Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2016
Exécuté par ALYDEPHILA (administrateur) sur FKSERVICES-PC (01-12-2016 18:18:56)
Exécuté depuis C:\Users\ALYDEPHILA\Desktop
Profils chargés: ALYDEPHILA (Profils disponibles: ALYDEPHILA)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe
() C:\Windows\SysWOW64\srvany.exe
() C:\Windows\KMService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(ultracopier.first-world.info) C:\Program Files (x86)\Supercopier\supercopier.exe
(Vested Development, Inc) C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\produpd.exe
(Vested Development, Inc) C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\monhost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Run: [ultracopier] => C:\Program Files (x86)\Supercopier\supercopier.exe [178688 2014-02-19] (ultracopier.first-world.info)
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2016-05-30] (Glarysoft Ltd)
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Run: [produpd] => C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\produpd.exe [555008 2016-12-01] (Vested Development, Inc) <===== ATTENTION
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [] => 0
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Providers\1ic1zm1g: C:\Program Files (x86)\Quark\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\3kaef3qc: C:\Program Files (x86)\Selteco\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\43ez03dn: C:\Windows\Temp1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\6y1hi8h3: C:\Program Files (x86)\Mozilla Firefox\browser\features1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\7s2j3umw: C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\873ol21o: C:\Program Files (x86)\Youtube AdBlock\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\9h5106n8: C:\Program Files (x86)\Youtube AdBlock1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\9ri9pjuv: C:\Program Files (x86)\RMPrepUSB1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\9ypgiv6d: C:\Program Files (x86)\Selteco1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\a3jhev7h: C:\Program Files (x86)\MyPlayCity.com\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\dky2yhz7: C:\Program Files (x86)\SourceTec\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\dsji99mv: C:\Windows\Temp\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\etoxpr0a: C:\1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\f88lk4d6: C:\Program Files (x86)\SMADAV1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\fgj52oud: C:\Program Files (x86)\Mozilla Firefox\browser\features\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\gkte5adi: C:\Program Files (x86)\SourceTec1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\hul168f6: C:\Program Files (x86)\Samsung1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\hze6usf8: C:\Users\ALYDEPHILA\AppData\Local\Temp1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\iclzp3xv: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\jagb7fij: C:\Program Files (x86)\RMPrepUSB\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\kup0h719: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\sazklrxk: C:\Program Files (x86)\MyPlayCity.com1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\uexwzgv7: C:\Program Files (x86)\Samsung\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\v0vsn3po: C:\Program Files (x86)\SMADAV\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\w5pz4odn: C:\Users\ALYDEPHILA\AppData\Local\Temp\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\wo8f5upy: C:\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\zjawcn9n: C:\Program Files (x86)\Quark1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\zwmszme9: C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock\local64spl.dll [143360 2016-12-01] ()
ShellExecuteHooks: - {1AE6B03E-A5C0-11E6-A016-64006A5CFC23} - Pas de fichier [ ]
ShellExecuteHooks: - {B1074BF6-AA3A-11E6-BEB2-64006A5CFC23} - Pas de fichier [ ]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
Startup: C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\monhost.lnk [2016-12-01] <===== ATTENTION
ShortcutTarget: monhost.lnk -> C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\monhost.exe (Vested Development, Inc)
BootExecute: autocheck autochk * sdnclean64.exePartizan
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04F4F147-E31A-480A-8A7D-47CCFF852C48}: [DhcpNameServer] 196.47.182.2 41.206.65.5
Tcpip\..\Interfaces\{4F44FBAA-025A-4595-8EFF-C0D26D5D15D0}: [NameServer] 213.136.96.8 213.136.96.7
Tcpip\..\Interfaces\{5E33C428-28C5-4958-953A-D664BFCF73BC}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FA605B16-9B47-409C-8440-F7A663FAC7A1}: [DhcpNameServer] 196.47.182.11 41.206.65.5
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-665404171-919443060-2139378440-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.fr
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.fr
HKU\S-1-5-21-665404171-919443060-2139378440-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://d2xkrcja1nf0mp.cloudfront.net/getfileg.ashx?e=7fSdujsAurrRlUsyAxGfFA==
SearchScopes: HKLM -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =
SearchScopes: HKU\S-1-5-21-665404171-919443060-2139378440-1000 -> {37D155AE-1E2A-484F-9290-94223A7BF7C7} URL =
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-06-14] (Microsoft Corporation)
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies S.A.)
FireFox:
========
FF ProfilePath: C:\Users\ALYDEPHILA\AppData\Roaming\Mozilla\Firefox\Profiles\be7588wf.default-1480613516805 [2016-12-01]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-08-25] [non signé]
FF HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13
FF Extension: (Free Download Manager extension) - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13 [2016-09-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-23] ()
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-23] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 5\npnitromozilla.dll [2016-03-03] (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-23] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-23] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxp://www.google.com/
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.google.fr/","hxxp://www.youndoo.com/?z=e18df0bd293aba2144ce99dg0zdbfe1w2bam5zet3o&from=wak&uid=WDCXWD3200BEVT-26A23T0_WD-WX11A50A7876A7876&type=hp","hxxp://www-searching.com/?pid=s&s=GC1zamobl19312xBU,e374b075-be62-436f-a369-1315e122fea4,"
CHR Profile: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-12-01] <==== ATTENTION
CHR Extension: (Google Slides) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-23]
CHR Extension: (Google Docs) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-23]
CHR Extension: (Google Drive) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-23]
CHR Extension: (YouTube) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-23]
CHR Extension: (Google Sheets) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-23]
CHR Extension: (Bouton Pin It) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2016-11-23]
CHR Extension: (Skype) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-23]
CHR Extension: (Fast search) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-01]
CHR Extension: (Gmail) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-23]
CHR Extension: (Chrome Media Router) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-23]
CHR Profile: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4 [2016-12-01]
CHR Extension: (Google Slides) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-25]
CHR Extension: (Google Docs) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-25]
CHR Extension: (Google Sheets) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-25]
CHR Extension: (Skype) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-25]
CHR Extension: (Fast search) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-01]
CHR Profile: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\System Profile [2016-12-01]
CHR Extension: (Fast search) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-01]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-01-17]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417304 2016-04-26] (BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.)
S3 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [921112 2016-04-26] (BlueStack Systems, Inc.)
R2 Cowuent; C:\Program Files (x86)\Paqerght\hukuphlauncher.dll [274944 2016-12-01] () [Fichier non signé]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1037824 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
S4 ImDskSvc; C:\Windows\system32\imdsksvc.exe [18016 2014-07-10] (Olof Lagerkvist)
R2 InternetEverywhere_Service; C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe [537144 2014-08-11] ()
R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [Fichier non signé]
S3 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (Visicom Media Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Fichier non signé]
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
S3 NitroReaderDriverReadSpool5; C:\Program Files\Nitro\Reader 5\NitroPDFReaderDriverService5x64.exe [327328 2016-03-03] (Nitro PDF Software)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-06-01] (Nero AG)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Fichier non signé]
S3 postgresql-x64-9.5; C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe [94208 2016-05-10] (PostgreSQL Global Development Group) [Fichier non signé]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 Hhightphash; C:\Program Files (x86)\Zeraghrlash\Aruatainstuserysys.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\Windows\system32\ampa.sys [17008 2013-12-18] () [Fichier non signé]
S3 ampa; C:\Windows\SysWOW64\ampa.sys [17008 2013-12-18] () [Fichier non signé]
R2 AWEAlloc; C:\Windows\System32\DRIVERS\awealloc.sys [20536 2014-06-03] (Olof Lagerkvist)
S3 bcm; C:\Windows\System32\DRIVERS\drxvi314_64lh.sys [363136 2010-01-30] (Beceem communications pvt ltd.)
S3 bcmbusctr; C:\Windows\System32\DRIVERS\BcmBusCtr_64.sys [62976 2010-01-30] (Beceem communications pvt ltd.)
S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [24576 2014-04-15] (BlackBerry) [Fichier non signé]
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154168 2016-04-26] (BlueStack Systems)
R2 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2016-04-06] (Bluestack System Inc. )
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-01-09] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2016-01-09] (Disc Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [Fichier non signé]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [Fichier non signé]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [Fichier non signé]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [Fichier non signé]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2016-06-10] (Glarysoft Ltd)
R2 ImDisk; C:\Windows\System32\DRIVERS\imdisk.sys [42560 2014-07-10] (Olof Lagerkvist)
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)
U0 Partizan; C:\Windows\SysWOW64\drivers\Partizan.sys [40304 2016-11-24] (Greatis Software)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [79872 2013-12-02] (BlackBerry Limited)
S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [17920 2014-06-23] (Research in Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [Fichier non signé]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Fichier non signé]
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
S3 ZTEMBBMSD; C:\Windows\System32\Drivers\ZTEMBBMSD.sys [19968 2009-11-23] (ZTE Corporation)
S3 ZTEusbMB; C:\Windows\System32\DRIVERS\ZTEusbnmeaext2.sys [123136 2012-03-30] (ZTE Incorporated)
S3 ZTEusbnmeaext; C:\Windows\System32\DRIVERS\ZTEusbnmeaext.sys [123136 2012-03-30] (ZTE Incorporated)
S3 ZTEusbwwan; C:\Windows\System32\DRIVERS\ZTEusbwwan.sys [238080 2013-09-09] (ZTE Incorporated)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwusb_cdcacm; system32\DRIVERS\ew_cdcacm.sys [X]
S3 hwusb_wwanecm; system32\DRIVERS\ew_wwanecm.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-01 18:18 - 2016-12-01 18:19 - 00025208 _____ C:\Users\ALYDEPHILA\Desktop\FRST.txt
2016-12-01 18:18 - 2016-12-01 18:18 - 00000000 ____D C:\FRST
2016-12-01 18:17 - 2016-12-01 18:17 - 00143360 ____H C:\local64spl.dll
2016-12-01 18:17 - 2016-12-01 18:17 - 00000020 ____H C:\local64spl.dll.ini
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Windows\Temp1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Users\ALYDEPHILA\AppData\Local\Temp1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Youtube AdBlock1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\SourceTec1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\SMADAV1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Selteco1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Samsung1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\RMPrepUSB1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Quark1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\MyPlayCity.com1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ____D C:\Program Files (x86)\Youtube AdBlock
2016-12-01 18:16 - 2016-12-01 18:17 - 02411520 _____ (Farbar) C:\Users\ALYDEPHILA\Desktop\FRST64.exe
2016-12-01 17:34 - 2016-12-01 17:34 - 00000000 ____D C:\ProgramData\Auslogics
2016-12-01 17:32 - 2016-12-01 17:32 - 00000000 ____D C:\Users\ALYDEPHILA\Desktop\Anciennes données de Firefox
2016-12-01 16:13 - 2016-12-01 16:13 - 00001273 ___RS C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzilla Firеfoх.lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00001243 ___RS C:\Users\Public\Desktop\Моzillа Firеfox.lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00001196 ___RS C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехplorer.lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00001196 ___RS C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Еxрlorer (64-bit).lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\SPI
2016-12-01 16:13 - 2016-12-01 16:13 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Browsers
2016-12-01 10:20 - 2016-12-01 10:20 - 00004270 _____ C:\Windows\System32\Tasks\SMW_UpdateTask_Time_333339353232393935332d372d55324157505a57454a2a
2016-12-01 10:20 - 2016-12-01 10:20 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\vnlgp
2016-12-01 10:19 - 2016-12-01 10:19 - 00004180 _____ C:\Windows\System32\Tasks\SMW_P
2016-12-01 10:18 - 2016-12-01 10:18 - 00000000 ____H C:\Windows\system32\BIT3D66.tmp
2016-12-01 10:18 - 2016-12-01 10:18 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\VDI
2016-12-01 10:18 - 2016-12-01 10:18 - 00000000 ____D C:\ProgramData\Microleaves
2016-12-01 10:17 - 2016-12-01 10:17 - 00006006 _____ C:\Windows\System32\Tasks\Ckekity System
2016-12-01 10:17 - 2016-12-01 10:17 - 00003554 _____ C:\Windows\System32\Tasks\6f1ddae358521c1f0a61aa63739c2ee1
2016-12-01 10:16 - 2016-12-01 18:01 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Arergesogient
2016-12-01 10:16 - 2016-12-01 18:01 - 00000000 ____D C:\Program Files (x86)\Paqerght
2016-12-01 10:16 - 2016-12-01 10:21 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange Guardian
2016-12-01 10:16 - 2016-12-01 10:21 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange Guard
2016-12-01 10:16 - 2016-12-01 10:21 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange
2016-12-01 10:16 - 2016-12-01 10:21 - 00003198 _____ C:\Windows\System32\Tasks\Traffic Exchange Updater
2016-12-01 10:16 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 Guardian
2016-12-01 10:16 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 Guard
2016-12-01 10:16 - 2016-12-01 10:16 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\Stisaghkosotain
2016-12-01 10:15 - 2016-12-01 16:14 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\gplyra
2016-12-01 10:15 - 2016-12-01 10:22 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Microleaves
2016-12-01 10:15 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 On Guard
2016-12-01 10:15 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 OG
2016-12-01 10:15 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2
2016-12-01 09:26 - 2016-12-01 13:15 - 00000000 ____D C:\Program Files\Plumbytes Software
2016-12-01 08:55 - 2016-12-01 18:17 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\LocalLow\Mozilla
2016-11-29 13:21 - 2016-11-29 13:21 - 00000000 ____D C:\Users\ALYDEPHILA\Documents\Any Video Converter
2016-11-29 13:08 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Anvsoft
2016-11-29 13:08 - 2016-11-29 13:21 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Anvsoft
2016-11-29 08:29 - 2016-11-29 08:29 - 00000000 ____D C:\ProgramData\Baidu
2016-11-29 08:20 - 2016-12-01 08:49 - 00000000 ___RD C:\Users\ALYDEPHILA\Desktop\Coup de coeur
2016-11-24 16:36 - 2016-11-24 16:44 - 00000373 _____ C:\Windows\SysWOW64\Partizan.RRI
2016-11-24 16:36 - 2016-11-24 16:36 - 00000000 ____D C:\@RestoreQuarantine
2016-11-24 15:53 - 2016-11-24 15:53 - 00000000 ____D C:\ProgramData\RegRun
2016-11-24 15:51 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\UnHackMe
2016-11-24 15:51 - 2016-12-01 09:11 - 00003346 _____ C:\Windows\System32\Tasks\UnHackMe Task Scheduler
2016-11-24 15:51 - 2016-12-01 08:18 - 00000000 ____D C:\Users\ALYDEPHILA\Documents\RegRun2
2016-11-24 15:51 - 2016-11-30 21:11 - 00000000 ____D C:\Users\Public\Documents\regruninfo
2016-11-24 15:51 - 2016-11-24 15:51 - 00040304 _____ (Greatis Software) C:\Windows\SysWOW64\Drivers\Partizan.sys
2016-11-24 15:51 - 2016-11-24 15:51 - 00000002 RSHOT C:\Windows\winstart.bat
2016-11-24 15:51 - 2016-11-24 15:51 - 00000002 RSHOT C:\Windows\SysWOW64\CONFIG.NT
2016-11-24 15:51 - 2016-11-24 15:51 - 00000002 RSHOT C:\Windows\SysWOW64\AUTOEXEC.NT
2016-11-24 15:51 - 2016-11-24 15:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UnHackMe
2016-11-24 15:51 - 2016-11-01 13:08 - 00015016 _____ (Greatis Software, LLC.) C:\Windows\SysWOW64\Drivers\UnHackMeDrv.sys
2016-11-24 15:51 - 2015-12-28 11:32 - 00049968 _____ (Greatis Software) C:\Windows\system32\partizan.exe
2016-11-24 15:46 - 2016-12-01 09:13 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\Mozilla
2016-11-23 16:30 - 2016-11-23 16:30 - 00029696 _____ C:\Users\ALYDEPHILA\Downloads\domaines.xls
2016-11-23 15:31 - 2016-12-01 18:18 - 00001157 ____H C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-23 15:31 - 2016-12-01 18:18 - 00001145 ____H C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-23 15:30 - 2016-12-01 13:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-23 15:30 - 2016-12-01 13:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-23 12:21 - 2016-12-01 18:02 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-23 12:21 - 2016-12-01 11:26 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-23 12:21 - 2016-11-23 12:21 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-23 12:21 - 2016-11-23 12:21 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-22 21:29 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2016-11-22 19:11 - 2016-11-22 19:13 - 00009179 _____ C:\UsbFix [Clean 4] FKSERVICES-PC.txt
2016-11-22 18:59 - 2016-11-22 19:11 - 00004703 ____N C:\UsbFix [Scan 6] FKSERVICES-PC.txt
2016-11-22 17:04 - 2016-12-01 16:27 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subinacl.exe
2016-11-22 17:04 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA
2016-11-21 21:37 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-11-21 21:37 - 2016-11-24 15:53 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-11-21 21:37 - 2016-11-21 21:37 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2016-11-21 21:34 - 2016-11-21 21:34 - 00026979 ____N C:\ComboFix.txt
2016-11-21 21:07 - 2016-11-21 21:34 - 00000000 ____D C:\Qoobox
2016-11-21 21:07 - 2011-06-26 06:45 - 00256000 _____ C:\Windows\PEV.exe
2016-11-21 21:07 - 2010-11-07 17:20 - 00208896 _____ C:\Windows\MBR.exe
2016-11-21 21:07 - 2009-04-20 04:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00098816 _____ C:\Windows\sed.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00080412 _____ C:\Windows\grep.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00068096 _____ C:\Windows\zip.exe
2016-11-21 21:06 - 2016-11-21 21:30 - 00000000 ____D C:\Windows\erdnt
2016-11-21 19:12 - 2016-11-21 19:12 - 00000290 __RSH C:\Users\ALYDEPHILA\ntuser.pol
2016-11-21 18:57 - 2016-11-21 18:57 - 00000000 ____N C:\TOSTACK
2016-11-21 18:57 - 2016-11-21 18:57 - 00000000 ____D C:\ProgramData\Avira
2016-11-21 18:57 - 2016-11-21 18:57 - 00000000 ____D C:\ProgramData\Avg
2016-11-21 18:55 - 2016-11-21 18:55 - 00006072 _____ C:\Windows\System32\Tasks\Thudich Schedule
2016-11-21 18:54 - 2016-11-21 19:09 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Powikvousy
2016-11-21 18:24 - 2016-11-21 18:24 - 00000000 ____N C:\autoexec.bat
2016-11-17 07:47 - 2016-11-21 20:55 - 00000000 ____D C:\AdwCleaner
2016-11-16 20:49 - 2016-11-16 20:49 - 00004677 _____ C:\Users\ALYDEPHILA\Downloads\la.couture.pour.les.nuls.pdf.[www.zetorrents.com].torrent
2016-11-16 20:49 - 2016-11-16 20:49 - 00003935 _____ C:\Users\ALYDEPHILA\Downloads\reflechissez.et.devenez.riche.pdf.[www.zetorrents.com].torrent
2016-11-16 20:48 - 2016-11-16 20:48 - 00018837 _____ C:\Users\ALYDEPHILA\Downloads\1001.secrets.erotiques.[www.zetorrents.com].torrent
2016-11-16 12:35 - 2016-11-16 12:35 - 00016284 _____ C:\Users\ALYDEPHILA\Downloads\love-game-french-dvdrip-2010.torrent
2016-11-15 14:23 - 2016-11-15 14:23 - 00000000 ____D C:\ProgramData\GameHouse
2016-11-11 20:22 - 2016-11-11 20:22 - 00002854 _____ C:\Users\ALYDEPHILA\Downloads\windows-loader-v2-2-2-pc.torrent
2016-11-05 12:40 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\aaphoto
2016-11-05 12:40 - 2016-11-05 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aaphoto
2016-11-03 07:43 - 2016-11-03 07:43 - 00041984 _____ C:\Users\ALYDEPHILA\Desktop\Point.xls
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-01 18:18 - 2014-10-16 16:45 - 00001194 ____H C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-01 18:18 - 2014-10-16 16:45 - 00001194 ____H C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-12-01 18:17 - 2016-04-27 18:46 - 00000000 ____D C:\Program Files (x86)\MyPlayCity.com
2016-12-01 18:17 - 2016-04-14 23:03 - 00000000 ____D C:\Program Files (x86)\Selteco
2016-12-01 18:17 - 2015-10-20 20:04 - 00000000 ____D C:\Program Files (x86)\SMADAV
2016-12-01 18:17 - 2015-09-14 14:21 - 00000000 ____D C:\Program Files (x86)\RMPrepUSB
2016-12-01 18:17 - 2015-07-21 10:42 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-12-01 18:17 - 2015-04-30 15:11 - 00000000 ____D C:\Program Files (x86)\SourceTec
2016-12-01 18:17 - 2015-02-28 13:45 - 00000000 ____D C:\Program Files (x86)\Quark
2016-12-01 18:10 - 2009-07-14 04:45 - 00014224 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-01 18:10 - 2009-07-14 04:45 - 00014224 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-01 18:03 - 2016-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
2016-12-01 18:02 - 2009-07-14 05:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-01 18:00 - 2015-09-08 19:46 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Free Download Manager
2016-12-01 16:23 - 2016-01-09 11:36 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\CrashDumps
2016-12-01 16:16 - 2015-02-27 17:17 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-12-01 16:13 - 2015-07-21 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung PC Studio 3
2016-12-01 16:13 - 2015-05-14 19:50 - 00000000 ___RD C:\Users\ALYDEPHILA\Desktop\Raccourcis
2016-12-01 15:58 - 2015-06-23 08:59 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Nitro
2016-12-01 13:03 - 2009-07-14 05:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-01 11:33 - 2009-07-14 15:24 - 00750326 _____ C:\Windows\system32\perfh00C.dat
2016-12-01 11:33 - 2009-07-14 15:24 - 00150940 _____ C:\Windows\system32\perfc00C.dat
2016-12-01 11:33 - 2009-07-14 05:13 - 01676034 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-01 11:33 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\inf
2016-12-01 10:57 - 2014-10-18 14:56 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-01 10:17 - 2016-10-26 17:52 - 00000000 ____D C:\Program Files (x86)\Micro Application
2016-12-01 10:17 - 2016-10-19 09:33 - 00000000 ____D C:\Program Files (x86)\2BrightSparks
2016-12-01 10:17 - 2016-09-26 23:15 - 00000000 ____D C:\Program Files (x86)\Vitzo
2016-12-01 10:17 - 2016-09-19 17:25 - 00000000 ____D C:\Program Files (x86)\ManyCam
2016-12-01 10:17 - 2016-09-15 19:57 - 00000000 ____D C:\Program Files (x86)\Cool Beans NFO Creator
2016-12-01 10:17 - 2016-08-03 09:24 - 00000000 ____D C:\Program Files (x86)\InternetEverywhere
2016-12-01 10:17 - 2016-06-14 15:32 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2016-12-01 10:17 - 2016-05-28 11:12 - 00000000 ____D C:\Program Files (x86)\fabFORCE
2016-12-01 10:17 - 2016-05-20 10:32 - 00000000 ____D C:\Program Files (x86)\Cracklock
2016-12-01 10:17 - 2016-05-20 10:24 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2016-12-01 10:17 - 2016-05-09 17:19 - 00000000 ____D C:\Program Files (x86)\Nitro
2016-12-01 10:17 - 2016-01-30 00:22 - 00000000 ____D C:\Program Files (x86)\Kroll Ontrack
2016-12-01 10:17 - 2016-01-27 11:30 - 00000000 ____D C:\Program Files (x86)\Convar
2016-12-01 10:17 - 2016-01-15 17:48 - 00000000 ____D C:\Program Files (x86)\7-Data Partition Recovery
2016-12-01 10:17 - 2016-01-13 09:55 - 00000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 5.8
2016-12-01 10:17 - 2016-01-11 23:22 - 00000000 ____D C:\Program Files (x86)\EaseUS
2016-12-01 10:17 - 2016-01-09 07:47 - 00000000 ____D C:\Program Files (x86)\Free YouTube Downloader
2016-12-01 10:17 - 2016-01-07 07:43 - 00000000 ____D C:\Program Files (x86)\Nero
2016-12-01 10:17 - 2015-12-25 11:59 - 00000000 ____D C:\Program Files (x86)\XnView
2016-12-01 10:17 - 2015-11-28 08:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-12-01 10:17 - 2015-11-28 08:41 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-12-01 10:17 - 2015-09-28 12:35 - 00000000 ____D C:\Program Files (x86)\CDisplay
2016-12-01 10:17 - 2015-09-19 17:00 - 00000000 ____D C:\Program Files (x86)\Windows 8 n 8.1 Activator
2016-12-01 10:17 - 2015-09-14 10:17 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP
2016-12-01 10:17 - 2015-09-08 19:46 - 00000000 ____D C:\Program Files (x86)\Free Download Manager
2016-12-01 10:17 - 2015-08-27 20:35 - 00000000 ____D C:\Program Files (x86)\Opera
2016-12-01 10:17 - 2015-08-25 19:11 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2016-12-01 10:17 - 2015-08-20 13:02 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-12-01 10:17 - 2015-08-11 13:43 - 00000000 ____D C:\Program Files (x86)\Supercopier
2016-12-01 10:17 - 2015-07-23 19:10 - 00000000 ____D C:\Program Files (x86)\Apowersoft
2016-12-01 10:17 - 2015-07-22 22:24 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2016-12-01 10:17 - 2015-07-22 15:11 - 00000000 ____D C:\Program Files (x86)\Wondershare
2016-12-01 10:17 - 2015-05-15 20:31 - 00000000 ____D C:\Program Files (x86)\Photo!
2016-12-01 10:17 - 2015-05-13 11:25 - 00000000 ____D C:\Program Files (x86)\Seagate
2016-12-01 10:17 - 2015-05-06 09:10 - 00000000 ____D C:\Program Files (x86)\FreeTime
2016-12-01 10:17 - 2015-05-03 08:23 - 00000000 ____D C:\Program Files (x86)\LinuxLive USB Creator
2016-12-01 10:17 - 2015-03-07 21:36 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-12-01 10:17 - 2015-03-07 21:34 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-12-01 10:17 - 2015-03-04 18:39 - 00000000 ____D C:\Program Files (x86)\Hp
2016-12-01 10:17 - 2015-03-04 18:39 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-12-01 10:17 - 2015-03-02 09:16 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-12-01 10:17 - 2015-02-28 14:03 - 00000000 ____D C:\Program Files (x86)\Le Grand Robert
2016-12-01 10:17 - 2015-02-28 14:03 - 00000000 ____D C:\Program Files (x86)\Jargon Informatique
2016-12-01 10:17 - 2015-02-28 14:01 - 00000000 ____D C:\Program Files (x86)\Pixologic
2016-12-01 10:17 - 2015-02-27 17:46 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-12-01 10:17 - 2015-02-27 17:16 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2016-12-01 10:17 - 2015-02-27 16:58 - 00000000 ____D C:\Program Files (x86)\PowerISO
2016-12-01 10:17 - 2015-02-27 12:45 - 00000000 ____D C:\Program Files (x86)\My Company Name
2016-12-01 10:17 - 2014-11-30 12:39 - 00000000 ____D C:\Program Files (x86)\WiMAX Connection Manager
2016-12-01 10:17 - 2014-10-18 15:41 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-12-01 10:17 - 2014-10-16 19:10 - 00000000 ____D C:\Program Files (x86)\Macromedia
2016-12-01 10:17 - 2014-10-16 17:54 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-01 10:17 - 2014-10-16 17:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-01 10:17 - 2014-10-16 17:41 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-12-01 10:17 - 2014-10-16 17:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-01 10:17 - 2014-10-16 16:53 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-12-01 10:17 - 2009-07-14 03:20 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-12-01 10:07 - 2016-05-05 22:33 - 00000000 ____D C:\Users\ALYDEPHILA\Documents\Fichiers Outlook
2016-12-01 08:54 - 2014-10-16 17:55 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Mozilla
2016-12-01 08:49 - 2016-03-03 11:37 - 00000000 ____D C:\Users\ALYDEPHILA\Desktop\Autres
2016-12-01 08:48 - 2014-10-16 17:41 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\vlc
2016-12-01 08:27 - 2014-10-18 14:56 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\Adobe
2016-12-01 08:21 - 2016-05-19 14:42 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-11-30 16:15 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\system32\NDF
2016-11-30 08:56 - 2016-03-15 20:30 - 02370560 ___SH C:\Users\ALYDEPHILA\Desktop\Thumbs.db
2016-11-29 10:00 - 2016-05-21 15:21 - 00000388 _____ C:\Windows\Tasks\GlaryUpdate 5.job
2016-11-25 20:19 - 2016-05-06 21:05 - 00000000 ____D C:\Windows\system32\GWX
2016-11-22 19:13 - 2015-07-30 13:25 - 00000000 ____D C:\UsbFix
2016-11-21 21:28 - 2009-07-14 02:34 - 00000215 _____ C:\Windows\system.ini
2016-11-21 20:16 - 2015-03-09 09:14 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\uTorrent
2016-11-21 19:12 - 2014-10-16 16:45 - 00000000 ____D C:\Users\ALYDEPHILA
2016-11-21 19:03 - 2009-07-14 03:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-11-21 18:57 - 2014-10-17 03:35 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-21 12:51 - 2016-07-28 13:36 - 00001003 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-11 09:36 - 2015-06-29 10:00 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-03 14:06 - 2016-05-05 08:22 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Fichiers à la racine de certains dossiers =======
2015-03-08 18:01 - 2015-03-08 18:09 - 0000346 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\bibstats
2016-09-13 23:04 - 2016-09-15 17:18 - 0000308 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\history.Excel.pwcdat
2015-05-04 17:16 - 2015-12-15 20:14 - 0000132 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Préfs Filtre IllExportation Adobe CS6
2015-05-30 19:50 - 2015-05-30 19:53 - 0000132 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Préfs Format GIF Adobe CS6
2015-04-21 23:28 - 2016-10-14 15:51 - 0000132 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Préfs Format PNG Adobe CS6
2015-03-22 21:13 - 2015-04-01 15:48 - 0000462 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Rim.Desktop.Exception.log
2015-03-22 21:11 - 2015-06-29 11:48 - 0002021 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2015-03-22 21:13 - 2015-04-01 15:48 - 0000462 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Rim.DesktopHelper.Exception.log
2016-01-15 11:14 - 2016-01-15 11:14 - 0001456 _____ () C:\Users\ALYDEPHILA\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2016-05-20 10:32 - 2016-05-20 10:51 - 0001650 _____ () C:\Users\ALYDEPHILA\AppData\Local\Cracklock.settings
2015-07-21 13:52 - 2015-07-21 13:52 - 0000017 _____ () C:\Users\ALYDEPHILA\AppData\Local\resmon.resmoncfg
2015-08-25 19:01 - 2015-08-25 19:14 - 0001269 _____ () C:\ProgramData\hpzinstall.log
2015-07-21 10:54 - 2015-07-21 14:19 - 0000000 _____ () C:\ProgramData\LauncherAccess.dt
Fichiers à déplacer ou supprimer:
====================
C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\produpd.exe
C:\Users\Public\CP1520series_nw_Basic.exe
C:\Users\Public\lj1018-HB-pnp-win32-en.exe
C:\Users\Public\lj1018_1020_1022-HB-pnp-win64-fr.exe
C:\Users\Public\LJP1100_P1560_P1600-HB-win32-fr.exe
C:\Users\Public\setup_full_G3010_140_052.exe
Certains fichiers dans TEMP:
====================
C:\Users\ALYDEPHILA\AppData\Local\Temp\Font__19312_il510.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\keydown01.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\local64spl.dll
C:\Users\ALYDEPHILA\AppData\Local\Temp\s11833.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\s21761.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\ucbrabs.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\Zone2.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-11-24 19:31
==================== Fin de FRST.txt ============================
Exécuté par ALYDEPHILA (administrateur) sur FKSERVICES-PC (01-12-2016 18:18:56)
Exécuté depuis C:\Users\ALYDEPHILA\Desktop
Profils chargés: ALYDEPHILA (Profils disponibles: ALYDEPHILA)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe
() C:\Windows\SysWOW64\srvany.exe
() C:\Windows\KMService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(ultracopier.first-world.info) C:\Program Files (x86)\Supercopier\supercopier.exe
(Vested Development, Inc) C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\produpd.exe
(Vested Development, Inc) C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\monhost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Run: [ultracopier] => C:\Program Files (x86)\Supercopier\supercopier.exe [178688 2014-02-19] (ultracopier.first-world.info)
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2016-05-30] (Glarysoft Ltd)
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Run: [produpd] => C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\produpd.exe [555008 2016-12-01] (Vested Development, Inc) <===== ATTENTION
HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [] => 0
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\...\Providers\1ic1zm1g: C:\Program Files (x86)\Quark\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\3kaef3qc: C:\Program Files (x86)\Selteco\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\43ez03dn: C:\Windows\Temp1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\6y1hi8h3: C:\Program Files (x86)\Mozilla Firefox\browser\features1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\7s2j3umw: C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\873ol21o: C:\Program Files (x86)\Youtube AdBlock\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\9h5106n8: C:\Program Files (x86)\Youtube AdBlock1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\9ri9pjuv: C:\Program Files (x86)\RMPrepUSB1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\9ypgiv6d: C:\Program Files (x86)\Selteco1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\a3jhev7h: C:\Program Files (x86)\MyPlayCity.com\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\dky2yhz7: C:\Program Files (x86)\SourceTec\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\dsji99mv: C:\Windows\Temp\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\etoxpr0a: C:\1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\f88lk4d6: C:\Program Files (x86)\SMADAV1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\fgj52oud: C:\Program Files (x86)\Mozilla Firefox\browser\features\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\gkte5adi: C:\Program Files (x86)\SourceTec1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\hul168f6: C:\Program Files (x86)\Samsung1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\hze6usf8: C:\Users\ALYDEPHILA\AppData\Local\Temp1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\iclzp3xv: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\jagb7fij: C:\Program Files (x86)\RMPrepUSB\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\kup0h719: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\sazklrxk: C:\Program Files (x86)\MyPlayCity.com1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\uexwzgv7: C:\Program Files (x86)\Samsung\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\v0vsn3po: C:\Program Files (x86)\SMADAV\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\w5pz4odn: C:\Users\ALYDEPHILA\AppData\Local\Temp\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\wo8f5upy: C:\\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\zjawcn9n: C:\Program Files (x86)\Quark1\local64spl.dll [143360 2016-12-01] ()
HKLM\...\Providers\zwmszme9: C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock\local64spl.dll [143360 2016-12-01] ()
ShellExecuteHooks: - {1AE6B03E-A5C0-11E6-A016-64006A5CFC23} - Pas de fichier [ ]
ShellExecuteHooks: - {B1074BF6-AA3A-11E6-BEB2-64006A5CFC23} - Pas de fichier [ ]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
Startup: C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\monhost.lnk [2016-12-01] <===== ATTENTION
ShortcutTarget: monhost.lnk -> C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\monhost.exe (Vested Development, Inc)
BootExecute: autocheck autochk * sdnclean64.exePartizan
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04F4F147-E31A-480A-8A7D-47CCFF852C48}: [DhcpNameServer] 196.47.182.2 41.206.65.5
Tcpip\..\Interfaces\{4F44FBAA-025A-4595-8EFF-C0D26D5D15D0}: [NameServer] 213.136.96.8 213.136.96.7
Tcpip\..\Interfaces\{5E33C428-28C5-4958-953A-D664BFCF73BC}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FA605B16-9B47-409C-8440-F7A663FAC7A1}: [DhcpNameServer] 196.47.182.11 41.206.65.5
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-665404171-919443060-2139378440-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.fr
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.fr
HKU\S-1-5-21-665404171-919443060-2139378440-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://d2xkrcja1nf0mp.cloudfront.net/getfileg.ashx?e=7fSdujsAurrRlUsyAxGfFA==
SearchScopes: HKLM -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =
SearchScopes: HKU\S-1-5-21-665404171-919443060-2139378440-1000 -> {37D155AE-1E2A-484F-9290-94223A7BF7C7} URL =
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-06-14] (Microsoft Corporation)
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies S.A.)
FireFox:
========
FF ProfilePath: C:\Users\ALYDEPHILA\AppData\Roaming\Mozilla\Firefox\Profiles\be7588wf.default-1480613516805 [2016-12-01]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-08-25] [non signé]
FF HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-665404171-919443060-2139378440-1000\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13
FF Extension: (Free Download Manager extension) - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13 [2016-09-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-23] ()
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-23] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 5\npnitromozilla.dll [2016-03-03] (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-23] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-11-23] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-09-30] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxp://www.google.com/
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.google.fr/","hxxp://www.youndoo.com/?z=e18df0bd293aba2144ce99dg0zdbfe1w2bam5zet3o&from=wak&uid=WDCXWD3200BEVT-26A23T0_WD-WX11A50A7876A7876&type=hp","hxxp://www-searching.com/?pid=s&s=GC1zamobl19312xBU,e374b075-be62-436f-a369-1315e122fea4,"
CHR Profile: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-12-01] <==== ATTENTION
CHR Extension: (Google Slides) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-23]
CHR Extension: (Google Docs) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-23]
CHR Extension: (Google Drive) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-23]
CHR Extension: (YouTube) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-23]
CHR Extension: (Google Sheets) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-23]
CHR Extension: (Bouton Pin It) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2016-11-23]
CHR Extension: (Skype) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-23]
CHR Extension: (Fast search) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-01]
CHR Extension: (Gmail) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-23]
CHR Extension: (Chrome Media Router) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-23]
CHR Profile: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4 [2016-12-01]
CHR Extension: (Google Slides) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-25]
CHR Extension: (Google Docs) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-25]
CHR Extension: (Google Sheets) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-25]
CHR Extension: (Skype) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-25]
CHR Extension: (Fast search) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-01]
CHR Profile: C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\System Profile [2016-12-01]
CHR Extension: (Fast search) - C:\Users\ALYDEPHILA\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pbdpajcdgknpendpmecafmopknefafha [2016-12-01]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-01-17]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417304 2016-04-26] (BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [437784 2016-04-26] (BlueStack Systems, Inc.)
S3 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [921112 2016-04-26] (BlueStack Systems, Inc.)
R2 Cowuent; C:\Program Files (x86)\Paqerght\hukuphlauncher.dll [274944 2016-12-01] () [Fichier non signé]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1037824 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
S4 ImDskSvc; C:\Windows\system32\imdsksvc.exe [18016 2014-07-10] (Olof Lagerkvist)
R2 InternetEverywhere_Service; C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe [537144 2014-08-11] ()
R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [Fichier non signé]
S3 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (Visicom Media Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Fichier non signé]
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
S3 NitroReaderDriverReadSpool5; C:\Program Files\Nitro\Reader 5\NitroPDFReaderDriverService5x64.exe [327328 2016-03-03] (Nitro PDF Software)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-06-01] (Nero AG)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Fichier non signé]
S3 postgresql-x64-9.5; C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe [94208 2016-05-10] (PostgreSQL Global Development Group) [Fichier non signé]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 Hhightphash; C:\Program Files (x86)\Zeraghrlash\Aruatainstuserysys.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ampa; C:\Windows\system32\ampa.sys [17008 2013-12-18] () [Fichier non signé]
S3 ampa; C:\Windows\SysWOW64\ampa.sys [17008 2013-12-18] () [Fichier non signé]
R2 AWEAlloc; C:\Windows\System32\DRIVERS\awealloc.sys [20536 2014-06-03] (Olof Lagerkvist)
S3 bcm; C:\Windows\System32\DRIVERS\drxvi314_64lh.sys [363136 2010-01-30] (Beceem communications pvt ltd.)
S3 bcmbusctr; C:\Windows\System32\DRIVERS\BcmBusCtr_64.sys [62976 2010-01-30] (Beceem communications pvt ltd.)
S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [24576 2014-04-15] (BlackBerry) [Fichier non signé]
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [154168 2016-04-26] (BlueStack Systems)
R2 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2016-04-06] (Bluestack System Inc. )
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-01-09] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2016-01-09] (Disc Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] () [Fichier non signé]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] () [Fichier non signé]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] () [Fichier non signé]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] () [Fichier non signé]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2016-06-10] (Glarysoft Ltd)
R2 ImDisk; C:\Windows\System32\DRIVERS\imdisk.sys [42560 2014-07-10] (Olof Lagerkvist)
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)
U0 Partizan; C:\Windows\SysWOW64\drivers\Partizan.sys [40304 2016-11-24] (Greatis Software)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [79872 2013-12-02] (BlackBerry Limited)
S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [17920 2014-06-23] (Research in Motion Limited)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [Fichier non signé]
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [Fichier non signé]
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
S3 ZTEMBBMSD; C:\Windows\System32\Drivers\ZTEMBBMSD.sys [19968 2009-11-23] (ZTE Corporation)
S3 ZTEusbMB; C:\Windows\System32\DRIVERS\ZTEusbnmeaext2.sys [123136 2012-03-30] (ZTE Incorporated)
S3 ZTEusbnmeaext; C:\Windows\System32\DRIVERS\ZTEusbnmeaext.sys [123136 2012-03-30] (ZTE Incorporated)
S3 ZTEusbwwan; C:\Windows\System32\DRIVERS\ZTEusbwwan.sys [238080 2013-09-09] (ZTE Incorporated)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 hwusb_cdcacm; system32\DRIVERS\ew_cdcacm.sys [X]
S3 hwusb_wwanecm; system32\DRIVERS\ew_wwanecm.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-01 18:18 - 2016-12-01 18:19 - 00025208 _____ C:\Users\ALYDEPHILA\Desktop\FRST.txt
2016-12-01 18:18 - 2016-12-01 18:18 - 00000000 ____D C:\FRST
2016-12-01 18:17 - 2016-12-01 18:17 - 00143360 ____H C:\local64spl.dll
2016-12-01 18:17 - 2016-12-01 18:17 - 00000020 ____H C:\local64spl.dll.ini
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Windows\Temp1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Users\ALYDEPHILA\AppData\Local\Temp1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Youtube AdBlock1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\SourceTec1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\SMADAV1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Selteco1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Samsung1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\RMPrepUSB1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\Quark1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\Program Files (x86)\MyPlayCity.com1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ___HD C:\1
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\LocalLow\Youtube AdBlock
2016-12-01 18:17 - 2016-12-01 18:17 - 00000000 ____D C:\Program Files (x86)\Youtube AdBlock
2016-12-01 18:16 - 2016-12-01 18:17 - 02411520 _____ (Farbar) C:\Users\ALYDEPHILA\Desktop\FRST64.exe
2016-12-01 17:34 - 2016-12-01 17:34 - 00000000 ____D C:\ProgramData\Auslogics
2016-12-01 17:32 - 2016-12-01 17:32 - 00000000 ____D C:\Users\ALYDEPHILA\Desktop\Anciennes données de Firefox
2016-12-01 16:13 - 2016-12-01 16:13 - 00001273 ___RS C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzilla Firеfoх.lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00001243 ___RS C:\Users\Public\Desktop\Моzillа Firеfox.lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00001196 ___RS C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Ехplorer.lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00001196 ___RS C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intеrnеt Еxрlorer (64-bit).lnk
2016-12-01 16:13 - 2016-12-01 16:13 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\SPI
2016-12-01 16:13 - 2016-12-01 16:13 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Browsers
2016-12-01 10:20 - 2016-12-01 10:20 - 00004270 _____ C:\Windows\System32\Tasks\SMW_UpdateTask_Time_333339353232393935332d372d55324157505a57454a2a
2016-12-01 10:20 - 2016-12-01 10:20 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\vnlgp
2016-12-01 10:19 - 2016-12-01 10:19 - 00004180 _____ C:\Windows\System32\Tasks\SMW_P
2016-12-01 10:18 - 2016-12-01 10:18 - 00000000 ____H C:\Windows\system32\BIT3D66.tmp
2016-12-01 10:18 - 2016-12-01 10:18 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\VDI
2016-12-01 10:18 - 2016-12-01 10:18 - 00000000 ____D C:\ProgramData\Microleaves
2016-12-01 10:17 - 2016-12-01 10:17 - 00006006 _____ C:\Windows\System32\Tasks\Ckekity System
2016-12-01 10:17 - 2016-12-01 10:17 - 00003554 _____ C:\Windows\System32\Tasks\6f1ddae358521c1f0a61aa63739c2ee1
2016-12-01 10:16 - 2016-12-01 18:01 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Arergesogient
2016-12-01 10:16 - 2016-12-01 18:01 - 00000000 ____D C:\Program Files (x86)\Paqerght
2016-12-01 10:16 - 2016-12-01 10:21 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange Guardian
2016-12-01 10:16 - 2016-12-01 10:21 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange Guard
2016-12-01 10:16 - 2016-12-01 10:21 - 00003580 _____ C:\Windows\System32\Tasks\Traffic Exchange
2016-12-01 10:16 - 2016-12-01 10:21 - 00003198 _____ C:\Windows\System32\Tasks\Traffic Exchange Updater
2016-12-01 10:16 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 Guardian
2016-12-01 10:16 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 Guard
2016-12-01 10:16 - 2016-12-01 10:16 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\Stisaghkosotain
2016-12-01 10:15 - 2016-12-01 16:14 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\gplyra
2016-12-01 10:15 - 2016-12-01 10:22 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Microleaves
2016-12-01 10:15 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 On Guard
2016-12-01 10:15 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2 OG
2016-12-01 10:15 - 2016-12-01 10:21 - 00003144 _____ C:\Windows\System32\Tasks\Traffic Exchange v2
2016-12-01 09:26 - 2016-12-01 13:15 - 00000000 ____D C:\Program Files\Plumbytes Software
2016-12-01 08:55 - 2016-12-01 18:17 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\LocalLow\Mozilla
2016-11-29 13:21 - 2016-11-29 13:21 - 00000000 ____D C:\Users\ALYDEPHILA\Documents\Any Video Converter
2016-11-29 13:08 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Anvsoft
2016-11-29 13:08 - 2016-11-29 13:21 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Anvsoft
2016-11-29 08:29 - 2016-11-29 08:29 - 00000000 ____D C:\ProgramData\Baidu
2016-11-29 08:20 - 2016-12-01 08:49 - 00000000 ___RD C:\Users\ALYDEPHILA\Desktop\Coup de coeur
2016-11-24 16:36 - 2016-11-24 16:44 - 00000373 _____ C:\Windows\SysWOW64\Partizan.RRI
2016-11-24 16:36 - 2016-11-24 16:36 - 00000000 ____D C:\@RestoreQuarantine
2016-11-24 15:53 - 2016-11-24 15:53 - 00000000 ____D C:\ProgramData\RegRun
2016-11-24 15:51 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\UnHackMe
2016-11-24 15:51 - 2016-12-01 09:11 - 00003346 _____ C:\Windows\System32\Tasks\UnHackMe Task Scheduler
2016-11-24 15:51 - 2016-12-01 08:18 - 00000000 ____D C:\Users\ALYDEPHILA\Documents\RegRun2
2016-11-24 15:51 - 2016-11-30 21:11 - 00000000 ____D C:\Users\Public\Documents\regruninfo
2016-11-24 15:51 - 2016-11-24 15:51 - 00040304 _____ (Greatis Software) C:\Windows\SysWOW64\Drivers\Partizan.sys
2016-11-24 15:51 - 2016-11-24 15:51 - 00000002 RSHOT C:\Windows\winstart.bat
2016-11-24 15:51 - 2016-11-24 15:51 - 00000002 RSHOT C:\Windows\SysWOW64\CONFIG.NT
2016-11-24 15:51 - 2016-11-24 15:51 - 00000002 RSHOT C:\Windows\SysWOW64\AUTOEXEC.NT
2016-11-24 15:51 - 2016-11-24 15:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UnHackMe
2016-11-24 15:51 - 2016-11-01 13:08 - 00015016 _____ (Greatis Software, LLC.) C:\Windows\SysWOW64\Drivers\UnHackMeDrv.sys
2016-11-24 15:51 - 2015-12-28 11:32 - 00049968 _____ (Greatis Software) C:\Windows\system32\partizan.exe
2016-11-24 15:46 - 2016-12-01 09:13 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\Mozilla
2016-11-23 16:30 - 2016-11-23 16:30 - 00029696 _____ C:\Users\ALYDEPHILA\Downloads\domaines.xls
2016-11-23 15:31 - 2016-12-01 18:18 - 00001157 ____H C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-23 15:31 - 2016-12-01 18:18 - 00001145 ____H C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-23 15:30 - 2016-12-01 13:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-23 15:30 - 2016-12-01 13:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-23 12:21 - 2016-12-01 18:02 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-23 12:21 - 2016-12-01 11:26 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-23 12:21 - 2016-11-23 12:21 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-11-23 12:21 - 2016-11-23 12:21 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-11-22 21:29 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2016-11-22 19:11 - 2016-11-22 19:13 - 00009179 _____ C:\UsbFix [Clean 4] FKSERVICES-PC.txt
2016-11-22 18:59 - 2016-11-22 19:11 - 00004703 ____N C:\UsbFix [Scan 6] FKSERVICES-PC.txt
2016-11-22 17:04 - 2016-12-01 16:27 - 00290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subinacl.exe
2016-11-22 17:04 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA
2016-11-21 21:37 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-11-21 21:37 - 2016-11-24 15:53 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-11-21 21:37 - 2016-11-21 21:37 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2016-11-21 21:34 - 2016-11-21 21:34 - 00026979 ____N C:\ComboFix.txt
2016-11-21 21:07 - 2016-11-21 21:34 - 00000000 ____D C:\Qoobox
2016-11-21 21:07 - 2011-06-26 06:45 - 00256000 _____ C:\Windows\PEV.exe
2016-11-21 21:07 - 2010-11-07 17:20 - 00208896 _____ C:\Windows\MBR.exe
2016-11-21 21:07 - 2009-04-20 04:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00098816 _____ C:\Windows\sed.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00080412 _____ C:\Windows\grep.exe
2016-11-21 21:07 - 2000-08-31 00:00 - 00068096 _____ C:\Windows\zip.exe
2016-11-21 21:06 - 2016-11-21 21:30 - 00000000 ____D C:\Windows\erdnt
2016-11-21 19:12 - 2016-11-21 19:12 - 00000290 __RSH C:\Users\ALYDEPHILA\ntuser.pol
2016-11-21 18:57 - 2016-11-21 18:57 - 00000000 ____N C:\TOSTACK
2016-11-21 18:57 - 2016-11-21 18:57 - 00000000 ____D C:\ProgramData\Avira
2016-11-21 18:57 - 2016-11-21 18:57 - 00000000 ____D C:\ProgramData\Avg
2016-11-21 18:55 - 2016-11-21 18:55 - 00006072 _____ C:\Windows\System32\Tasks\Thudich Schedule
2016-11-21 18:54 - 2016-11-21 19:09 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Powikvousy
2016-11-21 18:24 - 2016-11-21 18:24 - 00000000 ____N C:\autoexec.bat
2016-11-17 07:47 - 2016-11-21 20:55 - 00000000 ____D C:\AdwCleaner
2016-11-16 20:49 - 2016-11-16 20:49 - 00004677 _____ C:\Users\ALYDEPHILA\Downloads\la.couture.pour.les.nuls.pdf.[www.zetorrents.com].torrent
2016-11-16 20:49 - 2016-11-16 20:49 - 00003935 _____ C:\Users\ALYDEPHILA\Downloads\reflechissez.et.devenez.riche.pdf.[www.zetorrents.com].torrent
2016-11-16 20:48 - 2016-11-16 20:48 - 00018837 _____ C:\Users\ALYDEPHILA\Downloads\1001.secrets.erotiques.[www.zetorrents.com].torrent
2016-11-16 12:35 - 2016-11-16 12:35 - 00016284 _____ C:\Users\ALYDEPHILA\Downloads\love-game-french-dvdrip-2010.torrent
2016-11-15 14:23 - 2016-11-15 14:23 - 00000000 ____D C:\ProgramData\GameHouse
2016-11-11 20:22 - 2016-11-11 20:22 - 00002854 _____ C:\Users\ALYDEPHILA\Downloads\windows-loader-v2-2-2-pc.torrent
2016-11-05 12:40 - 2016-12-01 10:17 - 00000000 ____D C:\Program Files (x86)\aaphoto
2016-11-05 12:40 - 2016-11-05 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aaphoto
2016-11-03 07:43 - 2016-11-03 07:43 - 00041984 _____ C:\Users\ALYDEPHILA\Desktop\Point.xls
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-01 18:18 - 2014-10-16 16:45 - 00001194 ____H C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-01 18:18 - 2014-10-16 16:45 - 00001194 ____H C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2016-12-01 18:17 - 2016-04-27 18:46 - 00000000 ____D C:\Program Files (x86)\MyPlayCity.com
2016-12-01 18:17 - 2016-04-14 23:03 - 00000000 ____D C:\Program Files (x86)\Selteco
2016-12-01 18:17 - 2015-10-20 20:04 - 00000000 ____D C:\Program Files (x86)\SMADAV
2016-12-01 18:17 - 2015-09-14 14:21 - 00000000 ____D C:\Program Files (x86)\RMPrepUSB
2016-12-01 18:17 - 2015-07-21 10:42 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-12-01 18:17 - 2015-04-30 15:11 - 00000000 ____D C:\Program Files (x86)\SourceTec
2016-12-01 18:17 - 2015-02-28 13:45 - 00000000 ____D C:\Program Files (x86)\Quark
2016-12-01 18:10 - 2009-07-14 04:45 - 00014224 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-01 18:10 - 2009-07-14 04:45 - 00014224 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-01 18:03 - 2016-05-21 15:19 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
2016-12-01 18:02 - 2009-07-14 05:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-01 18:00 - 2015-09-08 19:46 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Free Download Manager
2016-12-01 16:23 - 2016-01-09 11:36 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\CrashDumps
2016-12-01 16:16 - 2015-02-27 17:17 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-12-01 16:13 - 2015-07-21 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung PC Studio 3
2016-12-01 16:13 - 2015-05-14 19:50 - 00000000 ___RD C:\Users\ALYDEPHILA\Desktop\Raccourcis
2016-12-01 15:58 - 2015-06-23 08:59 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Nitro
2016-12-01 13:03 - 2009-07-14 05:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-01 11:33 - 2009-07-14 15:24 - 00750326 _____ C:\Windows\system32\perfh00C.dat
2016-12-01 11:33 - 2009-07-14 15:24 - 00150940 _____ C:\Windows\system32\perfc00C.dat
2016-12-01 11:33 - 2009-07-14 05:13 - 01676034 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-01 11:33 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\inf
2016-12-01 10:57 - 2014-10-18 14:56 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-01 10:17 - 2016-10-26 17:52 - 00000000 ____D C:\Program Files (x86)\Micro Application
2016-12-01 10:17 - 2016-10-19 09:33 - 00000000 ____D C:\Program Files (x86)\2BrightSparks
2016-12-01 10:17 - 2016-09-26 23:15 - 00000000 ____D C:\Program Files (x86)\Vitzo
2016-12-01 10:17 - 2016-09-19 17:25 - 00000000 ____D C:\Program Files (x86)\ManyCam
2016-12-01 10:17 - 2016-09-15 19:57 - 00000000 ____D C:\Program Files (x86)\Cool Beans NFO Creator
2016-12-01 10:17 - 2016-08-03 09:24 - 00000000 ____D C:\Program Files (x86)\InternetEverywhere
2016-12-01 10:17 - 2016-06-14 15:32 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2016-12-01 10:17 - 2016-05-28 11:12 - 00000000 ____D C:\Program Files (x86)\fabFORCE
2016-12-01 10:17 - 2016-05-20 10:32 - 00000000 ____D C:\Program Files (x86)\Cracklock
2016-12-01 10:17 - 2016-05-20 10:24 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2016-12-01 10:17 - 2016-05-09 17:19 - 00000000 ____D C:\Program Files (x86)\Nitro
2016-12-01 10:17 - 2016-01-30 00:22 - 00000000 ____D C:\Program Files (x86)\Kroll Ontrack
2016-12-01 10:17 - 2016-01-27 11:30 - 00000000 ____D C:\Program Files (x86)\Convar
2016-12-01 10:17 - 2016-01-15 17:48 - 00000000 ____D C:\Program Files (x86)\7-Data Partition Recovery
2016-12-01 10:17 - 2016-01-13 09:55 - 00000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant Pro Edition 5.8
2016-12-01 10:17 - 2016-01-11 23:22 - 00000000 ____D C:\Program Files (x86)\EaseUS
2016-12-01 10:17 - 2016-01-09 07:47 - 00000000 ____D C:\Program Files (x86)\Free YouTube Downloader
2016-12-01 10:17 - 2016-01-07 07:43 - 00000000 ____D C:\Program Files (x86)\Nero
2016-12-01 10:17 - 2015-12-25 11:59 - 00000000 ____D C:\Program Files (x86)\XnView
2016-12-01 10:17 - 2015-11-28 08:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-12-01 10:17 - 2015-11-28 08:41 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-12-01 10:17 - 2015-09-28 12:35 - 00000000 ____D C:\Program Files (x86)\CDisplay
2016-12-01 10:17 - 2015-09-19 17:00 - 00000000 ____D C:\Program Files (x86)\Windows 8 n 8.1 Activator
2016-12-01 10:17 - 2015-09-14 10:17 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP
2016-12-01 10:17 - 2015-09-08 19:46 - 00000000 ____D C:\Program Files (x86)\Free Download Manager
2016-12-01 10:17 - 2015-08-27 20:35 - 00000000 ____D C:\Program Files (x86)\Opera
2016-12-01 10:17 - 2015-08-25 19:11 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2016-12-01 10:17 - 2015-08-20 13:02 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-12-01 10:17 - 2015-08-11 13:43 - 00000000 ____D C:\Program Files (x86)\Supercopier
2016-12-01 10:17 - 2015-07-23 19:10 - 00000000 ____D C:\Program Files (x86)\Apowersoft
2016-12-01 10:17 - 2015-07-22 22:24 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2016-12-01 10:17 - 2015-07-22 15:11 - 00000000 ____D C:\Program Files (x86)\Wondershare
2016-12-01 10:17 - 2015-05-15 20:31 - 00000000 ____D C:\Program Files (x86)\Photo!
2016-12-01 10:17 - 2015-05-13 11:25 - 00000000 ____D C:\Program Files (x86)\Seagate
2016-12-01 10:17 - 2015-05-06 09:10 - 00000000 ____D C:\Program Files (x86)\FreeTime
2016-12-01 10:17 - 2015-05-03 08:23 - 00000000 ____D C:\Program Files (x86)\LinuxLive USB Creator
2016-12-01 10:17 - 2015-03-07 21:36 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-12-01 10:17 - 2015-03-07 21:34 - 00000000 ____D C:\Program Files (x86)\Windows Live
2016-12-01 10:17 - 2015-03-04 18:39 - 00000000 ____D C:\Program Files (x86)\Hp
2016-12-01 10:17 - 2015-03-04 18:39 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-12-01 10:17 - 2015-03-02 09:16 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-12-01 10:17 - 2015-02-28 14:03 - 00000000 ____D C:\Program Files (x86)\Le Grand Robert
2016-12-01 10:17 - 2015-02-28 14:03 - 00000000 ____D C:\Program Files (x86)\Jargon Informatique
2016-12-01 10:17 - 2015-02-28 14:01 - 00000000 ____D C:\Program Files (x86)\Pixologic
2016-12-01 10:17 - 2015-02-27 17:46 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-12-01 10:17 - 2015-02-27 17:16 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2016-12-01 10:17 - 2015-02-27 16:58 - 00000000 ____D C:\Program Files (x86)\PowerISO
2016-12-01 10:17 - 2015-02-27 12:45 - 00000000 ____D C:\Program Files (x86)\My Company Name
2016-12-01 10:17 - 2014-11-30 12:39 - 00000000 ____D C:\Program Files (x86)\WiMAX Connection Manager
2016-12-01 10:17 - 2014-10-18 15:41 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-12-01 10:17 - 2014-10-16 19:10 - 00000000 ____D C:\Program Files (x86)\Macromedia
2016-12-01 10:17 - 2014-10-16 17:54 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-01 10:17 - 2014-10-16 17:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-01 10:17 - 2014-10-16 17:41 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-12-01 10:17 - 2014-10-16 17:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-01 10:17 - 2014-10-16 16:53 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-12-01 10:17 - 2009-07-14 05:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-12-01 10:17 - 2009-07-14 03:20 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-12-01 10:07 - 2016-05-05 22:33 - 00000000 ____D C:\Users\ALYDEPHILA\Documents\Fichiers Outlook
2016-12-01 08:54 - 2014-10-16 17:55 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\Mozilla
2016-12-01 08:49 - 2016-03-03 11:37 - 00000000 ____D C:\Users\ALYDEPHILA\Desktop\Autres
2016-12-01 08:48 - 2014-10-16 17:41 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\vlc
2016-12-01 08:27 - 2014-10-18 14:56 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Local\Adobe
2016-12-01 08:21 - 2016-05-19 14:42 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-11-30 16:15 - 2009-07-14 03:20 - 00000000 ____D C:\Windows\system32\NDF
2016-11-30 08:56 - 2016-03-15 20:30 - 02370560 ___SH C:\Users\ALYDEPHILA\Desktop\Thumbs.db
2016-11-29 10:00 - 2016-05-21 15:21 - 00000388 _____ C:\Windows\Tasks\GlaryUpdate 5.job
2016-11-25 20:19 - 2016-05-06 21:05 - 00000000 ____D C:\Windows\system32\GWX
2016-11-22 19:13 - 2015-07-30 13:25 - 00000000 ____D C:\UsbFix
2016-11-21 21:28 - 2009-07-14 02:34 - 00000215 _____ C:\Windows\system.ini
2016-11-21 20:16 - 2015-03-09 09:14 - 00000000 ____D C:\Users\ALYDEPHILA\AppData\Roaming\uTorrent
2016-11-21 19:12 - 2014-10-16 16:45 - 00000000 ____D C:\Users\ALYDEPHILA
2016-11-21 19:03 - 2009-07-14 03:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-11-21 18:57 - 2014-10-17 03:35 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-21 12:51 - 2016-07-28 13:36 - 00001003 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-11 09:36 - 2015-06-29 10:00 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-03 14:06 - 2016-05-05 08:22 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Fichiers à la racine de certains dossiers =======
2015-03-08 18:01 - 2015-03-08 18:09 - 0000346 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\bibstats
2016-09-13 23:04 - 2016-09-15 17:18 - 0000308 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\history.Excel.pwcdat
2015-05-04 17:16 - 2015-12-15 20:14 - 0000132 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Préfs Filtre IllExportation Adobe CS6
2015-05-30 19:50 - 2015-05-30 19:53 - 0000132 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Préfs Format GIF Adobe CS6
2015-04-21 23:28 - 2016-10-14 15:51 - 0000132 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Préfs Format PNG Adobe CS6
2015-03-22 21:13 - 2015-04-01 15:48 - 0000462 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Rim.Desktop.Exception.log
2015-03-22 21:11 - 2015-06-29 11:48 - 0002021 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2015-03-22 21:13 - 2015-04-01 15:48 - 0000462 _____ () C:\Users\ALYDEPHILA\AppData\Roaming\Rim.DesktopHelper.Exception.log
2016-01-15 11:14 - 2016-01-15 11:14 - 0001456 _____ () C:\Users\ALYDEPHILA\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2016-05-20 10:32 - 2016-05-20 10:51 - 0001650 _____ () C:\Users\ALYDEPHILA\AppData\Local\Cracklock.settings
2015-07-21 13:52 - 2015-07-21 13:52 - 0000017 _____ () C:\Users\ALYDEPHILA\AppData\Local\resmon.resmoncfg
2015-08-25 19:01 - 2015-08-25 19:14 - 0001269 _____ () C:\ProgramData\hpzinstall.log
2015-07-21 10:54 - 2015-07-21 14:19 - 0000000 _____ () C:\ProgramData\LauncherAccess.dt
Fichiers à déplacer ou supprimer:
====================
C:\Users\ALYDEPHILA\AppData\Roaming\VDI\Shared\Product Updater\produpd.exe
C:\Users\Public\CP1520series_nw_Basic.exe
C:\Users\Public\lj1018-HB-pnp-win32-en.exe
C:\Users\Public\lj1018_1020_1022-HB-pnp-win64-fr.exe
C:\Users\Public\LJP1100_P1560_P1600-HB-win32-fr.exe
C:\Users\Public\setup_full_G3010_140_052.exe
Certains fichiers dans TEMP:
====================
C:\Users\ALYDEPHILA\AppData\Local\Temp\Font__19312_il510.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\keydown01.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\local64spl.dll
C:\Users\ALYDEPHILA\AppData\Local\Temp\s11833.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\s21761.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\ucbrabs.exe
C:\Users\ALYDEPHILA\AppData\Local\Temp\Zone2.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-11-24 19:31
==================== Fin de FRST.txt ============================