Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:29-05-2016 02
Exécuté par Sergio (administrateur) sur SERGIOFERNANDES (01-06-2016 13:38:04)
Exécuté depuis C:\Users\Sergio\Desktop
Profils chargés: Sergio (Profils disponibles: Sergio)
Platform: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(UPEK Inc.) C:\Program Files\Common Files\SPBA\upeksvr.exe
(Egis Technology Inc.) C:\Program Files\Acer Bio Protection\CompPtcVUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Egis Technology Inc.) C:\Program Files\Acer Bio Protection\BASVC.exe
() C:\ProgramData\Lamzap\Lamzap.exe
(O2Micro International) C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
() C:\Windows\System32\PnkBstrA.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [134032 2009-07-30] (Toshiba Europe GmbH)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1190920 2009-08-24] (Dritek System Inc.)
HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-03-07] (Acer Incorporated)
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [413696 2008-09-23] (Acer Inc.)
HKLM\...\Run: [VitaKeyPdtWzd] => C:\Program Files\Acer Bio Protection\PdtWzd.exe [3568640 2009-06-18] (Egis Technology Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)
HKLM\...\Run: [Dolby Home Theater v4] => C:\Program Files\Dolby Home Theater v4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-02-14] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Adobe ARM] => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Reader Application Helper] => C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [898952 2012-11-08] (Sony Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10996368 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM\...\Run: [WinampAgent] => "C:\Program Files\Winamp\winampa.exe"
HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe [2081792 2013-03-29] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2015-04-07] (Apple Inc.)
HKLM\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs,
Winlogon\Notify\spba: C:\Program Files\Common Files\SPBA\homefus2.dll [2009-05-28] (UPEK Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [msnmsgr] => C:\Program Files\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Facebook Update] => C:\Users\Sergio\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-09-12] (Facebook Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [EA Core] => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Spotify Web Helper] => C:\Users\Sergio\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-27] (Spotify Ltd)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe [759712 2014-09-12] (Adobe Systems Incorporated)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Sergio\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [HFSSync] => C:\Program Files\Syncthing\HFSSync.exe
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [AceStream] => C:\Users\Sergio\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2016-05-10] ()
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Tomtomax MaxiBox] => C:\Program Files\Tomtomax Maxi-Box V3\Tomtomax_MaxiBox.exe [1325056 2014-10-11] (Tomtomax & KoakDesign)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Spotify] => C:\Users\Sergio\AppData\Roaming\Spotify\Spotify.exe [7389752 2015-08-27] (Spotify Ltd)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [AceUpdater] => C:\Users\Sergio\AppData\Roaming\ACEStream\updater\ace_update.exe [27000 2016-01-13] ()
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\MountPoints2: {38710e08-df72-11e4-b56b-00238bf55e58} - H:\LG_PC_Programs.exe
AppInit_DLLs: C:\ProgramData\Lamzap\Lattech.dll => C:\ProgramData\Lamzap\Lattech.dll [257536 2016-05-31] ()
Lsa: [Notification Packages] C:\Program Files\Acer Bio Protection\PwdFilter
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-07-29] (Egis Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AML Device Install.lnk [2016-05-31]
ShortcutTarget: AML Device Install.lnk -> C:\Program Files\AMD AVT\bin\kdbsync.exe ()
Startup: C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-05-31]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Sergio\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2016-05-31]
ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{17C9B6A2-0F6D-43B9-B36E-7C5F576A9854}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{1857ABE8-3C11-4E86-ACE3-933CDE8AB5BB}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{4E59847D-8672-46AD-A4AB-72A24293A9D0}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{4E59847D-8672-46AD-A4AB-72A24293A9D0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{732275AC-B04F-4FA1-B422-FECCB2E15C24}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{732275AC-B04F-4FA1-B422-FECCB2E15C24}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CDE34F43-3535-4B51-BF12-BEB8D35C53C1}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{CDE34F43-3535-4B51-BF12-BEB8D35C53C1}: [DhcpNameServer] 172.20.2.10 172.20.2.39
Tcpip\..\Interfaces\{E1FB4CAC-C1D6-4CED-81E6-88833AF78E15}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{E1FB4CAC-C1D6-4CED-81E6-88833AF78E15}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e29ac6c2-7037-11de-816d-806e6f6e6963}: [NameServer] 104.197.191.4
ManualProxies:
Internet Explorer:
==================
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM -> IELNKSRCH URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBFnYN5R-SRTQR4zPSPlbKdkH6CEUjkSSDPwupWEMeQboI-iM13pQ6GdBnxtfWpvFJFsw-TvOcFaVvHPIj6_onWSvCAyfxVVnuoNdq2Z3W5xap4YonmcPHz2YONkQdNV8Tx7LnDYTX2JTE9tb3gut0r4pNcUanS34WuC-45CGnJm9nubI7pKg,,&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBFnYN5R-SRTQR4zPSPlbKdkH6CEUjkSSDPwupWEMeQboI-iM13pQ6GdBnxtfWpvFJFsw-TvOcFaVvHPIj6_onWSvCAyfxVVnuoNdq2Z3W5xap4YonmcPHz2YONkQdNV8Tx7LnDYTX2JTE9tb3gut0r4pNcUanS34WuC-45CGnJm9nubI7pKg,,&q={searchTerms}
BHO: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-16] (Oracle Corporation)
BHO: ShowBarObj Class -> {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} -> C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll [2008-07-29] (Egis)
BHO: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll => Pas de fichier
BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-16] (Oracle Corporation)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29] (Egis Incorporated.)
Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll Pas de fichier
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544
FF SelectedSearchEngine: Bing Protect
FF Homepage: hxxps://www.google.fr/
FF Keyword.URL: hxxp://www.bing.com/search?FORM=INMODF&PC=IN01&q=
FF NetworkProxy: "autoconfig_url", "file://C:/Program Files/ChrisPC Free Anonymous Proxy/chrispc_proxy_fox.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1165635.dll [2012-07-05] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-16] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\Media Convert Master\codec\real\browser\plugins\nppl3260.dll [Pas de fichier]
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll [Pas de fichier]
FF Plugin: @sony.com/ReaderDesktop -> C:\Program Files\Sony\ReaderDesktop\npreaderdetectmoz.dll [2012-11-08] (Sony Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @acestream.net/acestreamplugin,version=3.0.12 -> C:\Users\Sergio\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @acestream.net/acestreamplugin,version=3.1.6 -> C:\Users\Sergio\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @eximion.com/KalydoPlayer -> C:\Users\Sergio\AppData\Roaming\Kalydo\KalydoPlayer\bin1\npkalydo.dll [2012-01-30] (Eximion B.V.)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @g2.com/iggweb3dupdater -> C:\Users\Sergio\AppData\Roaming\IGG\Web3D\1.0.0.37\NPIGGWeb3DUpdater.dll [2011-09-24] (IGG)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @g2.com/joyconnectshell -> C:\Users\Sergio\AppData\Roaming\IGG\Web3D\1.0.0.37\NPJoyConnectShell.dll [2011-09-24] (IGG)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Sergio\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdevalvr.dll [2012-02-02] (www.devalvr.com)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.)
FF SearchPlugin: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\searchplugins\Bing Protect.xml [2015-02-23]
FF SearchPlugin: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\searchplugins\commentcamarchenet.xml [2015-11-12]
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\findit.xml [2016-05-31]
FF Extension: AS Magic Player - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\extensions\magicplayer_unlisted@acestream.org [2016-03-31]
FF Extension: Google Translator for Firefox - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\extensions\translator@zoli.bod.xpi [2016-04-27]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\Extensions\2020Player_IKEA@2020Technologies.com [2014-03-15] [non signé]
FF Extension: MEGA - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\Extensions\firefox@mega.co.nz.xpi [2016-05-31]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2015-06-03] [non signé]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF => non trouvé(e)
FF HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Sergio\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: Ace Stream Web Extension - C:\Users\Sergio\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-04-03]
Chrome:
=======
CHR dev: Chrome dev build détecté(e)! <======= ATTENTION
CHR HomePage: ChromeDefaultData -> hxxp://d391tbweljugwk.cloudfront.net/?ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm
CHR StartupUrls: ChromeDefaultData -> "hxxp://d391tbweljugwk.cloudfront.net/?ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://d391tbweljugwk.cloudfront.net/chrome.php?q={searchTerms}&ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm
CHR DefaultSearchKeyword: ChromeDefaultData -> yessearches
CHR Profile: C:\Users\Sergio\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pas de nom) - C:\Users\Sergio\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim [2016-06-01]
CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-08-19] () [Fichier non signé]
R2 IGBASVC; C:\Program Files\Acer Bio Protection\BASVC.exe [3450368 2009-06-18] (Egis Technology Inc.) [Fichier non signé]
R2 Lamzap; C:\ProgramData\\Lamzap\\Lamzap.exe [782848 2016-05-31] () [Fichier non signé]
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 o2flash; C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [Fichier non signé]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-10-17] ()
S3 Sony SCSI Helper Service; C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2012-10-23] (Sony Corporation) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 AdobeARMservice; "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
S3 TOSHIBA HDD SSD Alert Service; "C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe" [X]
S2 Vegeno; "C:\Users\Sergio\AppData\Roaming\OizeaToafb\Awufda.exe" -cms [X]
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [140800 2011-10-19] (Windows (R) Win 7 DDK provider)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [14920 2013-03-07] () [Fichier non signé]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9160 2013-03-07] () [Fichier non signé]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2008-03-12] () [Fichier non signé]
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [55848 2010-03-29] (Atheros Communications, Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42592 2016-05-17] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2016-05-31] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [95304 2011-11-10] (MotioninJoy)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18432 2011-08-02] (Apple Inc.) [Fichier non signé]
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7522304 2011-10-31] (Intel Corporation)
S3 NPF; C:\Windows\System32\drivers\npf.sys [30336 2003-04-04] (Politecnico di Torino) [Fichier non signé]
R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-08-31] (Nuvoton Technology Corporation)
S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [328552 2011-07-06] (Realtek Semiconductor Corp.)
S3 RTL8187Se; C:\Windows\System32\DRIVERS\RTL8187Se.sys [359424 2009-07-14] (Realtek Semiconductor Corporation )
S3 winbondcir; C:\Windows\System32\DRIVERS\winbondcir.sys [43008 2007-03-28] (Winbond Electronics Corporation)
S1 DritekPortIO; \??\C:\Program Files\Launch Manager\DPortIO.sys [X]
S3 DrvSnSht; \??\C:\Program Files\R-Drive Image\DrvSnSht.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 R-ImageDisk; \??\C:\Program Files\R-Drive Image\R-ImageDisk.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 tapSF0901; system32\DRIVERS\tapSF0901.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Fichier non signé]
S3 USBCCID; system32\DRIVERS\usbccid.sys [X]
S3 vtany; \??\C:\Windows\vtany.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-06-01 13:38 - 2016-06-01 13:38 - 00027203 _____ C:\Users\Sergio\Desktop\FRST.txt
2016-06-01 13:37 - 2016-06-01 13:38 - 00000000 ____D C:\FRST
2016-06-01 13:37 - 2016-06-01 13:37 - 01734656 _____ (Farbar) C:\Users\Sergio\Desktop\FRST.exe
2016-06-01 13:23 - 2016-06-01 13:23 - 00000000 ____D C:\uninst
2016-06-01 13:22 - 2016-06-01 13:23 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\AceWebExtension
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Local\FB5A5D00-1464726207-11DC-BC29-00238BF55E58
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\ProgramData\Logic Handler
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\ProgramData\CloudPrinter
2016-06-01 13:18 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\acestream
2016-06-01 13:18 - 2016-06-01 13:22 - 00000000 ____D C:\_acestream_cache_
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\.acestream
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Users\Sergio\AppData\LocalLow\.acestream
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\ProgramData\{f8df692d-9b61-87b3-f8df-f692d9b6a4b6}
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\ProgramData\{16afe74a-d7e1-1c2d-16af-fe74ad7e9d2b}
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Program Files\CutTheePrice
2016-05-31 20:53 - 2016-05-31 20:53 - 00000000 ____D C:\Windows\system32\mirn
2016-05-31 20:49 - 2016-06-01 13:27 - 00000000 ____D C:\ProgramData\Lamzap
2016-05-31 20:49 - 2016-05-31 20:49 - 06859776 _____ C:\Users\Sergio\AppData\Roaming\agent.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 02279413 _____ C:\Users\Sergio\AppData\Roaming\SingTop.bin
2016-05-31 20:49 - 2016-05-31 20:49 - 01756999 _____ C:\Users\Sergio\AppData\Roaming\Top-Job.tst
2016-05-31 20:49 - 2016-05-31 20:49 - 00126464 _____ C:\Users\Sergio\AppData\Roaming\noah.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00126464 _____ C:\Users\Sergio\AppData\Roaming\lobby.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00072820 _____ C:\Users\Sergio\AppData\Roaming\StanTom.tst
2016-05-31 20:49 - 2016-05-31 20:49 - 00067776 _____ C:\Users\Sergio\AppData\Roaming\Config.xml
2016-05-31 20:49 - 2016-05-31 20:49 - 00054272 _____ C:\Users\Sergio\AppData\Roaming\ApplicationHosting.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00018432 _____ C:\Users\Sergio\AppData\Roaming\Main.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00005568 _____ C:\Users\Sergio\AppData\Roaming\md.xml
2016-05-31 20:49 - 2016-05-31 20:49 - 00000000 ____D C:\ProgramData\Lamzaps
2016-05-31 20:49 - 2016-05-31 20:49 - 00000000 ____D C:\Program Files\Common Files\KinIt
2016-05-31 20:49 - 2016-05-31 20:00 - 00782848 _____ C:\Users\Sergio\AppData\Roaming\Top-Job.exe
2016-05-31 20:49 - 2016-05-31 20:00 - 00782848 _____ C:\Users\Sergio\AppData\Roaming\StanTom.exe
2016-05-31 20:48 - 2016-05-31 20:48 - 00848437 _____ C:\Users\Sergio\AppData\Roaming\Concof.bin
2016-05-31 20:47 - 2016-05-31 20:48 - 00018336 _____ C:\Users\Sergio\AppData\Roaming\InstallationConfiguration.xml
2016-05-31 20:47 - 2016-05-31 20:47 - 00128512 _____ C:\Users\Sergio\AppData\Roaming\Installer.dat
2016-05-31 20:19 - 2016-05-31 20:55 - 00000000 ____D C:\Program Files\mpck
2016-05-31 19:38 - 2016-05-31 20:55 - 00000000 ____D C:\Users\Sergio\AppData\LocalLow\Company
2016-05-31 19:37 - 2016-05-31 20:55 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Aowoa
2016-05-31 19:37 - 2016-05-31 20:55 - 00000000 ____D C:\Program Files\Noczojoum
2016-05-31 19:37 - 2016-05-31 20:43 - 00000000 ____D C:\Program Files\NoczojoumUn
2016-05-31 19:37 - 2016-05-31 19:37 - 00000000 ____D C:\Users\Sergio\AppData\Local\Tempfolder
2016-05-31 19:35 - 2016-05-31 20:43 - 00000000 ____D C:\Program Files\Atuqoiedtharech
2016-05-31 19:35 - 2016-05-31 19:36 - 00000000 ____D C:\Program Files\Lipothersaph
2016-05-31 19:35 - 2016-05-31 19:36 - 00000000 ____D C:\Program Files\Cloweryvarogh
2016-05-31 19:35 - 2016-05-31 19:32 - 00001015 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-05-31 09:06 - 2016-05-31 19:29 - 00000000 ____D C:\Users\Sergio\Documents\MEGAsync Downloads
2016-05-31 09:05 - 2016-05-31 20:50 - 00001074 _____ C:\Users\Sergio\Desktop\MEGAsync.lnk
2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Local\MEGAsync
2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Local\Mega Limited
2016-05-31 08:57 - 2016-05-31 19:35 - 122159104 _____ C:\Users\Sergio\Desktop\Eu1GBWest9456243.rar
2016-05-28 14:03 - 2016-05-31 20:50 - 00001951 _____ C:\Users\Sergio\Desktop\Ace Stream Media Center.lnk
2016-05-22 12:08 - 2016-05-22 12:30 - 00000600 _____ C:\Users\Sergio\AppData\Local\PUTTY.RND
2016-05-17 09:41 - 2016-05-17 09:42 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-05-17 09:41 - 2016-05-17 09:41 - 00042592 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys
2016-05-17 09:39 - 2016-05-17 09:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SixaxisPairTool
2016-05-17 09:39 - 2016-05-17 09:39 - 00000000 ____D C:\Program Files\SixaxisPairTool
2016-05-17 09:39 - 2012-01-17 09:40 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll
2016-05-12 11:53 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-12 11:53 - 2016-04-09 08:54 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-12 11:53 - 2016-04-09 07:40 - 02397696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-12 11:53 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-12 11:53 - 2016-04-06 12:36 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-05-12 11:53 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-05-12 11:52 - 2016-04-23 18:24 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-12 11:52 - 2016-04-23 06:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-05-12 11:52 - 2016-04-23 06:20 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-05-12 11:52 - 2016-04-23 06:11 - 20350464 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-12 11:52 - 2016-04-23 06:08 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-12 11:52 - 2016-04-23 06:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-05-12 11:52 - 2016-04-23 06:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-05-12 11:52 - 2016-04-23 06:07 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-05-12 11:52 - 2016-04-23 06:07 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-05-12 11:52 - 2016-04-23 06:04 - 02285568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-12 11:52 - 2016-04-23 06:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-05-12 11:52 - 2016-04-23 06:01 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-05-12 11:52 - 2016-04-23 05:59 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-05-12 11:52 - 2016-04-23 05:58 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-12 11:52 - 2016-04-23 05:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-05-12 11:52 - 2016-04-23 05:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-05-12 11:52 - 2016-04-23 05:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-05-12 11:52 - 2016-04-23 05:53 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-12 11:52 - 2016-04-23 05:50 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-05-12 11:52 - 2016-04-23 05:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-12 11:52 - 2016-04-23 05:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-05-12 11:52 - 2016-04-23 05:43 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-05-12 11:52 - 2016-04-23 05:41 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-05-12 11:52 - 2016-04-23 05:40 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-05-12 11:52 - 2016-04-23 05:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-05-12 11:52 - 2016-04-23 05:36 - 04611072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-12 11:52 - 2016-04-23 05:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-12 11:52 - 2016-04-23 05:31 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-12 11:52 - 2016-04-23 05:31 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-12 11:52 - 2016-04-23 05:30 - 02056192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-12 11:52 - 2016-04-23 05:30 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-05-12 11:52 - 2016-04-23 05:26 - 13811200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-12 11:52 - 2016-04-23 05:12 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-12 11:52 - 2016-04-23 05:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-12 11:52 - 2016-04-23 05:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-12 11:52 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-05-12 11:52 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-12 11:52 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-12 11:52 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-05-12 11:52 - 2016-04-09 08:59 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-05-12 11:52 - 2016-04-09 08:59 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-05-12 11:52 - 2016-04-09 08:57 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-05-12 11:52 - 2016-04-09 07:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-05-12 11:52 - 2016-04-09 07:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-05-12 11:52 - 2016-04-09 07:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-05-12 11:52 - 2016-04-09 07:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-05-12 11:52 - 2016-04-09 07:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-05-12 11:52 - 2016-04-09 07:40 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-05-12 11:52 - 2016-04-09 07:38 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-12 11:52 - 2016-04-09 07:38 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-12 11:52 - 2016-04-09 07:38 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-12 11:52 - 2016-04-09 07:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-05-12 11:52 - 2016-04-09 07:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-05-12 11:52 - 2016-04-09 07:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-05-12 11:52 - 2016-04-09 07:37 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-06-01 13:32 - 2009-09-10 07:28 - 01623488 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-01 13:32 - 2009-07-14 10:39 - 00730820 _____ C:\Windows\system32\perfh00C.dat
2016-06-01 13:32 - 2009-07-14 10:39 - 00142624 _____ C:\Windows\system32\perfc00C.dat
2016-06-01 13:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-06-01 13:26 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-01 13:18 - 2014-11-16 22:09 - 00000000 ____D C:\AdwCleaner
2016-05-31 21:26 - 2015-06-29 11:06 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-31 21:25 - 2009-07-14 06:34 - 00025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-31 21:25 - 2009-07-14 06:34 - 00025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-31 21:23 - 2012-10-02 12:04 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Spotify
2016-05-31 21:23 - 2012-03-16 11:05 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Skype
2016-05-31 21:21 - 2012-10-02 12:04 - 00000000 ____D C:\Users\Sergio\AppData\Local\Spotify
2016-05-31 21:21 - 2012-01-12 12:39 - 00000000 ____D C:\Users\Sergio\Tracing
2016-05-31 20:55 - 2012-01-08 16:43 - 00000000 ____D C:\Windows\OemDrv
2016-05-31 20:52 - 2015-06-27 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-05-31 20:51 - 2015-06-18 14:17 - 00002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk
2016-05-31 20:51 - 2013-10-09 09:59 - 00002859 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk
2016-05-31 20:51 - 2012-10-26 08:48 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-05-31 20:51 - 2012-10-02 12:04 - 00001811 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-05-31 20:51 - 2012-01-31 00:58 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-05-31 20:51 - 2012-01-23 21:34 - 00001816 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2016-05-31 20:51 - 2012-01-12 12:36 - 00000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-31 20:51 - 2012-01-08 18:00 - 00001129 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-05-31 20:51 - 2009-09-10 07:57 - 00002571 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visionneuse Microsoft Office PowerPoint 2007.lnk
2016-05-31 20:51 - 2009-09-10 07:57 - 00001108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lanceur de tâches Microsoft Works.lnk
2016-05-31 20:51 - 2009-09-10 07:17 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-05-31 20:51 - 2009-09-10 07:17 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-05-31 20:51 - 2009-07-14 06:46 - 00001491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-05-31 20:51 - 2009-07-14 06:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-05-31 20:51 - 2009-07-14 06:42 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-05-31 20:51 - 2009-07-14 06:42 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-05-31 20:51 - 2009-07-14 06:42 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-05-31 20:51 - 2009-07-14 06:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-05-31 20:50 - 2016-03-31 13:51 - 00001754 _____ C:\Users\Sergio\Desktop\Kodi.lnk
2016-05-31 20:50 - 2015-08-26 09:05 - 00002685 _____ C:\Users\Public\Desktop\Skype.lnk
2016-05-31 20:50 - 2015-06-29 11:06 - 00001031 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-31 20:50 - 2015-06-27 11:31 - 00001720 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-05-31 20:50 - 2015-06-19 16:18 - 00001060 _____ C:\Users\Public\Desktop\Tomtomax Maxi-Box.lnk
2016-05-31 20:50 - 2015-06-12 12:31 - 00000898 _____ C:\Users\Public\Desktop\Minecraft.lnk
2016-05-31 20:50 - 2015-05-03 20:49 - 00000995 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-05-31 20:50 - 2015-04-26 19:31 - 00000920 _____ C:\Users\Sergio\Desktop\SopCast.lnk
2016-05-31 20:50 - 2015-04-26 18:29 - 00001935 _____ C:\Users\Sergio\Desktop\Ace Player.lnk
2016-05-31 20:50 - 2015-04-11 09:25 - 00000984 _____ C:\Users\Sergio\Desktop\iOSinstaller.lnk
2016-05-31 20:50 - 2015-03-04 16:00 - 00000846 _____ C:\Users\Sergio\Desktop\ZHPCleaner.lnk
2016-05-31 20:50 - 2015-02-23 19:54 - 00001037 _____ C:\Users\Public\Desktop\SUPER ©.lnk
2016-05-31 20:50 - 2015-02-20 13:51 - 00002094 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-31 20:50 - 2014-12-04 11:26 - 00000867 _____ C:\Users\Sergio\Desktop\µTorrent.lnk
2016-05-31 20:50 - 2014-12-04 11:26 - 00000847 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-05-31 20:50 - 2014-10-29 13:42 - 00001782 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2016-05-31 20:50 - 2013-10-07 11:39 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-05-31 20:50 - 2013-04-02 13:25 - 00000908 _____ C:\Users\Public\Desktop\WinSCP.lnk
2016-05-31 20:50 - 2012-12-25 20:36 - 00001990 _____ C:\Users\Public\Desktop\Reader for PC.lnk
2016-05-31 20:50 - 2012-10-26 08:48 - 00001956 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-05-31 20:50 - 2012-10-02 12:04 - 00001825 _____ C:\Users\Sergio\Desktop\Spotify.lnk
2016-05-31 20:50 - 2012-09-02 14:45 - 00000860 _____ C:\Users\Sergio\Desktop\XnView.lnk
2016-05-31 20:50 - 2012-03-02 09:56 - 00000960 _____ C:\Users\Public\Desktop\PDFCreator.lnk
2016-05-31 20:50 - 2012-01-23 21:34 - 00001870 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2016-05-31 20:50 - 2012-01-12 12:36 - 00000978 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-05-31 20:50 - 2012-01-10 10:27 - 00001908 _____ C:\Users\Public\Desktop\Empowering Technology.lnk
2016-05-31 20:50 - 2009-09-10 07:48 - 00002036 _____ C:\Users\Public\Desktop\Prêt pour les appels voix et vidéo Skype.lnk
2016-05-31 20:41 - 2012-09-12 17:36 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3851689551-3125411691-1771927614-1000UA.job
2016-05-31 20:15 - 2012-04-12 17:18 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-31 19:18 - 2012-09-12 17:36 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3851689551-3125411691-1771927614-1000Core.job
2016-05-31 19:06 - 2015-06-28 09:10 - 00000386 _____ C:\Windows\Tasks\PetGuides.job
2016-05-31 13:36 - 2016-03-31 13:24 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Kodi
2016-05-31 13:28 - 2013-02-06 20:51 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\vlc
2016-05-31 09:08 - 2009-09-10 07:13 - 00000000 ____D C:\Windows\Panther
2016-05-27 12:26 - 2016-02-13 15:02 - 00000000 ___HD C:\$WINDOWS.~BT
2016-05-26 12:47 - 2015-03-29 16:37 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-17 13:58 - 2016-03-11 09:47 - 00000000 ____D C:\Windows\rescache
2016-05-17 09:41 - 2009-07-14 04:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-05-17 09:39 - 2014-04-16 16:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-05-15 19:55 - 2009-07-14 06:33 - 00453520 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-15 19:52 - 2014-12-11 16:46 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-15 19:52 - 2009-07-14 11:01 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-13 12:15 - 2012-04-12 17:18 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-05-13 12:15 - 2012-01-08 18:29 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-05-13 12:14 - 2013-05-23 12:57 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\uTorrent
2016-05-13 09:28 - 2013-09-03 19:44 - 00000000 ____D C:\Windows\system32\MRT
2016-05-13 09:07 - 2012-01-11 11:30 - 136686448 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-04 21:04 - 2015-04-09 16:18 - 00005699 ____H C:\Users\Sergio\.swfinfo
==================== Fichiers à la racine de certains dossiers =======
2016-05-31 20:49 - 2016-05-31 20:49 - 6859776 _____ () C:\Users\Sergio\AppData\Roaming\agent.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0054272 _____ () C:\Users\Sergio\AppData\Roaming\ApplicationHosting.dat
2016-05-31 20:48 - 2016-05-31 20:48 - 0848437 _____ () C:\Users\Sergio\AppData\Roaming\Concof.bin
2016-05-31 20:49 - 2016-05-31 20:49 - 0067776 _____ () C:\Users\Sergio\AppData\Roaming\Config.xml
2016-05-31 20:47 - 2016-05-31 20:48 - 0018336 _____ () C:\Users\Sergio\AppData\Roaming\InstallationConfiguration.xml
2016-05-31 20:47 - 2016-05-31 20:47 - 0128512 _____ () C:\Users\Sergio\AppData\Roaming\Installer.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0126464 _____ () C:\Users\Sergio\AppData\Roaming\lobby.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0018432 _____ () C:\Users\Sergio\AppData\Roaming\Main.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0005568 _____ () C:\Users\Sergio\AppData\Roaming\md.xml
2016-05-31 20:49 - 2016-05-31 20:49 - 0126464 _____ () C:\Users\Sergio\AppData\Roaming\noah.dat
2013-10-14 19:43 - 2013-10-14 19:43 - 0138056 _____ () C:\Users\Sergio\AppData\Roaming\PnkBstrK.sys
2016-05-31 20:49 - 2016-05-31 20:49 - 2279413 _____ () C:\Users\Sergio\AppData\Roaming\SingTop.bin
2016-05-31 20:49 - 2016-05-31 20:00 - 0782848 _____ () C:\Users\Sergio\AppData\Roaming\StanTom.exe
2016-05-31 20:49 - 2016-05-31 20:49 - 0072820 _____ () C:\Users\Sergio\AppData\Roaming\StanTom.tst
2016-05-31 20:49 - 2016-05-31 20:00 - 0782848 _____ () C:\Users\Sergio\AppData\Roaming\Top-Job.exe
2016-05-31 20:49 - 2016-05-31 20:49 - 1756999 _____ () C:\Users\Sergio\AppData\Roaming\Top-Job.tst
2016-05-31 20:49 - 2016-05-31 20:49 - 0032038 _____ () C:\Users\Sergio\AppData\Roaming\uninstall_temp.ico
2013-04-02 13:30 - 2014-12-05 17:10 - 0000600 _____ () C:\Users\Sergio\AppData\Roaming\winscp.rnd
2012-01-14 14:12 - 2016-04-29 11:00 - 0001456 _____ () C:\Users\Sergio\AppData\Local\Adobe Enregistrer pour le Web 11.0 Prefs
2012-01-10 10:47 - 2012-01-10 10:48 - 0095506 _____ () C:\Users\Sergio\AppData\Local\edsinstaller.txt-20120110.log
2015-02-23 21:10 - 2015-02-23 21:10 - 0628496 _____ (CMI Limited) C:\Users\Sergio\AppData\Local\nst6550.tmp
2016-05-22 12:08 - 2016-05-22 12:30 - 0000600 _____ () C:\Users\Sergio\AppData\Local\PUTTY.RND
2015-02-23 22:18 - 2015-02-24 18:59 - 0000085 ___SH () C:\ProgramData\.zreglib
Certains fichiers dans TEMP:
====================
C:\Users\Sergio\AppData\Local\Temp\5F84.tmp.exe
C:\Users\Sergio\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbtjjas.dll
C:\Users\Sergio\AppData\Local\Temp\installer_x64.exe
C:\Users\Sergio\AppData\Local\Temp\installer_x86.exe
C:\Users\Sergio\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Sergio\AppData\Local\Temp\Quarantine.exe
C:\Users\Sergio\AppData\Local\Temp\RO2SMWW9WK.exe
C:\Users\Sergio\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sergio\AppData\Local\Temp\tasklisten.exe
C:\Users\Sergio\AppData\Local\Temp\uninstall.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-05-28 09:08
==================== Fin de FRST.txt ============================
Exécuté par Sergio (administrateur) sur SERGIOFERNANDES (01-06-2016 13:38:04)
Exécuté depuis C:\Users\Sergio\Desktop
Profils chargés: Sergio (Profils disponibles: Sergio)
Platform: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(UPEK Inc.) C:\Program Files\Common Files\SPBA\upeksvr.exe
(Egis Technology Inc.) C:\Program Files\Acer Bio Protection\CompPtcVUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Egis Technology Inc.) C:\Program Files\Acer Bio Protection\BASVC.exe
() C:\ProgramData\Lamzap\Lamzap.exe
(O2Micro International) C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
() C:\Windows\System32\PnkBstrA.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [134032 2009-07-30] (Toshiba Europe GmbH)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1190920 2009-08-24] (Dritek System Inc.)
HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-03-07] (Acer Incorporated)
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [413696 2008-09-23] (Acer Inc.)
HKLM\...\Run: [VitaKeyPdtWzd] => C:\Program Files\Acer Bio Protection\PdtWzd.exe [3568640 2009-06-18] (Egis Technology Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)
HKLM\...\Run: [Dolby Home Theater v4] => C:\Program Files\Dolby Home Theater v4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-02-14] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Adobe ARM] => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Reader Application Helper] => C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [898952 2012-11-08] (Sony Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10996368 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM\...\Run: [WinampAgent] => "C:\Program Files\Winamp\winampa.exe"
HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe [2081792 2013-03-29] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2015-04-07] (Apple Inc.)
HKLM\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs,
Winlogon\Notify\spba: C:\Program Files\Common Files\SPBA\homefus2.dll [2009-05-28] (UPEK Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [msnmsgr] => C:\Program Files\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Facebook Update] => C:\Users\Sergio\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-09-12] (Facebook Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [EA Core] => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Spotify Web Helper] => C:\Users\Sergio\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-27] (Spotify Ltd)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe [759712 2014-09-12] (Adobe Systems Incorporated)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Sergio\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [HFSSync] => C:\Program Files\Syncthing\HFSSync.exe
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [AceStream] => C:\Users\Sergio\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2016-05-10] ()
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Tomtomax MaxiBox] => C:\Program Files\Tomtomax Maxi-Box V3\Tomtomax_MaxiBox.exe [1325056 2014-10-11] (Tomtomax & KoakDesign)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Spotify] => C:\Users\Sergio\AppData\Roaming\Spotify\Spotify.exe [7389752 2015-08-27] (Spotify Ltd)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [AceUpdater] => C:\Users\Sergio\AppData\Roaming\ACEStream\updater\ace_update.exe [27000 2016-01-13] ()
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\MountPoints2: {38710e08-df72-11e4-b56b-00238bf55e58} - H:\LG_PC_Programs.exe
AppInit_DLLs: C:\ProgramData\Lamzap\Lattech.dll => C:\ProgramData\Lamzap\Lattech.dll [257536 2016-05-31] ()
Lsa: [Notification Packages] C:\Program Files\Acer Bio Protection\PwdFilter
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-07-29] (Egis Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AML Device Install.lnk [2016-05-31]
ShortcutTarget: AML Device Install.lnk -> C:\Program Files\AMD AVT\bin\kdbsync.exe ()
Startup: C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-05-31]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Sergio\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2016-05-31]
ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{17C9B6A2-0F6D-43B9-B36E-7C5F576A9854}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{1857ABE8-3C11-4E86-ACE3-933CDE8AB5BB}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{4E59847D-8672-46AD-A4AB-72A24293A9D0}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{4E59847D-8672-46AD-A4AB-72A24293A9D0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{732275AC-B04F-4FA1-B422-FECCB2E15C24}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{732275AC-B04F-4FA1-B422-FECCB2E15C24}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CDE34F43-3535-4B51-BF12-BEB8D35C53C1}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{CDE34F43-3535-4B51-BF12-BEB8D35C53C1}: [DhcpNameServer] 172.20.2.10 172.20.2.39
Tcpip\..\Interfaces\{E1FB4CAC-C1D6-4CED-81E6-88833AF78E15}: [NameServer] 104.197.191.4
Tcpip\..\Interfaces\{E1FB4CAC-C1D6-4CED-81E6-88833AF78E15}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e29ac6c2-7037-11de-816d-806e6f6e6963}: [NameServer] 104.197.191.4
ManualProxies:
Internet Explorer:
==================
HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM -> IELNKSRCH URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBFnYN5R-SRTQR4zPSPlbKdkH6CEUjkSSDPwupWEMeQboI-iM13pQ6GdBnxtfWpvFJFsw-TvOcFaVvHPIj6_onWSvCAyfxVVnuoNdq2Z3W5xap4YonmcPHz2YONkQdNV8Tx7LnDYTX2JTE9tb3gut0r4pNcUanS34WuC-45CGnJm9nubI7pKg,,&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBFnYN5R-SRTQR4zPSPlbKdkH6CEUjkSSDPwupWEMeQboI-iM13pQ6GdBnxtfWpvFJFsw-TvOcFaVvHPIj6_onWSvCAyfxVVnuoNdq2Z3W5xap4YonmcPHz2YONkQdNV8Tx7LnDYTX2JTE9tb3gut0r4pNcUanS34WuC-45CGnJm9nubI7pKg,,&q={searchTerms}
BHO: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-16] (Oracle Corporation)
BHO: ShowBarObj Class -> {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} -> C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll [2008-07-29] (Egis)
BHO: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll => Pas de fichier
BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-16] (Oracle Corporation)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29] (Egis Incorporated.)
Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll Pas de fichier
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544
FF SelectedSearchEngine: Bing Protect
FF Homepage: hxxps://www.google.fr/
FF Keyword.URL: hxxp://www.bing.com/search?FORM=INMODF&PC=IN01&q=
FF NetworkProxy: "autoconfig_url", "file://C:/Program Files/ChrisPC Free Anonymous Proxy/chrispc_proxy_fox.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1165635.dll [2012-07-05] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-16] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\Media Convert Master\codec\real\browser\plugins\nppl3260.dll [Pas de fichier]
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll [Pas de fichier]
FF Plugin: @sony.com/ReaderDesktop -> C:\Program Files\Sony\ReaderDesktop\npreaderdetectmoz.dll [2012-11-08] (Sony Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @acestream.net/acestreamplugin,version=3.0.12 -> C:\Users\Sergio\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @acestream.net/acestreamplugin,version=3.1.6 -> C:\Users\Sergio\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @eximion.com/KalydoPlayer -> C:\Users\Sergio\AppData\Roaming\Kalydo\KalydoPlayer\bin1\npkalydo.dll [2012-01-30] (Eximion B.V.)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @g2.com/iggweb3dupdater -> C:\Users\Sergio\AppData\Roaming\IGG\Web3D\1.0.0.37\NPIGGWeb3DUpdater.dll [2011-09-24] (IGG)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @g2.com/joyconnectshell -> C:\Users\Sergio\AppData\Roaming\IGG\Web3D\1.0.0.37\NPJoyConnectShell.dll [2011-09-24] (IGG)
FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Sergio\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdevalvr.dll [2012-02-02] (www.devalvr.com)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2014-10-29] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.)
FF SearchPlugin: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\searchplugins\Bing Protect.xml [2015-02-23]
FF SearchPlugin: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\searchplugins\commentcamarchenet.xml [2015-11-12]
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\findit.xml [2016-05-31]
FF Extension: AS Magic Player - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\extensions\magicplayer_unlisted@acestream.org [2016-03-31]
FF Extension: Google Translator for Firefox - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\extensions\translator@zoli.bod.xpi [2016-04-27]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\Extensions\2020Player_IKEA@2020Technologies.com [2014-03-15] [non signé]
FF Extension: MEGA - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\Extensions\firefox@mega.co.nz.xpi [2016-05-31]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2015-06-03] [non signé]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF => non trouvé(e)
FF HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Sergio\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: Ace Stream Web Extension - C:\Users\Sergio\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-04-03]
Chrome:
=======
CHR dev: Chrome dev build détecté(e)! <======= ATTENTION
CHR HomePage: ChromeDefaultData -> hxxp://d391tbweljugwk.cloudfront.net/?ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm
CHR StartupUrls: ChromeDefaultData -> "hxxp://d391tbweljugwk.cloudfront.net/?ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://d391tbweljugwk.cloudfront.net/chrome.php?q={searchTerms}&ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm
CHR DefaultSearchKeyword: ChromeDefaultData -> yessearches
CHR Profile: C:\Users\Sergio\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pas de nom) - C:\Users\Sergio\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim [2016-06-01]
CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-08-19] () [Fichier non signé]
R2 IGBASVC; C:\Program Files\Acer Bio Protection\BASVC.exe [3450368 2009-06-18] (Egis Technology Inc.) [Fichier non signé]
R2 Lamzap; C:\ProgramData\\Lamzap\\Lamzap.exe [782848 2016-05-31] () [Fichier non signé]
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 o2flash; C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [Fichier non signé]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-10-17] ()
S3 Sony SCSI Helper Service; C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2012-10-23] (Sony Corporation) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 AdobeARMservice; "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
S3 TOSHIBA HDD SSD Alert Service; "C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe" [X]
S2 Vegeno; "C:\Users\Sergio\AppData\Roaming\OizeaToafb\Awufda.exe" -cms [X]
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [140800 2011-10-19] (Windows (R) Win 7 DDK provider)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [14920 2013-03-07] () [Fichier non signé]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9160 2013-03-07] () [Fichier non signé]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2008-03-12] () [Fichier non signé]
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [55848 2010-03-29] (Atheros Communications, Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42592 2016-05-17] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2016-05-31] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [95304 2011-11-10] (MotioninJoy)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18432 2011-08-02] (Apple Inc.) [Fichier non signé]
R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7522304 2011-10-31] (Intel Corporation)
S3 NPF; C:\Windows\System32\drivers\npf.sys [30336 2003-04-04] (Politecnico di Torino) [Fichier non signé]
R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-08-31] (Nuvoton Technology Corporation)
S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [328552 2011-07-06] (Realtek Semiconductor Corp.)
S3 RTL8187Se; C:\Windows\System32\DRIVERS\RTL8187Se.sys [359424 2009-07-14] (Realtek Semiconductor Corporation )
S3 winbondcir; C:\Windows\System32\DRIVERS\winbondcir.sys [43008 2007-03-28] (Winbond Electronics Corporation)
S1 DritekPortIO; \??\C:\Program Files\Launch Manager\DPortIO.sys [X]
S3 DrvSnSht; \??\C:\Program Files\R-Drive Image\DrvSnSht.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 R-ImageDisk; \??\C:\Program Files\R-Drive Image\R-ImageDisk.sys [X]
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 tapSF0901; system32\DRIVERS\tapSF0901.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Fichier non signé]
S3 USBCCID; system32\DRIVERS\usbccid.sys [X]
S3 vtany; \??\C:\Windows\vtany.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-06-01 13:38 - 2016-06-01 13:38 - 00027203 _____ C:\Users\Sergio\Desktop\FRST.txt
2016-06-01 13:37 - 2016-06-01 13:38 - 00000000 ____D C:\FRST
2016-06-01 13:37 - 2016-06-01 13:37 - 01734656 _____ (Farbar) C:\Users\Sergio\Desktop\FRST.exe
2016-06-01 13:23 - 2016-06-01 13:23 - 00000000 ____D C:\uninst
2016-06-01 13:22 - 2016-06-01 13:23 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\AceWebExtension
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Local\FB5A5D00-1464726207-11DC-BC29-00238BF55E58
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\ProgramData\Logic Handler
2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\ProgramData\CloudPrinter
2016-06-01 13:18 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\acestream
2016-06-01 13:18 - 2016-06-01 13:22 - 00000000 ____D C:\_acestream_cache_
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\.acestream
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Users\Sergio\AppData\LocalLow\.acestream
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\ProgramData\{f8df692d-9b61-87b3-f8df-f692d9b6a4b6}
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\ProgramData\{16afe74a-d7e1-1c2d-16af-fe74ad7e9d2b}
2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Program Files\CutTheePrice
2016-05-31 20:53 - 2016-05-31 20:53 - 00000000 ____D C:\Windows\system32\mirn
2016-05-31 20:49 - 2016-06-01 13:27 - 00000000 ____D C:\ProgramData\Lamzap
2016-05-31 20:49 - 2016-05-31 20:49 - 06859776 _____ C:\Users\Sergio\AppData\Roaming\agent.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 02279413 _____ C:\Users\Sergio\AppData\Roaming\SingTop.bin
2016-05-31 20:49 - 2016-05-31 20:49 - 01756999 _____ C:\Users\Sergio\AppData\Roaming\Top-Job.tst
2016-05-31 20:49 - 2016-05-31 20:49 - 00126464 _____ C:\Users\Sergio\AppData\Roaming\noah.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00126464 _____ C:\Users\Sergio\AppData\Roaming\lobby.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00072820 _____ C:\Users\Sergio\AppData\Roaming\StanTom.tst
2016-05-31 20:49 - 2016-05-31 20:49 - 00067776 _____ C:\Users\Sergio\AppData\Roaming\Config.xml
2016-05-31 20:49 - 2016-05-31 20:49 - 00054272 _____ C:\Users\Sergio\AppData\Roaming\ApplicationHosting.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00018432 _____ C:\Users\Sergio\AppData\Roaming\Main.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 00005568 _____ C:\Users\Sergio\AppData\Roaming\md.xml
2016-05-31 20:49 - 2016-05-31 20:49 - 00000000 ____D C:\ProgramData\Lamzaps
2016-05-31 20:49 - 2016-05-31 20:49 - 00000000 ____D C:\Program Files\Common Files\KinIt
2016-05-31 20:49 - 2016-05-31 20:00 - 00782848 _____ C:\Users\Sergio\AppData\Roaming\Top-Job.exe
2016-05-31 20:49 - 2016-05-31 20:00 - 00782848 _____ C:\Users\Sergio\AppData\Roaming\StanTom.exe
2016-05-31 20:48 - 2016-05-31 20:48 - 00848437 _____ C:\Users\Sergio\AppData\Roaming\Concof.bin
2016-05-31 20:47 - 2016-05-31 20:48 - 00018336 _____ C:\Users\Sergio\AppData\Roaming\InstallationConfiguration.xml
2016-05-31 20:47 - 2016-05-31 20:47 - 00128512 _____ C:\Users\Sergio\AppData\Roaming\Installer.dat
2016-05-31 20:19 - 2016-05-31 20:55 - 00000000 ____D C:\Program Files\mpck
2016-05-31 19:38 - 2016-05-31 20:55 - 00000000 ____D C:\Users\Sergio\AppData\LocalLow\Company
2016-05-31 19:37 - 2016-05-31 20:55 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Aowoa
2016-05-31 19:37 - 2016-05-31 20:55 - 00000000 ____D C:\Program Files\Noczojoum
2016-05-31 19:37 - 2016-05-31 20:43 - 00000000 ____D C:\Program Files\NoczojoumUn
2016-05-31 19:37 - 2016-05-31 19:37 - 00000000 ____D C:\Users\Sergio\AppData\Local\Tempfolder
2016-05-31 19:35 - 2016-05-31 20:43 - 00000000 ____D C:\Program Files\Atuqoiedtharech
2016-05-31 19:35 - 2016-05-31 19:36 - 00000000 ____D C:\Program Files\Lipothersaph
2016-05-31 19:35 - 2016-05-31 19:36 - 00000000 ____D C:\Program Files\Cloweryvarogh
2016-05-31 19:35 - 2016-05-31 19:32 - 00001015 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-05-31 09:06 - 2016-05-31 19:29 - 00000000 ____D C:\Users\Sergio\Documents\MEGAsync Downloads
2016-05-31 09:05 - 2016-05-31 20:50 - 00001074 _____ C:\Users\Sergio\Desktop\MEGAsync.lnk
2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Local\MEGAsync
2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Local\Mega Limited
2016-05-31 08:57 - 2016-05-31 19:35 - 122159104 _____ C:\Users\Sergio\Desktop\Eu1GBWest9456243.rar
2016-05-28 14:03 - 2016-05-31 20:50 - 00001951 _____ C:\Users\Sergio\Desktop\Ace Stream Media Center.lnk
2016-05-22 12:08 - 2016-05-22 12:30 - 00000600 _____ C:\Users\Sergio\AppData\Local\PUTTY.RND
2016-05-17 09:41 - 2016-05-17 09:42 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-05-17 09:41 - 2016-05-17 09:41 - 00042592 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys
2016-05-17 09:39 - 2016-05-17 09:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SixaxisPairTool
2016-05-17 09:39 - 2016-05-17 09:39 - 00000000 ____D C:\Program Files\SixaxisPairTool
2016-05-17 09:39 - 2012-01-17 09:40 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll
2016-05-12 11:53 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-12 11:53 - 2016-04-09 08:54 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-12 11:53 - 2016-04-09 07:40 - 02397696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-12 11:53 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-12 11:53 - 2016-04-06 12:36 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-05-12 11:53 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-05-12 11:52 - 2016-04-23 18:24 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-12 11:52 - 2016-04-23 06:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-05-12 11:52 - 2016-04-23 06:20 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-05-12 11:52 - 2016-04-23 06:11 - 20350464 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-12 11:52 - 2016-04-23 06:08 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-12 11:52 - 2016-04-23 06:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-05-12 11:52 - 2016-04-23 06:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-05-12 11:52 - 2016-04-23 06:07 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-05-12 11:52 - 2016-04-23 06:07 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-05-12 11:52 - 2016-04-23 06:04 - 02285568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-12 11:52 - 2016-04-23 06:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-05-12 11:52 - 2016-04-23 06:01 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-05-12 11:52 - 2016-04-23 05:59 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-05-12 11:52 - 2016-04-23 05:58 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-12 11:52 - 2016-04-23 05:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-05-12 11:52 - 2016-04-23 05:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-05-12 11:52 - 2016-04-23 05:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-05-12 11:52 - 2016-04-23 05:53 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-12 11:52 - 2016-04-23 05:50 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-05-12 11:52 - 2016-04-23 05:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-12 11:52 - 2016-04-23 05:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-05-12 11:52 - 2016-04-23 05:43 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-05-12 11:52 - 2016-04-23 05:41 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-05-12 11:52 - 2016-04-23 05:40 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-05-12 11:52 - 2016-04-23 05:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-05-12 11:52 - 2016-04-23 05:36 - 04611072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-12 11:52 - 2016-04-23 05:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-12 11:52 - 2016-04-23 05:31 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-12 11:52 - 2016-04-23 05:31 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-12 11:52 - 2016-04-23 05:30 - 02056192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-12 11:52 - 2016-04-23 05:30 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-05-12 11:52 - 2016-04-23 05:26 - 13811200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-12 11:52 - 2016-04-23 05:12 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-12 11:52 - 2016-04-23 05:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-12 11:52 - 2016-04-23 05:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-12 11:52 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-05-12 11:52 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-12 11:52 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-12 11:52 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-05-12 11:52 - 2016-04-09 08:59 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-05-12 11:52 - 2016-04-09 08:59 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-05-12 11:52 - 2016-04-09 08:57 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-05-12 11:52 - 2016-04-09 08:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-05-12 11:52 - 2016-04-09 07:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-05-12 11:52 - 2016-04-09 07:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-05-12 11:52 - 2016-04-09 07:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-05-12 11:52 - 2016-04-09 07:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-05-12 11:52 - 2016-04-09 07:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-05-12 11:52 - 2016-04-09 07:40 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-05-12 11:52 - 2016-04-09 07:38 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-12 11:52 - 2016-04-09 07:38 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-12 11:52 - 2016-04-09 07:38 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-12 11:52 - 2016-04-09 07:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-05-12 11:52 - 2016-04-09 07:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-05-12 11:52 - 2016-04-09 07:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-05-12 11:52 - 2016-04-09 07:37 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-06-01 13:32 - 2009-09-10 07:28 - 01623488 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-01 13:32 - 2009-07-14 10:39 - 00730820 _____ C:\Windows\system32\perfh00C.dat
2016-06-01 13:32 - 2009-07-14 10:39 - 00142624 _____ C:\Windows\system32\perfc00C.dat
2016-06-01 13:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-06-01 13:26 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-01 13:18 - 2014-11-16 22:09 - 00000000 ____D C:\AdwCleaner
2016-05-31 21:26 - 2015-06-29 11:06 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-31 21:25 - 2009-07-14 06:34 - 00025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-31 21:25 - 2009-07-14 06:34 - 00025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-31 21:23 - 2012-10-02 12:04 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Spotify
2016-05-31 21:23 - 2012-03-16 11:05 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Skype
2016-05-31 21:21 - 2012-10-02 12:04 - 00000000 ____D C:\Users\Sergio\AppData\Local\Spotify
2016-05-31 21:21 - 2012-01-12 12:39 - 00000000 ____D C:\Users\Sergio\Tracing
2016-05-31 20:55 - 2012-01-08 16:43 - 00000000 ____D C:\Windows\OemDrv
2016-05-31 20:52 - 2015-06-27 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-05-31 20:51 - 2015-06-18 14:17 - 00002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk
2016-05-31 20:51 - 2013-10-09 09:59 - 00002859 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk
2016-05-31 20:51 - 2012-10-26 08:48 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-05-31 20:51 - 2012-10-02 12:04 - 00001811 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-05-31 20:51 - 2012-01-31 00:58 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-05-31 20:51 - 2012-01-23 21:34 - 00001816 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2016-05-31 20:51 - 2012-01-12 12:36 - 00000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-31 20:51 - 2012-01-08 18:00 - 00001129 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-05-31 20:51 - 2009-09-10 07:57 - 00002571 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visionneuse Microsoft Office PowerPoint 2007.lnk
2016-05-31 20:51 - 2009-09-10 07:57 - 00001108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lanceur de tâches Microsoft Works.lnk
2016-05-31 20:51 - 2009-09-10 07:17 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-05-31 20:51 - 2009-09-10 07:17 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-05-31 20:51 - 2009-07-14 06:46 - 00001491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-05-31 20:51 - 2009-07-14 06:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-05-31 20:51 - 2009-07-14 06:42 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-05-31 20:51 - 2009-07-14 06:42 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-05-31 20:51 - 2009-07-14 06:42 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-05-31 20:51 - 2009-07-14 06:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-05-31 20:50 - 2016-03-31 13:51 - 00001754 _____ C:\Users\Sergio\Desktop\Kodi.lnk
2016-05-31 20:50 - 2015-08-26 09:05 - 00002685 _____ C:\Users\Public\Desktop\Skype.lnk
2016-05-31 20:50 - 2015-06-29 11:06 - 00001031 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-31 20:50 - 2015-06-27 11:31 - 00001720 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-05-31 20:50 - 2015-06-19 16:18 - 00001060 _____ C:\Users\Public\Desktop\Tomtomax Maxi-Box.lnk
2016-05-31 20:50 - 2015-06-12 12:31 - 00000898 _____ C:\Users\Public\Desktop\Minecraft.lnk
2016-05-31 20:50 - 2015-05-03 20:49 - 00000995 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-05-31 20:50 - 2015-04-26 19:31 - 00000920 _____ C:\Users\Sergio\Desktop\SopCast.lnk
2016-05-31 20:50 - 2015-04-26 18:29 - 00001935 _____ C:\Users\Sergio\Desktop\Ace Player.lnk
2016-05-31 20:50 - 2015-04-11 09:25 - 00000984 _____ C:\Users\Sergio\Desktop\iOSinstaller.lnk
2016-05-31 20:50 - 2015-03-04 16:00 - 00000846 _____ C:\Users\Sergio\Desktop\ZHPCleaner.lnk
2016-05-31 20:50 - 2015-02-23 19:54 - 00001037 _____ C:\Users\Public\Desktop\SUPER ©.lnk
2016-05-31 20:50 - 2015-02-20 13:51 - 00002094 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-31 20:50 - 2014-12-04 11:26 - 00000867 _____ C:\Users\Sergio\Desktop\µTorrent.lnk
2016-05-31 20:50 - 2014-12-04 11:26 - 00000847 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-05-31 20:50 - 2014-10-29 13:42 - 00001782 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2016-05-31 20:50 - 2013-10-07 11:39 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-05-31 20:50 - 2013-04-02 13:25 - 00000908 _____ C:\Users\Public\Desktop\WinSCP.lnk
2016-05-31 20:50 - 2012-12-25 20:36 - 00001990 _____ C:\Users\Public\Desktop\Reader for PC.lnk
2016-05-31 20:50 - 2012-10-26 08:48 - 00001956 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2016-05-31 20:50 - 2012-10-02 12:04 - 00001825 _____ C:\Users\Sergio\Desktop\Spotify.lnk
2016-05-31 20:50 - 2012-09-02 14:45 - 00000860 _____ C:\Users\Sergio\Desktop\XnView.lnk
2016-05-31 20:50 - 2012-03-02 09:56 - 00000960 _____ C:\Users\Public\Desktop\PDFCreator.lnk
2016-05-31 20:50 - 2012-01-23 21:34 - 00001870 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2016-05-31 20:50 - 2012-01-12 12:36 - 00000978 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-05-31 20:50 - 2012-01-10 10:27 - 00001908 _____ C:\Users\Public\Desktop\Empowering Technology.lnk
2016-05-31 20:50 - 2009-09-10 07:48 - 00002036 _____ C:\Users\Public\Desktop\Prêt pour les appels voix et vidéo Skype.lnk
2016-05-31 20:41 - 2012-09-12 17:36 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3851689551-3125411691-1771927614-1000UA.job
2016-05-31 20:15 - 2012-04-12 17:18 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-31 19:18 - 2012-09-12 17:36 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3851689551-3125411691-1771927614-1000Core.job
2016-05-31 19:06 - 2015-06-28 09:10 - 00000386 _____ C:\Windows\Tasks\PetGuides.job
2016-05-31 13:36 - 2016-03-31 13:24 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Kodi
2016-05-31 13:28 - 2013-02-06 20:51 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\vlc
2016-05-31 09:08 - 2009-09-10 07:13 - 00000000 ____D C:\Windows\Panther
2016-05-27 12:26 - 2016-02-13 15:02 - 00000000 ___HD C:\$WINDOWS.~BT
2016-05-26 12:47 - 2015-03-29 16:37 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-17 13:58 - 2016-03-11 09:47 - 00000000 ____D C:\Windows\rescache
2016-05-17 09:41 - 2009-07-14 04:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-05-17 09:39 - 2014-04-16 16:39 - 00000000 ____D C:\ProgramData\Package Cache
2016-05-15 19:55 - 2009-07-14 06:33 - 00453520 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-15 19:52 - 2014-12-11 16:46 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-15 19:52 - 2009-07-14 11:01 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-13 12:15 - 2012-04-12 17:18 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-05-13 12:15 - 2012-01-08 18:29 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-05-13 12:14 - 2013-05-23 12:57 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\uTorrent
2016-05-13 09:28 - 2013-09-03 19:44 - 00000000 ____D C:\Windows\system32\MRT
2016-05-13 09:07 - 2012-01-11 11:30 - 136686448 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-04 21:04 - 2015-04-09 16:18 - 00005699 ____H C:\Users\Sergio\.swfinfo
==================== Fichiers à la racine de certains dossiers =======
2016-05-31 20:49 - 2016-05-31 20:49 - 6859776 _____ () C:\Users\Sergio\AppData\Roaming\agent.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0054272 _____ () C:\Users\Sergio\AppData\Roaming\ApplicationHosting.dat
2016-05-31 20:48 - 2016-05-31 20:48 - 0848437 _____ () C:\Users\Sergio\AppData\Roaming\Concof.bin
2016-05-31 20:49 - 2016-05-31 20:49 - 0067776 _____ () C:\Users\Sergio\AppData\Roaming\Config.xml
2016-05-31 20:47 - 2016-05-31 20:48 - 0018336 _____ () C:\Users\Sergio\AppData\Roaming\InstallationConfiguration.xml
2016-05-31 20:47 - 2016-05-31 20:47 - 0128512 _____ () C:\Users\Sergio\AppData\Roaming\Installer.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0126464 _____ () C:\Users\Sergio\AppData\Roaming\lobby.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0018432 _____ () C:\Users\Sergio\AppData\Roaming\Main.dat
2016-05-31 20:49 - 2016-05-31 20:49 - 0005568 _____ () C:\Users\Sergio\AppData\Roaming\md.xml
2016-05-31 20:49 - 2016-05-31 20:49 - 0126464 _____ () C:\Users\Sergio\AppData\Roaming\noah.dat
2013-10-14 19:43 - 2013-10-14 19:43 - 0138056 _____ () C:\Users\Sergio\AppData\Roaming\PnkBstrK.sys
2016-05-31 20:49 - 2016-05-31 20:49 - 2279413 _____ () C:\Users\Sergio\AppData\Roaming\SingTop.bin
2016-05-31 20:49 - 2016-05-31 20:00 - 0782848 _____ () C:\Users\Sergio\AppData\Roaming\StanTom.exe
2016-05-31 20:49 - 2016-05-31 20:49 - 0072820 _____ () C:\Users\Sergio\AppData\Roaming\StanTom.tst
2016-05-31 20:49 - 2016-05-31 20:00 - 0782848 _____ () C:\Users\Sergio\AppData\Roaming\Top-Job.exe
2016-05-31 20:49 - 2016-05-31 20:49 - 1756999 _____ () C:\Users\Sergio\AppData\Roaming\Top-Job.tst
2016-05-31 20:49 - 2016-05-31 20:49 - 0032038 _____ () C:\Users\Sergio\AppData\Roaming\uninstall_temp.ico
2013-04-02 13:30 - 2014-12-05 17:10 - 0000600 _____ () C:\Users\Sergio\AppData\Roaming\winscp.rnd
2012-01-14 14:12 - 2016-04-29 11:00 - 0001456 _____ () C:\Users\Sergio\AppData\Local\Adobe Enregistrer pour le Web 11.0 Prefs
2012-01-10 10:47 - 2012-01-10 10:48 - 0095506 _____ () C:\Users\Sergio\AppData\Local\edsinstaller.txt-20120110.log
2015-02-23 21:10 - 2015-02-23 21:10 - 0628496 _____ (CMI Limited) C:\Users\Sergio\AppData\Local\nst6550.tmp
2016-05-22 12:08 - 2016-05-22 12:30 - 0000600 _____ () C:\Users\Sergio\AppData\Local\PUTTY.RND
2015-02-23 22:18 - 2015-02-24 18:59 - 0000085 ___SH () C:\ProgramData\.zreglib
Certains fichiers dans TEMP:
====================
C:\Users\Sergio\AppData\Local\Temp\5F84.tmp.exe
C:\Users\Sergio\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbtjjas.dll
C:\Users\Sergio\AppData\Local\Temp\installer_x64.exe
C:\Users\Sergio\AppData\Local\Temp\installer_x86.exe
C:\Users\Sergio\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Sergio\AppData\Local\Temp\Quarantine.exe
C:\Users\Sergio\AppData\Local\Temp\RO2SMWW9WK.exe
C:\Users\Sergio\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Sergio\AppData\Local\Temp\tasklisten.exe
C:\Users\Sergio\AppData\Local\Temp\uninstall.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-05-28 09:08
==================== Fin de FRST.txt ============================