudioBusSrv; C:\Windows\System32\Drivers\IvtBtBus.sys [27256 2012-12-24] (IVT Corporation.)
S3 IvtPanBusSrv; C:\Windows\System32\Drivers\btnetBus.sys [31480 2012-12-24] (IVT Corporation.)
S3 Larmkanal; C:\Windows\system32\DRIVERS\Larmkanal.sys [33144 2015-04-23] (Adoriasoft LLC)
R1 MoboroboAssDriver; C:\Windows\SysWow64\drivers\MoboroboAssDriver64.sys [15008 2015-04-03] ()
R3 monectdevices; C:\Windows\System32\drivers\monectdevices.sys [15768 2013-12-03] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
S3 Phosgene; C:\Windows\system32\DRIVERS\Phosgene.sys [34168 2015-08-28] (Adoriasoft LLC)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [936192 2016-04-04] (Realtek )
R3 sthid; C:\Windows\System32\drivers\sthid.sys [21216 2015-12-29] (Splashtop Inc.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbUDisc; C:\Windows\System32\drivers\USBDrv_AMD64.sys [18392 2013-01-25] (Scott)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 AVFSFilter; \SystemRoot\system32\DRIVERS\avfsfilter.sys [X]
S3 BlueletAudio; \SystemRoot\system32\DRIVERS\blueletaudio.sys [X]
S3 BT; \SystemRoot\System32\drivers\btnetdrv.sys [X]
S3 BTCOM; \SystemRoot\system32\DRIVERS\btcomport.sys [X]
S3 Btcsrusb; \SystemRoot\System32\Drivers\btcusb.sys [X]
U3 DfSdkS; pas de ImagePath
S3 IvtComBusSrv; \SystemRoot\System32\Drivers\btcombus.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-07-08 11:16 - 2016-07-08 11:16 - 00000000 ____D C:\FRST
2016-07-08 11:01 - 2016-07-08 11:01 - 00016148 _____ C:\Windows\system32\ADIDOU-PC_ADIDOU-ADDA_HistoryPrediction.bin
2016-07-08 10:58 - 2016-07-08 10:58 - 00011992 ____N C:\bootsqm.dat
2016-07-07 23:41 - 2016-07-07 23:41 - 553290566 _____ C:\Windows\MEMORY.DMP
2016-07-07 23:41 - 2016-07-07 23:41 - 00295176 _____ C:\Windows\Minidump\070716-22968-01.dmp
2016-07-07 17:43 - 2016-07-07 18:59 - 107865817 _____ C:\Users\ADIDOU-ADDA\Downloads\Réponses Photo - Aout 2016.pdf
2016-07-07 14:17 - 2016-07-05 14:57 - 375482554 _____ C:\Users\ADIDOU-ADDA\Desktop\Hell.on.Wheels.S05E11.FASTSUB.VOSTFR.HDTV.XviD-ZT.www.Zone-Telechargement.com.avi
2016-07-06 12:42 - 2016-07-06 13:45 - 00000000 ____D C:\ProgramData\NETC
2016-07-06 12:42 - 2016-07-06 13:43 - 00000000 ____D C:\ProgramData\clp
2016-07-06 12:42 - 2016-07-06 13:42 - 00000000 ____D C:\Program Files (x86)\.UtilTool_Antivirus_2016-07-06T134719
2016-07-06 12:42 - 2016-07-06 12:42 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\UtilTool
2016-07-06 01:42 - 2015-12-18 10:00 - 00755200 _____ C:\Windows\system32\xvidcore.dll
2016-07-06 01:42 - 2015-12-18 10:00 - 00309248 _____ C:\Windows\system32\xvidvfw.dll
2016-07-06 01:05 - 2016-07-08 11:02 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\5kplayer
2016-07-06 01:05 - 2016-07-06 01:05 - 00001202 _____ C:\Users\ADIDOU-ADDA\Desktop\5KPlayer.lnk
2016-07-06 01:05 - 2016-07-06 01:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\5kplayer
2016-07-06 01:05 - 2016-07-06 01:05 - 00000000 ____D C:\Program Files (x86)\DearMob
2016-07-05 20:35 - 2016-07-05 20:35 - 00002294 _____ C:\Users\ADIDOU-ADDA\Desktop\JDownloader 2.lnk
2016-07-05 20:35 - 2016-07-05 20:35 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2016-07-05 20:20 - 2016-07-05 20:35 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Local\JDownloader v2.0
2016-07-05 20:00 - 2016-07-05 23:07 - 00000000 ____D C:\Users\ADIDOU-ADDA\Desktop\Game of Thrones S01
2016-07-05 19:46 - 2016-07-05 20:02 - 00248982 _____ C:\Users\ADIDOU-ADDA\Downloads\Install JDownloader.rar
2016-07-05 19:45 - 2016-07-05 19:45 - 00001182 _____ C:\Users\ADIDOU-ADDA\Desktop\MEGAsync.lnk
2016-07-05 19:45 - 2016-07-05 19:45 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2016-07-05 19:44 - 2016-07-05 19:45 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Local\MEGAsync
2016-07-05 16:56 - 2016-07-05 16:56 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Local\Foxit Reader
2016-07-05 16:37 - 2016-07-05 16:37 - 00022613 _____ C:\Users\ADIDOU-ADDA\Desktop\ADSL Router.htm
2016-07-05 16:37 - 2016-07-05 16:37 - 00000000 ____D C:\Users\ADIDOU-ADDA\Desktop\ADSL Router_fichiers
2016-07-05 15:54 - 2016-05-24 15:29 - 00207928 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2016-07-04 23:36 - 2016-07-04 23:36 - 00031274 _____ C:\Users\ADIDOU-ADDA\Downloads\hell-on-wheels-s05e11-vostfr-hdtv.torrent
2016-07-04 10:27 - 2016-07-03 19:17 - 08475990 _____ C:\Users\ADIDOU-ADDA\Desktop\04072016.pdf
2016-07-02 16:12 - 2016-07-02 16:12 - 00022308 _____ C:\Users\ADIDOU-ADDA\Downloads\game-of-thrones-saison-1-fr[lien-torrent.com].torrent
2016-07-01 09:35 - 2016-07-01 09:36 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Local\Viber
2016-06-30 14:46 - 2016-07-08 11:03 - 00000000 ____D C:\Users\ADIDOU-ADDA\Documents\AirDroid
2016-06-30 14:46 - 2016-06-30 14:57 - 00000000 ____D C:\Users\Public\Documents\AirDroid
2016-06-30 14:45 - 2016-06-30 14:47 - 00000000 ____D C:\Program Files (x86)\AirDroid
2016-06-30 14:45 - 2016-06-30 14:46 - 00001954 _____ C:\Users\Public\Desktop\AirDroid.lnk
2016-06-30 14:45 - 2016-06-30 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirDroid
2016-06-23 12:58 - 2016-06-23 12:58 - 00000000 ____D C:\Windows\%LOCALAPPDATA%
2016-06-23 12:14 - 2016-06-23 12:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-23 12:13 - 2016-06-23 12:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-23 12:13 - 2016-06-23 12:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-22 03:55 - 2016-06-22 03:55 - 00016148 _____ C:\Windows\system32\DESKTOP-6L81H7E_ADIDOU-ADDA_HistoryPrediction.bin
2016-06-15 13:13 - 2016-05-28 06:00 - 02543784 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-06-15 13:13 - 2016-05-28 05:52 - 22326760 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-06-15 13:13 - 2016-05-28 05:08 - 21860352 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-06-15 13:13 - 2016-05-28 05:07 - 24597504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-06-15 13:13 - 2016-05-28 04:57 - 06788096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-06-15 13:13 - 2016-05-28 04:56 - 12511232 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-06-15 13:13 - 2016-05-28 04:53 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-06-15 13:13 - 2016-05-28 04:51 - 02119680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-06-15 13:13 - 2016-05-28 04:49 - 19330560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-06-15 13:13 - 2016-05-28 04:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-06-15 13:13 - 2016-05-28 04:45 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-06-15 13:13 - 2016-05-28 04:45 - 03584000 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-06-15 13:13 - 2016-05-28 04:44 - 04793344 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-06-15 13:13 - 2016-05-28 04:44 - 00737792 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-06-15 13:13 - 2016-05-28 04:41 - 05160960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-06-15 13:13 - 2016-05-28 04:40 - 18797568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-06-15 13:13 - 2016-05-28 04:38 - 00291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-06-15 13:13 - 2016-05-28 04:35 - 02042368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-06-15 13:13 - 2016-05-28 04:32 - 03580928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-06-15 13:13 - 2016-05-28 04:31 - 11268096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-06-15 13:13 - 2016-05-28 04:30 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-06-15 13:13 - 2016-05-28 04:29 - 00502272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-06-15 13:12 - 2016-05-28 06:02 - 06488312 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-06-15 13:12 - 2016-05-28 06:02 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-06-15 13:12 - 2016-05-28 06:02 - 01314496 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-06-15 13:12 - 2016-05-28 06:02 - 00601344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-06-15 13:12 - 2016-05-28 06:02 - 00432360 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-06-15 13:12 - 2016-05-28 06:02 - 00421536 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-06-15 13:12 - 2016-05-28 06:02 - 00158048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-06-15 13:12 - 2016-05-28 06:02 - 00113144 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-06-15 13:12 - 2016-05-28 06:00 - 01591304 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-06-15 13:12 - 2016-05-28 06:00 - 00327520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-06-15 13:12 - 2016-05-28 06:00 - 00203496 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2016-06-15 13:12 - 2016-05-28 05:59 - 00363872 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-06-15 13:12 - 2016-05-28 05:59 - 00131208 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-06-15 13:12 - 2016-05-28 05:54 - 00658784 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-06-15 13:12 - 2016-05-28 05:53 - 03625416 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-06-15 13:12 - 2016-05-28 05:53 - 00026464 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2016-06-15 13:12 - 2016-05-28 05:47 - 00613120 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-06-15 13:12 - 2016-05-28 05:47 - 00379232 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-06-15 13:12 - 2016-05-28 05:39 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-06-15 13:12 - 2016-05-28 05:39 - 01365584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-06-15 13:12 - 2016-05-28 05:39 - 00952968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-06-15 13:12 - 2016-05-28 05:39 - 00365128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-06-15 13:12 - 2016-05-28 05:38 - 05118024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-06-15 13:12 - 2016-05-28 05:38 - 00372368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-06-15 13:12 - 2016-05-28 05:38 - 00306528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-06-15 13:12 - 2016-05-28 05:38 - 00097096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-06-15 13:12 - 2016-05-28 05:35 - 02188472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-06-15 13:12 - 2016-05-28 05:35 - 00183904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2016-06-15 13:12 - 2016-05-28 05:35 - 00112632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-06-15 13:12 - 2016-05-28 05:28 - 00467296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-06-15 13:12 - 2016-05-28 05:27 - 20861984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-06-15 13:12 - 2016-05-28 05:27 - 02880560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-06-15 13:12 - 2016-05-28 05:21 - 00545400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-06-15 13:12 - 2016-05-28 05:21 - 00316256 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-06-15 13:12 - 2016-05-28 05:11 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-06-15 13:12 - 2016-05-28 05:10 - 00694784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-06-15 13:12 - 2016-05-28 05:10 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-06-15 13:12 - 2016-05-28 05:09 - 00914944 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-06-15 13:12 - 2016-05-28 05:00 - 01336832 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-06-15 13:12 - 2016-05-28 04:58 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-06-15 13:12 - 2016-05-28 04:58 - 00672256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-06-15 13:12 - 2016-05-28 04:58 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-06-15 13:12 - 2016-05-28 04:57 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-06-15 13:12 - 2016-05-28 04:54 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-06-15 13:12 - 2016-05-28 04:54 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-06-15 13:12 - 2016-05-28 04:54 - 00282112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2016-06-15 13:12 - 2016-05-28 04:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-06-15 13:12 - 2016-05-28 04:52 - 02663424 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-06-15 13:12 - 2016-05-28 04:51 - 02848256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-06-15 13:12 - 2016-05-28 04:51 - 01603584 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-06-15 13:12 - 2016-05-28 04:50 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-06-15 13:12 - 2016-05-28 04:50 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-06-15 13:12 - 2016-05-28 04:50 - 00574464 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-06-15 13:12 - 2016-05-28 04:48 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-06-15 13:12 - 2016-05-28 04:47 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-06-15 13:12 - 2016-05-28 04:44 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-06-15 13:12 - 2016-05-28 04:44 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-06-15 13:12 - 2016-05-28 04:43 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-06-15 13:12 - 2016-05-28 04:41 - 00272896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-06-15 13:12 - 2016-05-28 04:40 - 00672768 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2016-06-15 13:12 - 2016-05-28 04:39 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-06-15 13:12 - 2016-05-28 04:39 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2016-06-15 13:12 - 2016-05-28 04:38 - 01821696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-06-15 13:12 - 2016-05-28 04:38 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-06-15 13:12 - 2016-05-28 04:37 - 02315776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-06-15 13:12 - 2016-05-28 04:36 - 01383424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-06-15 13:12 - 2016-05-28 04:35 - 00679936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-06-15 13:12 - 2016-05-28 04:35 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2016-06-15 13:12 - 2016-05-28 04:35 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-06-15 13:12 - 2016-05-28 04:35 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-06-15 13:12 - 2016-05-28 04:33 - 00578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-06-15 13:12 - 2016-05-28 04:32 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-06-15 13:12 - 2016-05-28 04:29 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-06-15 13:12 - 2016-05-28 04:25 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2016-06-11 01:41 - 2016-06-13 17:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-11 01:02 - 2016-06-11 01:02 - 00369311 _____ C:\Users\ADIDOU-ADDA\Downloads\KENWOOD-IM200-notice-manuel-guide-mode-emploi-pdf
2016-06-10 17:42 - 2016-06-10 18:03 - 45031193 _____ C:\Users\ADIDOU-ADDA\Downloads\warsh_yassin_64kbps_1-3.ayt

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-07-08 11:17 - 2015-11-16 09:38 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\DMCache
2016-07-08 11:15 - 2015-07-30 23:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-08 11:15 - 2015-07-30 23:42 - 00000000 ____D C:\Windows\AppReadiness
2016-07-08 11:06 - 2015-11-11 07:24 - 01839260 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-08 11:06 - 2015-09-10 06:08 - 00819778 _____ C:\Windows\system32\perfh00C.dat
2016-07-08 11:06 - 2015-09-10 06:08 - 00154144 _____ C:\Windows\system32\perfc00C.dat
2016-07-08 11:06 - 2015-07-30 23:40 - 00000000 ____D C:\Windows\INF
2016-07-08 11:04 - 2016-02-06 20:53 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-08 11:04 - 2015-11-20 11:28 - 00004188 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B29DD47C-BE5B-4569-A47F-99D504C926EE}
2016-07-08 11:03 - 2015-12-25 10:56 - 00000445 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2016-07-08 11:02 - 2016-02-06 17:57 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\ViberPC
2016-07-08 10:59 - 2015-11-12 04:10 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-08 10:59 - 2015-07-30 22:52 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-07 23:59 - 2015-11-11 08:36 - 00000000 ____D C:\Users\ADIDOU-ADDA
2016-07-07 23:59 - 2015-07-10 10:05 - 01048576 ___SH C:\Windows\system32\config\BBI
2016-07-07 23:41 - 2015-12-02 17:10 - 00000000 ____D C:\Windows\Minidump
2016-07-07 23:34 - 2015-12-11 10:48 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-07 22:59 - 2016-01-17 14:48 - 02015744 ___SH C:\Users\ADIDOU-ADDA\Desktop\Thumbs.db
2016-07-07 18:58 - 2016-02-02 21:04 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Local\CrashDumps
2016-07-07 18:29 - 2015-11-16 09:38 - 00000000 ____D C:\Users\ADIDOU-ADDA\Downloads\Compressed
2016-07-07 18:03 - 2016-02-06 18:20 - 00000000 ____D C:\Users\ADIDOU-ADDA\Documents\ViberDownloads
2016-07-07 16:36 - 2016-01-09 16:00 - 00000000 ____D C:\AdwCleaner
2016-07-07 15:51 - 2016-04-26 22:36 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\BitComet
2016-07-07 15:28 - 2015-12-28 10:25 - 00000000 ____D C:\ProgramData\MoboRobo
2016-07-07 14:51 - 2015-12-28 10:26 - 00002032 _____ C:\Users\Public\Desktop\MoboRobo.lnk
2016-07-07 14:51 - 2015-12-28 10:25 - 00000000 ____D C:\Program Files (x86)\MoboRobo
2016-07-07 14:07 - 2015-11-15 08:25 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\vlc
2016-07-07 11:09 - 2015-07-30 23:42 - 00000000 ____D C:\Windows\system32\NDF
2016-07-07 01:39 - 2015-11-11 22:43 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-07-06 23:09 - 2016-04-19 19:13 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-07-06 19:33 - 2015-11-16 09:38 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager
2016-07-06 13:43 - 2016-01-09 23:51 - 00000000 ____D C:\Windows\system32\appmgmt
2016-07-06 12:04 - 2015-11-16 09:38 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\IDM
2016-07-06 01:42 - 2015-12-01 13:50 - 00002798 _____ C:\Windows\System32\Tasks\klcp_update
2016-07-06 01:42 - 2015-12-01 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-07-06 01:42 - 2015-12-01 13:49 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-07-05 19:12 - 2015-11-16 09:38 - 00000000 ____D C:\Users\ADIDOU-ADDA\Downloads\Video
2016-07-05 00:21 - 2015-07-30 23:42 - 00000000 ____D C:\Windows\system32\ias
2016-07-04 01:17 - 2015-07-30 23:42 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-07-03 14:42 - 2016-01-24 16:58 - 00000000 ____D C:\Users\ADIDOU-ADDA\Desktop\CANON
2016-06-22 00:05 - 2015-07-30 23:25 - 00000000 ____D C:\Windows\CbsTemp
2016-06-20 19:21 - 2015-11-15 06:45 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Local\ElevatedDiagnostics
2016-06-19 15:32 - 2016-02-06 20:53 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-19 14:29 - 2016-02-06 20:53 - 00003456 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-06-19 14:29 - 2015-11-19 17:30 - 00002614 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2016-06-19 14:29 - 2015-11-19 17:30 - 00002336 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (ADIDOU-ADDA)
2016-06-19 14:29 - 2015-11-13 11:22 - 00003404 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1447410118
2016-06-19 12:25 - 2015-11-13 11:14 - 00000000 ____D C:\Program Files (x86)\Opera
2016-06-18 13:12 - 2016-02-06 21:10 - 00002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 13:12 - 2016-02-06 21:10 - 00002258 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-17 12:22 - 2015-11-19 20:39 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Local\Adobe
2016-06-17 10:54 - 2015-07-30 23:42 - 00000000 ____D C:\Windows\rescache
2016-06-17 09:20 - 2015-09-10 06:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-17 09:17 - 2016-05-17 09:20 - 00509680 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-17 01:47 - 2015-07-30 23:42 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-06-15 16:47 - 2015-11-20 09:25 - 00000000 ____D C:\Users\ADIDOU-ADDA\AppData\Roaming\Kodi
2016-06-15 13:52 - 2015-11-12 04:22 - 00000000 ____D C:\Windows\system32\MRT
2016-06-15 13:44 - 2015-11-12 04:21 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-06-15 11:35 - 2015-11-13 11:22 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-06-14 18:32 - 2015-07-30 23:43 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-06-14 18:32 - 2015-07-30 23:43 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-13 17:29 - 2015-11-11 11:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-11 02:11 - 2015-11-15 08:24 - 00000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-06-11 01:03 - 2015-12-17 15:23 - 00000000 ____D C:\Users\ADIDOU-ADDA\Documents\Bibliothèque calibre

==================== Fichiers à la racine de certains dossiers =======

2016-03-24 18:46 - 2016-03-24 18:46 - 0000017 _____ () C:\Users\ADIDOU-ADDA\AppData\Local\resmon.resmoncfg
2015-11-14 22:52 - 2015-11-14 22:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Certains fichiers dans TEMP:
====================
C:\Users\ADIDOU-ADDA\AppData\Local\Temp\gusetup1.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-07-02 23:56

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité