cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-07-2016
Exécuté par anna (administrateur) sur ANNA-TOSH (21-07-2016 22:53:00)
Exécuté depuis C:\Users\anna\Downloads
Profils chargés: anna (Profils disponibles: anna & Invité)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
() C:\windows\System32\GFNEXSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TOSHIBA Corporation) C:\windows\System32\TODDSrv.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Intel Corporation) C:\windows\System32\igfxtray.exe
(Intel Corporation) C:\windows\System32\hkcmd.exe
(Intel Corporation) C:\windows\System32\igfxpers.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe
() C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(BitTorrent Inc.) C:\Users\anna\AppData\Roaming\BitTorrent\BitTorrent.exe
(Toshiba) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
(Micro Application) C:\Program Files (x86)\Micro Application\LauncherMA.exe
(Microsoft Corporation) C:\windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\windows\System32\dllhost.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(BitTorrent Inc.) C:\Users\anna\AppData\Roaming\BitTorrent\updates\7.9.7_42331\utorrentie.exe
(BitTorrent Inc.) C:\Users\anna\AppData\Roaming\BitTorrent\updates\7.9.7_42331\utorrentie.exe
(Microsoft Corporation) C:\windows\splwow64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-16] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2866960 2011-12-19] (Synaptics Incorporated)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [590256 2011-09-23] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [989056 2011-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [712096 2011-12-15] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [710560 2011-11-26] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720 2011-02-10] (Toshiba Europe GmbH)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [150992 2012-05-11] (Toshiba Europe GmbH)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-25] (CANON INC.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520 2015-01-15] (Bitdefender)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [NBAgent] => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [1492264 2011-11-18] (Nero AG)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-20\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\...\Run: [Orange Installer] => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [476056 2013-11-04] ()
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\...\Run: [OrangeInside] => C:\Users\anna\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe [343 2016-05-12] ()
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-01-15] (Bitdefender)
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\...\Run: [Bitdefender Agent de l'application Wallet] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-09-29] (Bitdefender)
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\...\Run: [BitTorrent] => C:\Users\anna\AppData\Roaming\BitTorrent\BitTorrent.exe [1972232 2016-05-20] (BitTorrent Inc.)
HKU\S-1-5-18\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-18\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-01-15] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender Wallet] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-09-29] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender Agent de l'application Wallet] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-09-29] (Bitdefender)
HKU\S-1-5-18\...\Run: [BrowserChoice] => C:\Windows\System32\browserchoice.exe [294912 2010-02-23] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [OrangeInside] => C:\Users\Default\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [000_OMHOverlayError] -> {6985F9D3-5A54-4C41-BABF-812F79A2B673} => C:\Users\anna\AppData\Local\Le Cloud Orange\overlay\x64\OMHOverlay.dll [2015-04-10] (TODO: )
ShellIconOverlayIdentifiers: [001_OMHOverlayProg] -> {809D24D6-A067-4C51-BF0F-0A60CA722182} => C:\Users\anna\AppData\Local\Le Cloud Orange\overlay\x64\OMHOverlay.dll [2015-04-10] (TODO: )
ShellIconOverlayIdentifiers: [002_OMHOverlayIcon] -> {0D077A21-3DB2-4955-A3AB-D623C9270D9C} => C:\Users\anna\AppData\Local\Le Cloud Orange\overlay\x64\OMHOverlay.dll [2015-04-10] (TODO: )
ShellIconOverlayIdentifiers: [003_OMHOverlayExcl] -> {37FC1C76-E238-4779-B2AC-68DCEA8253C5} => C:\Users\anna\AppData\Local\Le Cloud Orange\overlay\x64\OMHOverlay.dll [2015-04-10] (TODO: )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Toshiba Places Icon Utility.lnk [2012-05-11]
ShortcutTarget: Toshiba Places Icon Utility.lnk -> C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe (Toshiba)
Startup: C:\Users\anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lanceur.lnk [2013-03-10]
ShortcutTarget: Lanceur.lnk -> C:\Program Files (x86)\Micro Application\LauncherMA.exe (Micro Application)
Startup: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk [2012-12-22]
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyServer: [HKLM] => 127.0.0.1:8080
ProxyServer: [S-1-5-21-1615707336-1679589316-3947206240-1000] => 127.0.0.1:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{25FA0F21-A0E0-4DB6-A465-A45920DEF34A}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1615707336-1679589316-3947206240-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 -> Par défaut = {CCC7B159-1D8C-11E3-B2AD-F3EF3D58318D}
SearchScopes: HKLM-x32 -> {47FB452E-5344-40E6-B8E3-866D300432E1} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TEUA;
SearchScopes: HKU\S-1-5-21-1615707336-1679589316-3947206240-1000 -> DefaultScope {814C76CB-2623-43F4-AAD0-58A0E5190A20} URL = hxxp://r.orange.fr/r?ref=O_OI_hook_openSearchIE&url=http%3A//rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
SearchScopes: HKU\S-1-5-21-1615707336-1679589316-3947206240-1000 -> 982E709B912647C9864D6D75B68DCCE3 URL = hxxp://r.orange.fr/r?ref=O_OI_hook_openSearchIE&url=http%3A//rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
SearchScopes: HKU\S-1-5-21-1615707336-1679589316-3947206240-1000 -> {47FB452E-5344-40E6-B8E3-866D300432E1} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TEUA_frFR502FR502
SearchScopes: HKU\S-1-5-21-1615707336-1679589316-3947206240-1000 -> {814C76CB-2623-43F4-AAD0-58A0E5190A20} URL = hxxp://r.orange.fr/r?ref=O_OI_hook_openSearchIE&url=http%3A//rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-09-29] (Bitdefender)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2014-09-29] (Bitdefender)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Programme d’aide de l’Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08] (CANON INC.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\anna\AppData\Roaming\Mozilla\Firefox\Profiles\f561sy8h.default-1456297527590
FF Homepage: hxxps://google.fr
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-19] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-19] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll [2014-04-15] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-15] (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-07-11] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 -> C:\windows\SysWOW64\npDeployJava1.dll [2013-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll [Pas de fichier]
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-03-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-01-13] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1615707336-1679589316-3947206240-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\anna\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1615707336-1679589316-3947206240-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\anna\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-22] (Unity Technologies ApS)
FF Extension: Adblock Plus - C:\Users\anna\AppData\Roaming\Mozilla\Firefox\Profiles\f561sy8h.default-1456297527590\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2014-04-03] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-04-03] [non signé]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext

Chrome:
=======
CHR HomePage: Default -> hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_CH
CHR StartupUrls: Default -> "hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_CH"
CHR DefaultSearchURL: Default -> hxxp://r.orange.fr/r?ref=O_OI_hook_openSearchCH&url=http%3A//rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
CHR Profile: C:\Users\anna\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Bitdefender Wallet) - C:\Users\anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2014-11-10]
CHR Extension: (Skype) - C:\Users\anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-01-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-15]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2015-01-15]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [77632 2014-09-29] (Bitdefender)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent)
R2 GFNEXSrv; C:\Windows\System32\GFNEXSrv.exe [162824 2010-09-10] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] ()
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-05-06] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation)
S3 npggsvc; C:\windows\SysWOW64\GameMon.des [3299328 2014-11-26] (INCA Internet Co., Ltd.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-07-20] (Electronic Arts)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-10] (Toshiba Europe GmbH)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908256 2016-07-14] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-07-14] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-07-14] (McAfee, Inc.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2014-09-29] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672 2015-01-15] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [310728 2015-06-19] ()
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2015-01-15] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [263032 2015-01-15] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-09-29] (BitDefender)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2014-08-06] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2014-03-06] ()
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216 2016-07-19] (Malwarebytes)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2015-01-15] (BitDefender S.R.L.)
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
S3 TDEIO; \??\C:\Windows\SysWOW64\sysprep\BOOTPRIO\tdeio64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-07-21 22:53 - 2016-07-21 22:54 - 00027680 _____ C:\Users\anna\Downloads\FRST.txt
2016-07-21 22:52 - 2016-07-21 22:53 - 00000000 ____D C:\FRST
2016-07-21 22:51 - 2016-07-21 22:51 - 02393600 _____ (Farbar) C:\Users\anna\Downloads\FRST64.exe
2016-07-21 22:50 - 2016-07-21 22:50 - 01743872 _____ (Farbar) C:\Users\anna\Downloads\FRST.exe
2016-07-21 13:45 - 2016-07-21 13:45 - 00001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-21 13:45 - 2016-07-21 13:45 - 00001158 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-07-21 13:45 - 2016-07-21 13:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-21 13:44 - 2016-07-21 13:44 - 00242376 _____ C:\Users\Invité\Downloads\Firefox Setup Stub 47.0.1.exe
2016-07-21 13:44 - 2016-07-21 13:44 - 00242376 _____ C:\Users\Invité\Downloads\Firefox Setup Stub 47.0.1 (1).exe
2016-07-20 21:46 - 2016-07-20 21:46 - 00000000 ____D C:\Users\anna\AppData\Local\tkdata
2016-07-19 21:56 - 2016-07-19 21:56 - 00002996 _____ C:\windows\System32\Tasks\{58FF4955-B4B1-4B86-9A36-010CC9125E5F}
2016-07-19 21:54 - 2016-07-19 21:54 - 00002996 _____ C:\windows\System32\Tasks\{DEA1E5B6-5C34-4CAD-A698-50747B9E1EB2}
2016-07-19 20:19 - 2016-07-19 18:59 - 00000030 _____ C:\AVScanner.ini
2016-07-19 19:10 - 2016-07-20 21:46 - 00001201 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-07-19 19:10 - 2016-07-19 19:11 - 00000000 ____D C:\Users\Invité\AppData\Local\tkdata
2016-07-19 19:10 - 2016-07-19 19:10 - 00000000 ____D C:\ProgramData\TrueKey
2016-07-19 19:08 - 2016-07-21 07:21 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-07-19 19:08 - 2016-07-20 21:46 - 00000000 ____D C:\Program Files\Intel Security
2016-07-19 19:08 - 2016-07-19 19:08 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-07-19 18:58 - 2016-07-21 07:19 - 00000000 ____D C:\Program Files\TrueKey
2016-07-19 07:13 - 2016-07-21 22:44 - 00000000 ____D C:\Users\anna\AppData\LocalLow\BitTorrent
2016-07-18 22:12 - 2016-07-18 22:12 - 00001714 _____ C:\Users\anna\Desktop\Fiesta Online FR.lnk
2016-07-14 10:50 - 2016-06-11 08:57 - 00394448 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-07-14 10:50 - 2016-06-11 06:48 - 00346320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2016-07-14 10:50 - 2016-06-10 23:38 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-07-14 10:50 - 2016-06-10 23:38 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2016-07-14 10:50 - 2016-06-10 23:20 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2016-07-14 10:50 - 2016-06-10 23:19 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2016-07-14 10:50 - 2016-06-10 23:19 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2016-07-14 10:50 - 2016-06-10 23:18 - 00572416 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-07-14 10:50 - 2016-06-10 23:18 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2016-07-14 10:50 - 2016-06-10 23:17 - 02895360 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-07-14 10:50 - 2016-06-10 23:10 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-07-14 10:50 - 2016-06-10 23:08 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2016-07-14 10:50 - 2016-06-10 23:05 - 25814016 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-07-14 10:50 - 2016-06-10 23:04 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-07-14 10:50 - 2016-06-10 23:03 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2016-07-14 10:50 - 2016-06-10 23:03 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2016-07-14 10:50 - 2016-06-10 23:02 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-07-14 10:50 - 2016-06-10 23:02 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2016-07-14 10:50 - 2016-06-10 22:53 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2016-07-14 10:50 - 2016-06-10 22:50 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2016-07-14 10:50 - 2016-06-10 22:49 - 06047744 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-07-14 10:50 - 2016-06-10 22:40 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2016-07-14 10:50 - 2016-06-10 22:38 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2016-07-14 10:50 - 2016-06-10 22:35 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2016-07-14 10:50 - 2016-06-10 22:34 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-07-14 10:50 - 2016-06-10 22:31 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-07-14 10:50 - 2016-06-10 22:28 - 00152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2016-07-14 10:50 - 2016-06-10 22:15 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-07-14 10:50 - 2016-06-10 22:13 - 00724992 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-07-14 10:50 - 2016-06-10 22:12 - 00806400 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-07-14 10:50 - 2016-06-10 22:11 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2016-07-14 10:50 - 2016-06-10 22:10 - 02131456 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-07-14 10:50 - 2016-06-10 21:45 - 15409664 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-07-14 10:50 - 2016-06-10 21:44 - 02869248 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-07-14 10:50 - 2016-06-10 21:30 - 01550848 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-07-14 10:50 - 2016-06-10 21:21 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-07-14 10:50 - 2016-06-10 21:09 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2016-07-14 10:50 - 2016-06-10 20:54 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2016-07-14 10:50 - 2016-06-10 20:53 - 00497664 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-07-14 10:50 - 2016-06-10 20:53 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2016-07-14 10:50 - 2016-06-10 20:53 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2016-07-14 10:50 - 2016-06-10 20:52 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2016-07-14 10:50 - 2016-06-10 20:47 - 02287104 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-07-14 10:50 - 2016-06-10 20:46 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2016-07-14 10:50 - 2016-06-10 20:45 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2016-07-14 10:50 - 2016-06-10 20:42 - 20348928 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-07-14 10:50 - 2016-06-10 20:42 - 00476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2016-07-14 10:50 - 2016-06-10 20:41 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-07-14 10:50 - 2016-06-10 20:41 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2016-07-14 10:50 - 2016-06-10 20:41 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2016-07-14 10:50 - 2016-06-10 20:32 - 00416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2016-07-14 10:50 - 2016-06-10 20:27 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-07-14 10:50 - 2016-06-10 20:26 - 00091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2016-07-14 10:50 - 2016-06-10 20:24 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2016-07-14 10:50 - 2016-06-10 20:23 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2016-07-14 10:50 - 2016-06-10 20:21 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2016-07-14 10:50 - 2016-06-10 20:19 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2016-07-14 10:50 - 2016-06-10 20:14 - 04608000 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-07-14 10:50 - 2016-06-10 20:12 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2016-07-14 10:50 - 2016-06-10 20:10 - 00692736 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-07-14 10:50 - 2016-06-10 20:09 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-07-14 10:50 - 2016-06-10 20:09 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2016-07-14 10:50 - 2016-06-10 19:58 - 13806080 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-07-14 10:50 - 2016-06-10 19:45 - 02392576 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-07-14 10:50 - 2016-06-10 19:42 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-07-14 10:50 - 2016-06-10 19:41 - 01315840 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-07-14 10:41 - 2016-06-26 02:35 - 00041704 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-07-14 10:41 - 2016-06-26 02:27 - 01208320 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-07-14 10:41 - 2016-06-22 15:06 - 00268800 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-07-14 10:41 - 2016-06-17 20:24 - 01490432 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-07-14 10:41 - 2016-06-17 20:24 - 00571904 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-07-14 10:41 - 2016-06-17 20:24 - 00544256 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-07-14 10:41 - 2016-06-17 20:24 - 00294912 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-07-14 10:41 - 2016-06-17 20:24 - 00219136 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2016-07-14 10:41 - 2016-06-17 20:24 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-07-14 10:25 - 2016-06-26 02:27 - 00970240 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2016-07-14 10:25 - 2016-06-26 02:27 - 00756736 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2016-07-14 10:25 - 2016-06-26 02:27 - 00344576 _____ (Microsoft Corporation) C:\windows\system32\ntprint.dll
2016-07-14 10:25 - 2016-06-26 02:27 - 00166400 _____ (Microsoft Corporation) C:\windows\system32\inetpp.dll
2016-07-14 10:25 - 2016-06-26 02:27 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\inetppui.dll
2016-07-14 10:25 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2016-07-14 10:25 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntprint.dll
2016-07-14 10:25 - 2016-06-25 21:53 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\ntprint.exe
2016-07-14 10:25 - 2016-06-25 21:53 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\wpnpinst.exe
2016-07-14 10:25 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntprint.exe
2016-07-14 10:22 - 2016-06-14 17:03 - 03217408 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-07-13 02:37 - 2016-07-13 02:37 - 00000000 ____D C:\Users\Invité\Documents\TomTom
2016-07-13 02:37 - 2016-07-13 02:37 - 00000000 ____D C:\Users\Invité\AppData\Roaming\TomTom
2016-07-13 02:36 - 2016-07-13 02:36 - 00000000 ____D C:\Program Files (x86)\TomTom HOME 2
2016-07-13 02:31 - 2016-07-13 02:31 - 00001672 _____ C:\Users\Invité\Desktop\Fiesta Online FR.lnk
2016-07-13 02:25 - 2016-07-13 02:25 - 00000000 ____D C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gamigo
2016-07-13 00:44 - 2016-07-13 01:47 - 1999303184 _____ (Gamigo) C:\Users\Invité\Downloads\FiestaOnline_FR(1).exe
2016-07-13 00:34 - 2016-07-13 00:35 - 31109864 _____ C:\Users\Invité\Downloads\TomTomHOME2winlatest.exe
2016-07-13 00:34 - 2016-07-13 00:35 - 30341736 _____ (TomTom International B.V.) C:\Users\Invité\Downloads\InstallMyDriveConnect.exe
2016-07-13 00:25 - 2016-07-13 02:37 - 00000000 ____D C:\Users\Invité\AppData\Local\TomTom
2016-07-08 07:16 - 2016-07-08 07:16 - 00542662 _____ C:\Users\anna\Downloads\knauf_batiment-product-plaque_de_platre_knauf_horizon_4.pdf
2016-07-06 08:46 - 2016-07-06 08:46 - 17796181 _____ C:\Users\anna\Downloads\Plafonds.pdf - (9 Mo).pdf

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-07-21 22:54 - 2015-04-25 12:59 - 00000000 ____D C:\Users\anna\AppData\Roaming\BitTorrent
2016-07-21 22:54 - 2009-07-14 06:45 - 00024608 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-21 22:54 - 2009-07-14 06:45 - 00024608 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-21 22:45 - 2009-07-14 05:20 - 00000000 ____D C:\windows\inf
2016-07-21 22:43 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-07-21 22:42 - 2013-03-05 10:04 - 01497719 _____ C:\bdlog.txt
2016-07-21 22:39 - 2015-05-18 21:27 - 00001070 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA1d091a09edfb3ab.job
2016-07-21 22:39 - 2015-05-18 21:27 - 00001066 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1d091a09cfb0e12.job
2016-07-21 22:39 - 2012-05-11 05:18 - 00001070 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-21 22:39 - 2012-05-11 05:18 - 00001066 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-21 22:22 - 2014-10-27 08:35 - 00001082 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1615707336-1679589316-3947206240-501UA.job
2016-07-21 17:27 - 2014-10-27 08:35 - 00001030 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1615707336-1679589316-3947206240-501Core.job
2016-07-21 16:39 - 2012-10-30 12:37 - 00000000 ____D C:\Users\anna\Desktop\Lison
2016-07-21 14:00 - 2013-10-27 09:28 - 00000000 ____D C:\Users\Invité\Desktop\Anciennes données de Firefox
2016-07-21 13:45 - 2016-06-09 22:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-07-21 07:57 - 2014-07-29 21:04 - 00411136 ___SH C:\Users\anna\Desktop\Thumbs.db
2016-07-20 23:43 - 2011-07-05 16:04 - 00751156 _____ C:\windows\system32\perfh00C.dat
2016-07-20 23:43 - 2011-07-05 16:04 - 00151512 _____ C:\windows\system32\perfc00C.dat
2016-07-20 23:43 - 2009-07-14 07:13 - 01679210 _____ C:\windows\system32\PerfStringBackup.INI
2016-07-20 21:47 - 2012-05-11 05:22 - 00000000 ____D C:\ProgramData\McAfee
2016-07-20 21:46 - 2012-07-05 23:52 - 00000000 ____D C:\Program Files\Common Files\Intel
2016-07-20 20:21 - 2012-05-11 05:18 - 00002204 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-20 20:21 - 2012-05-11 05:18 - 00002192 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-20 18:21 - 2015-10-05 20:20 - 00001353 _____ C:\Users\Public\Desktop\Les Sims 4.lnk
2016-07-20 18:06 - 2014-06-04 06:52 - 00000000 ____D C:\ProgramData\Origin
2016-07-20 18:06 - 2014-06-04 06:52 - 00000000 ____D C:\Program Files (x86)\Origin
2016-07-20 11:47 - 2015-04-04 23:36 - 00000000 ___SD C:\windows\SysWOW64\GWX
2016-07-20 11:47 - 2015-04-04 23:36 - 00000000 ___SD C:\windows\system32\GWX
2016-07-19 21:22 - 2012-11-22 22:42 - 00000000 ____D C:\Users\Invité\AppData\Local\Adobe
2016-07-19 21:22 - 2012-05-11 05:13 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-07-19 21:22 - 2012-05-11 05:13 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-19 20:33 - 2015-08-06 20:25 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-19 20:18 - 2012-05-11 05:15 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-07-19 19:09 - 2012-07-05 23:50 - 00000000 ____D C:\Program Files\Intel
2016-07-19 19:08 - 2015-07-29 12:37 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-17 22:20 - 2012-11-01 22:33 - 00000000 ____D C:\Users\anna\AppData\Roaming\vlc
2016-07-17 20:43 - 2016-03-01 14:54 - 00000000 ____D C:\Users\anna\Downloads\Baron Noir
2016-07-16 08:59 - 2014-09-04 19:56 - 00000000 ____D C:\Users\anna\AppData\Local\Adobe
2016-07-16 08:59 - 2012-05-11 05:13 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-07-16 08:59 - 2012-05-11 05:13 - 00000000 ____D C:\windows\system32\Macromed
2016-07-15 07:55 - 2009-07-14 06:45 - 00456128 _____ C:\windows\system32\FNTCACHE.DAT
2016-07-15 07:53 - 2014-12-12 08:30 - 00000000 ____D C:\windows\system32\appraiser
2016-07-15 07:53 - 2010-11-21 09:17 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-14 23:06 - 2013-08-14 09:22 - 00000000 ____D C:\windows\system32\MRT
2016-07-14 22:44 - 2012-09-27 19:09 - 144749672 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-07-14 14:21 - 2015-07-13 09:36 - 00000932 _____ C:\DelFix.txt
2016-07-13 02:36 - 2016-03-20 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2016-07-13 02:35 - 2016-03-20 16:17 - 00000000 ____D C:\Program Files (x86)\TomTom International B.V
2016-07-13 02:34 - 2014-07-14 22:22 - 00000000 ____D C:\Users\Invité\AppData\Local\Downloaded Installations
2016-07-13 02:01 - 2014-05-25 23:40 - 00000000 ____D C:\Gamigo
2016-07-13 00:35 - 2016-03-20 16:17 - 00000972 _____ C:\Users\Public\Desktop\TomTom MyDrive Connect.lnk
2016-07-13 00:35 - 2016-03-20 16:17 - 00000000 ____D C:\Program Files (x86)\MyDrive Connect
2016-07-11 17:37 - 2015-06-18 17:50 - 00000000 ____D C:\Users\anna\AppData\Local\NFS Underground 2
2016-07-10 11:31 - 2013-11-12 20:56 - 00000000 ____D C:\Users\anna\Documents\Fichiers Outlook
2016-07-08 11:58 - 2012-12-14 23:22 - 00000000 ____D C:\Users\Invité\Desktop\Lison
2016-07-07 15:39 - 2013-03-08 22:56 - 00000000 ____D C:\Program Files (x86)\Slayers Online
2016-07-02 19:37 - 2013-03-05 22:11 - 00229888 ___SH C:\Users\anna\Thumbs.db
2016-06-24 07:10 - 2013-03-15 08:22 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-24 07:10 - 2013-03-15 08:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-23 21:58 - 2013-03-15 08:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-06-23 07:43 - 2009-07-14 07:08 - 00032496 _____ C:\windows\Tasks\SCHEDLGU.TXT

==================== Fichiers à la racine de certains dossiers =======

2012-12-08 17:03 - 2012-12-08 17:03 - 0000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2015-08-02 16:21 - 2015-09-06 20:52 - 0006656 _____ () C:\Users\anna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-09-21 12:07 - 2012-09-21 12:07 - 0227113 _____ () C:\ProgramData\1348221465.bdinstall.bin
2013-10-05 17:04 - 2013-10-05 17:04 - 0617267 _____ () C:\ProgramData\1380984800.bdinstall.bin
2014-08-06 21:23 - 2014-08-06 21:23 - 0244375 _____ () C:\ProgramData\1407352855.bdinstall.bin
2014-08-06 22:10 - 2014-08-06 22:10 - 0625661 _____ () C:\ProgramData\1407355055.bdinstall.bin

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\windows\system32\wininit.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\windows\explorer.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\windows\system32\svchost.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\windows\system32\services.exe => Le fichier est signé numériquement
C:\windows\system32\User32.dll => Le fichier est signé numériquement
C:\windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\windows\system32\userinit.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-05-28 11:44

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité