Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:12-08-2015 Exécuté par tasspat (administrateur) sur TASSPAT-PC (13-08-2015 17:06:37) Exécuté depuis C:\Users\tasspat\Downloads Profils chargés: tasspat & UpdatusUser (Profils disponibles: tasspat & UpdatusUser) Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Innovative Solutions) C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe (SFR) C:\Program Files (x86)\SFR\Widget neufbox\9widget.exe (Nenad Hrg (SoftwareOK.com)) C:\Users\tasspat\Downloads\DontSleep.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe () C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTunerService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe () C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallDisplay_1.exe () C:\Users\tasspat\AppData\Roaming\IObit\IObit Uninstaller\PPUninstallertemp.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe ==================== Registre (Tous(tes)) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-08-06] (AVAST Software) HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [509216 2015-07-28] (QFX Software Corporation) HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5889824 2015-07-28] (IObit) HKU\S-1-5-21-3265541430-358929532-2367108362-1001\...\Run: [Widget Neuf] => C:\Program Files (x86)\SFR\Widget neufbox\9widget.exe [705856 2009-10-20] (SFR) HKU\S-1-5-21-3265541430-358929532-2367108362-1001\...\Run: [DontSleep] => C:\Users\tasspat\Downloads\DontSleep.exe [88576 2014-06-14] (Nenad Hrg (SoftwareOK.com)) HKU\S-1-5-18\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-18\...\Run: [Advanced SystemCare 8] => "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-02-17] (Microsoft Corporation) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-06] (AVAST Software) GroupPolicy: Stratégie de groupe sur Chrome détecté(e) <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION CHR HKU\S-1-5-21-3265541430-358929532-2367108362-1001\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-3265541430-358929532-2367108362-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} HKU\S-1-5-21-3265541430-358929532-2367108362-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sfr.fr/kit/adsl/ HKU\S-1-5-21-3265541430-358929532-2367108362-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp HKU\S-1-5-21-3265541430-358929532-2367108362-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.sfr.fr/kit/adsl/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3265541430-358929532-2367108362-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll Pas de fichier BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-06] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) BHO-x32: Wondershare Video Converter Ultimate -> {65DEE40A-3E93-4cae-9F98-B8E06DCEE2BF} -> Pas de fichier BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-06] (AVAST Software) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Handler: WSIEChrome - No CLSID Value Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0FD290D7-DCE6-457F-9128-E3587699E956}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9FA96300-CFBD-4BCF-9BC7-AB6556D2A9D5}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\tasspat\AppData\Roaming\Mozilla\Firefox\Profiles\k662sapr.default-1439446472986 FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2014-02-12] (Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-07-11] (Google, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2014-02-12] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-07] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-07] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npLegitCheckPlugin.dll [2009-06-25] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Extension: Adblock Plus - C:\Users\tasspat\AppData\Roaming\Mozilla\Firefox\Profiles\k662sapr.default-1439446472986\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-08-13] FF Extension: Pas de nom - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-08-08] FF HKLM-x32\...\Firefox\Extensions: [{8D150B8F-EFE8-45a3-A4A3-053020F48FAC}] - C:\Program Files (x86)\Wondershare\Video Converter Ultimate\SVRFirefoxExt FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-01] FF HKU\S-1-5-21-3265541430-358929532-2367108362-1001\...\Firefox\Extensions: [{8D150B8F-EFE8-45a3-A4A3-053020F48FAC}] - C:\Program Files (x86)\Wondershare\Video Converter Ultimate\SVRFirefoxExt Chrome: ======= CHR Profile: C:\Users\tasspat\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Cast) - C:\Users\tasspat\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-06-05] CHR Extension: (AdBlock) - C:\Users\tasspat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-06-17] CHR Extension: (Avast Online Security) - C:\Users\tasspat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-07-20] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\tasspat\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-21] CHR Extension: (Bing Homepage & Search Engine) - C:\Users\tasspat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfedoihopcjdfjihhhojdclnfdgomdho [2015-05-06] CHR Extension: (Chrome Web Store Payments) - C:\Users\tasspat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-11] CHR HKU\S-1-5-21-3265541430-358929532-2367108362-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nfedoihopcjdfjihhhojdclnfdgomdho] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-20] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-06] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-08-06] (AVAST Software) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation) R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [882464 2015-07-17] (IObit) S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-02] (IObit) S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation) S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTunerService.exe [223600 2015-01-12] () ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-06] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-08-06] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-06] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [454016 2015-08-06] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-06] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-06] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048856 2015-08-06] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-06] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-06] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-06] (AVAST Software) R3 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2015-03-25] (IObit) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-08-04] (Glarysoft Ltd) R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [224208 2015-06-03] (QFX Software Corporation) R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTuner64.sys [14320 2014-03-20] () S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2015-07-26] (Malwarebytes Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation) R0 nvamacpi; C:\Windows\System32\DRIVERS\NVAMACPI.sys [28192 2009-07-17] (NVIDIA Corporation) R3 NW1950; C:\Windows\System32\DRIVERS\NW1950.sys [25080 2009-10-29] () R3 NxpCap64; C:\Windows\System32\DRIVERS\NxpCap64.sys [1888992 2009-12-22] (NXP Semiconductors Germany GmbH) R3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2015-03-25] (IObit.com) R3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2015-03-25] (IObit.com) S4 zpoeqjzy; C:\Windows\System32\Drivers\zpoeqjzy.sys [426848 2014-10-01] (AVAST Software) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-08-13 17:06 - 2015-08-13 17:07 - 00017140 _____ C:\Users\tasspat\Downloads\FRST.txt 2015-08-13 17:06 - 2015-08-13 17:06 - 00000000 ____D C:\FRST 2015-08-13 17:05 - 2015-08-13 17:05 - 02173952 _____ (Farbar) C:\Users\tasspat\Downloads\FRST64.exe 2015-08-13 15:10 - 2015-08-13 15:37 - 00000000 ____D C:\Users\tasspat\Downloads\Zone-Telechargement.com.THE.AMRC.S01 2015-08-13 14:19 - 2015-08-13 15:08 - 918956932 _____ C:\Users\tasspat\Downloads\Zone-Telechargement.com.THE.AMRC.S01.rar 2015-08-13 12:44 - 2015-08-13 12:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter 2015-08-13 08:14 - 2015-08-13 08:14 - 00000000 ____D C:\Users\tasspat\Documents\Anciennes données de Firefox 2015-08-12 20:29 - 2015-08-12 20:30 - 00178612 _____ C:\Users\tasspat\Downloads\FixWin.zip 2015-08-12 20:18 - 2015-08-06 20:52 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-08-12 09:20 - 2015-08-12 20:15 - 00000000 ____D C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc 2015-08-12 09:20 - 2015-08-12 20:13 - 00000000 ____D C:\Program Files (x86)\Great Find 2015-08-12 09:19 - 2015-08-12 09:20 - 00000000 ____D C:\ProgramData\Innovative Solutions 2015-08-11 10:45 - 2010-03-22 23:31 - 00000000 ____D C:\Users\tasspat\Downloads\FixWin 2015-08-11 10:07 - 2015-08-11 10:07 - 00000000 ____D C:\ProgramData\Wondershare 2015-08-10 20:47 - 2015-08-10 20:47 - 00000000 ____D C:\Users\tasspat\AppData\Local\Lavasoft 2015-08-10 20:47 - 2015-08-10 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2015-08-10 20:47 - 2015-08-10 20:47 - 00000000 ____D C:\Program Files (x86)\Lavasoft 2015-08-10 15:50 - 2015-08-10 15:50 - 00000000 ____D C:\$WINDOWS.~BT 2015-08-10 12:23 - 2015-08-10 12:31 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\concept design 2015-08-09 13:07 - 2015-08-09 13:07 - 05481336 _____ (Avast Software s.r.o.) C:\Users\tasspat\Downloads\avast_free_antivirus_setup_online_01net.exe 2015-08-08 11:20 - 2015-08-13 08:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-08-07 16:59 - 2015-08-07 16:59 - 00000000 ____D C:\Disque amovible 2015-08-06 21:03 - 2015-08-13 17:05 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-08-06 21:03 - 2015-08-13 11:31 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-08-06 21:03 - 2015-08-07 10:10 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-08-06 21:03 - 2015-08-07 10:10 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-08-06 20:58 - 2015-08-06 20:58 - 00002322 _____ C:\Windows\PFRO.log 2015-08-06 20:55 - 2015-08-06 20:57 - 06103040 _____ C:\Program Files (x86)\GUTD7A9.tmp 2015-08-06 20:55 - 2015-08-06 20:55 - 00000000 ____D C:\Program Files (x86)\GUMD7A8.tmp 2015-08-06 20:53 - 2015-08-06 20:51 - 00028144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2015-08-06 20:52 - 2015-08-06 20:52 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-08-06 20:51 - 2015-08-06 20:51 - 00454016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys 2015-08-06 20:32 - 2015-07-20 15:58 - 01048856 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4A93.tmp 2015-08-06 20:32 - 2015-07-20 15:58 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4D37.tmp 2015-08-06 20:32 - 2015-07-20 15:58 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4DC4.tmp 2015-08-06 20:32 - 2015-07-20 15:58 - 00150160 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4EBF.tmp 2015-08-06 20:32 - 2015-07-20 15:58 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4B5F.tmp 2015-08-06 20:32 - 2015-07-20 15:58 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4C3B.tmp 2015-08-06 20:32 - 2015-07-20 15:58 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4CC9.tmp 2015-08-06 20:32 - 2015-07-20 15:58 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\asw4BCD.tmp 2015-08-06 16:12 - 2015-08-06 20:43 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-08-06 12:11 - 2015-08-06 12:11 - 00000000 _____ C:\autoexec.bat 2015-08-06 12:10 - 2015-08-06 14:19 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Enigma Software Group 2015-08-06 12:10 - 2015-08-06 12:10 - 00000000 ____D C:\sh4ldr 2015-08-04 20:16 - 2015-08-13 08:04 - 00001456 _____ C:\Windows\setupact.log 2015-08-04 20:16 - 2015-08-04 20:16 - 00000000 _____ C:\Windows\setuperr.log 2015-08-04 14:37 - 2015-08-04 14:37 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys 2015-08-04 14:37 - 2015-08-04 14:37 - 00003320 _____ C:\Windows\System32\Tasks\GlaryInitialize 5 2015-08-04 09:32 - 2015-08-04 09:32 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\WinPatrol 2015-08-03 20:11 - 2015-08-04 08:46 - 00000000 ____D C:\ProgramData\MFAData 2015-08-03 20:11 - 2015-08-03 20:11 - 00000000 ____D C:\Users\tasspat\AppData\Local\MFAData 2015-08-01 10:14 - 2015-08-01 10:14 - 00002608 _____ C:\Users\tasspat\Documents\cc_20150801_101445.reg 2015-08-01 10:13 - 2015-08-01 10:13 - 00021152 _____ C:\Users\tasspat\Documents\cc_20150801_101324.reg 2015-08-01 09:23 - 2015-08-01 09:23 - 00002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2015-08-01 09:08 - 2015-08-01 10:02 - 00000193 _____ C:\Windows\WORDPAD.INI 2015-08-01 08:57 - 2015-08-01 08:57 - 00003514 _____ C:\Windows\System32\Tasks\{AF650472-810B-44A8-9502-7FACEA2A23AB} 2015-08-01 08:56 - 2015-08-01 08:56 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Thinstall 2015-08-01 08:29 - 2015-07-25 20:07 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2015-08-01 08:29 - 2015-07-25 20:04 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-08-01 08:29 - 2015-07-25 20:04 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-08-01 08:29 - 2015-07-25 20:03 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-08-01 08:29 - 2015-07-25 20:03 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-08-01 08:29 - 2015-07-25 20:03 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-08-01 08:29 - 2015-07-25 20:03 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-08-01 08:29 - 2015-07-25 19:55 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-07-31 15:28 - 2015-07-31 15:28 - 00000000 _____ C:\Windows\SysWOW64\debug.log 2015-07-30 15:21 - 2015-08-12 20:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Window Registry Repair 2015-07-30 15:21 - 2015-08-12 20:13 - 00000000 ____D C:\Program Files (x86)\Free Window Registry Repair 2015-07-30 15:21 - 2015-07-30 19:46 - 00001035 _____ C:\Users\UpdatusUser\Desktop\Free Window Registry Repair.lnk 2015-07-30 15:21 - 2015-07-30 15:21 - 00805196 _____ C:\Users\tasspat\Downloads\RegpairSetup.exe 2015-07-29 16:08 - 2015-08-03 21:07 - 00000000 ____D C:\Program Files\Common Files\AV 2015-07-29 15:57 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe 2015-07-29 08:27 - 2015-07-29 08:27 - 00001552 _____ C:\Users\tasspat\Desktop\MEDIAPLAYER.lnk 2015-07-28 09:12 - 2015-07-28 09:12 - 00002228 _____ C:\Windows\system32\ASOROSet.bin 2015-07-28 09:12 - 2015-07-28 09:12 - 00000000 ____D C:\Windows\system32\config\RCCBakup 2015-07-28 09:07 - 2012-10-15 17:02 - 00019888 _____ (solvusoft) C:\Windows\system32\roboot64.exe 2015-07-28 09:05 - 2015-07-28 09:05 - 00221064 _____ (Auslogics) C:\Windows\Tasks\taskschedulerhelper.dll 2015-07-26 12:50 - 2015-07-26 12:50 - 00000000 ____D C:\Users\tasspat\Documents\Snapshot 2015-07-25 15:57 - 2015-07-26 08:59 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-07-25 15:39 - 2015-07-25 15:49 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Malwarebytes 2015-07-24 15:54 - 2015-08-12 20:06 - 00000000 ____D C:\Users\tasspat\AppData\Local\Innovative Solutions 2015-07-24 15:53 - 2015-08-12 20:04 - 00000000 ____D C:\Program Files (x86)\Innovative Solutions 2015-07-24 15:12 - 2015-07-24 15:15 - 00000000 ____D C:\Program Files (x86)\ZHPFix 2015-07-24 15:12 - 2015-07-24 15:12 - 00003156 _____ C:\Windows\System32\Tasks\{DA7D48F0-E0A1-493B-B4C0-B947354D94CD} 2015-07-24 15:05 - 2015-07-24 15:03 - 00221064 _____ (Auslogics) C:\Windows\system32\taskschedulerhelper.dll 2015-07-24 13:05 - 2015-07-15 05:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-07-24 13:05 - 2015-07-15 05:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-07-24 13:05 - 2015-07-15 05:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-07-24 13:05 - 2015-07-15 05:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-07-24 13:05 - 2015-07-15 04:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2015-07-24 13:05 - 2015-07-15 04:55 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-07-24 13:05 - 2015-07-15 04:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2015-07-24 13:05 - 2015-07-15 04:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2015-07-24 13:05 - 2015-07-15 03:59 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-07-24 13:05 - 2015-07-15 03:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-07-24 13:02 - 2015-08-13 17:05 - 00819998 _____ C:\Windows\WindowsUpdate.log 2015-07-22 20:26 - 2015-07-22 20:26 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup 2015-07-22 10:49 - 2015-07-22 10:57 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\2BrightSparks 2015-07-22 10:49 - 2015-07-22 10:49 - 00000000 ____D C:\Windows\System32\Tasks\2BrightSparks 2015-07-22 10:49 - 2015-07-22 10:49 - 00000000 ____D C:\Users\tasspat\AppData\Local\2BrightSparks 2015-07-22 10:49 - 2015-07-22 10:49 - 00000000 ____D C:\Program Files (x86)\2BrightSparks 2015-07-21 15:28 - 2015-07-24 15:54 - 00001529 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO 11.lnk 2015-07-20 13:03 - 2015-07-20 13:03 - 00003584 _____ C:\Users\tasspat\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-07-20 08:39 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2015-07-20 08:39 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2015-07-20 08:39 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-07-20 08:39 - 2015-07-01 22:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-07-20 08:39 - 2015-07-01 22:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-07-20 08:39 - 2015-07-01 22:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-07-20 08:39 - 2015-07-01 22:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-07-20 08:39 - 2015-07-01 22:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-07-20 08:39 - 2015-07-01 22:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-07-20 08:39 - 2015-07-01 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-07-20 08:39 - 2015-07-01 22:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-07-20 08:39 - 2015-07-01 22:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-07-20 08:39 - 2015-07-01 22:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-07-20 08:39 - 2015-07-01 22:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-07-20 08:39 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-07-20 08:39 - 2015-07-01 22:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-07-20 08:39 - 2015-07-01 22:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-07-20 08:39 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-07-20 08:39 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-07-20 08:39 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-07-20 08:39 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-07-20 08:39 - 2015-07-01 21:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-07-20 08:39 - 2015-07-01 21:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-07-20 08:39 - 2015-07-01 21:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-07-20 08:39 - 2015-06-25 10:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-07-20 08:39 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll 2015-07-20 08:39 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll 2015-07-20 08:38 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-07-20 08:38 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-07-20 08:38 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-07-20 08:38 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-07-20 08:38 - 2015-07-02 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-07-20 08:38 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-07-20 08:38 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-07-20 08:38 - 2015-07-02 22:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-07-20 08:38 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-07-20 08:38 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-07-20 08:38 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-07-20 08:38 - 2015-06-27 04:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-07-20 08:38 - 2015-06-27 04:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-07-20 08:38 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-07-20 08:38 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-07-20 08:38 - 2015-06-25 20:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-07-20 08:38 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-07-20 08:38 - 2015-06-20 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-07-20 08:38 - 2015-06-20 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-07-20 08:38 - 2015-06-20 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-07-20 08:38 - 2015-06-20 21:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-07-20 08:38 - 2015-06-20 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-07-20 08:38 - 2015-06-20 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-07-20 08:38 - 2015-06-20 21:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-07-20 08:38 - 2015-06-20 21:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-07-20 08:38 - 2015-06-20 21:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-07-20 08:38 - 2015-06-20 21:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-07-20 08:38 - 2015-06-20 21:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-07-20 08:38 - 2015-06-20 21:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-07-20 08:38 - 2015-06-20 21:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-07-20 08:38 - 2015-06-20 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-07-20 08:38 - 2015-06-20 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-07-20 08:38 - 2015-06-20 21:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-07-20 08:38 - 2015-06-20 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-07-20 08:38 - 2015-06-20 20:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-07-20 08:38 - 2015-06-20 20:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-07-20 08:38 - 2015-06-20 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-07-20 08:38 - 2015-06-20 20:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-07-20 08:38 - 2015-06-20 20:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-07-20 08:38 - 2015-06-20 20:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-07-20 08:38 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-07-20 08:38 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-07-20 08:38 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-07-20 08:38 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-07-20 08:38 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-07-20 08:38 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-07-20 08:38 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-07-20 08:38 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-07-20 08:38 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-07-20 08:38 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-07-20 08:38 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-07-20 08:38 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-07-20 08:38 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-07-20 08:38 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-07-20 08:38 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-07-20 08:38 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-07-20 08:38 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-07-20 08:38 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-07-20 08:38 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-07-20 08:37 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-07-20 08:37 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2015-07-20 08:37 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-07-20 08:37 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2015-07-20 08:37 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-07-20 08:37 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2015-07-20 08:37 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2015-07-20 08:37 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2015-07-20 08:37 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2015-07-20 08:37 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-07-20 08:37 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2015-07-20 08:37 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2015-07-20 08:37 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2015-07-20 08:37 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2015-07-20 08:37 - 2015-06-11 19:57 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2015-07-20 08:37 - 2015-06-11 19:57 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2015-07-20 08:37 - 2015-06-11 19:57 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2015-07-20 08:37 - 2015-06-11 19:56 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-07-20 08:37 - 2015-06-11 19:56 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2015-07-20 08:37 - 2015-06-11 19:56 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2015-07-20 08:37 - 2015-06-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2015-07-20 08:37 - 2015-06-09 20:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2015-07-20 08:37 - 2015-06-09 20:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2015-07-20 08:37 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2015-07-20 08:37 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2015-07-20 08:37 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2015-07-20 08:37 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2015-07-20 08:37 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2015-07-20 08:37 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2015-07-20 08:37 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2015-07-20 08:37 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2015-07-17 16:04 - 2015-07-17 16:04 - 02248704 _____ C:\Users\tasspat\Downloads\adwcleaner_4-208_fr_430277.exe 2015-07-17 15:38 - 2015-07-17 15:38 - 06565736 _____ (Piriform Ltd) C:\Users\tasspat\Downloads\ccsetup507.exe 2015-07-16 15:00 - 2015-08-12 20:13 - 00000000 ____D C:\Windows\System32\Tasks\Auslogics 2015-07-15 16:44 - 2015-07-15 16:44 - 00003158 _____ C:\Windows\System32\Tasks\{4D1FD562-5A65-484A-A357-216EB27E7BC3} 2015-07-15 16:35 - 2015-07-15 16:35 - 00000000 _____ C:\Windows\prleth.sys 2015-07-15 16:35 - 2015-07-15 16:35 - 00000000 _____ C:\Windows\hgfs.sys ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-08-13 17:05 - 2015-03-01 13:04 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3265541430-358929532-2367108362-1001UA1d0540f8c8df2e0.job 2015-08-13 17:05 - 2014-02-10 20:37 - 00000099 ____H C:\Users\tasspat\Downloads\DontSleep.ini 2015-08-13 15:46 - 2014-02-11 21:01 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\vlc 2015-08-13 15:26 - 2009-07-14 17:24 - 00838970 _____ C:\Windows\system32\perfh00C.dat 2015-08-13 15:26 - 2009-07-14 17:24 - 00182276 _____ C:\Windows\system32\perfc00C.dat 2015-08-13 15:26 - 2009-07-14 07:13 - 01863330 _____ C:\Windows\system32\PerfStringBackup.INI 2015-08-13 13:17 - 2014-02-11 13:04 - 00000000 ___HD C:\Users\tasspat\Desktop\Captvty 2015-08-13 13:13 - 2014-12-17 14:45 - 00000000 ____D C:\Program Files (x86)\IObit 2015-08-13 13:10 - 2014-09-22 16:25 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\IObit 2015-08-13 13:01 - 2014-10-25 16:27 - 00000000 ____D C:\ProgramData\IObit 2015-08-13 12:51 - 2014-06-10 15:29 - 00000000 ____D C:\Users\tasspat\alt.binaries.movies 2015-08-13 12:45 - 2014-10-25 16:28 - 00000000 ____D C:\ProgramData\ProductData 2015-08-13 09:21 - 2015-03-01 13:04 - 00001034 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3265541430-358929532-2367108362-1001Core1d0540f8b18df10.job 2015-08-13 08:31 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-08-13 08:31 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-08-13 08:17 - 2014-02-13 11:12 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-08-13 08:17 - 2014-02-13 11:12 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-08-13 08:14 - 2015-02-28 16:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-08-13 08:04 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-08-12 20:54 - 2015-05-20 13:39 - 00003462 _____ C:\Windows\System32\Tasks\UninstallMonitor 2015-08-12 20:19 - 2014-10-01 13:52 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2015-08-12 20:16 - 2015-05-19 07:22 - 02441216 ___SH C:\Users\tasspat\Desktop\Thumbs.db 2015-08-12 20:15 - 2014-02-10 16:52 - 00000000 ____D C:\Users\tasspat 2015-08-12 20:13 - 2015-06-12 10:02 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\RPEng 2015-08-12 20:13 - 2015-03-02 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-08-12 20:13 - 2015-03-02 18:08 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2015-08-12 20:13 - 2014-12-26 16:25 - 00000000 ____D C:\Program Files\CCleaner 2015-08-12 20:13 - 2014-12-17 14:46 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\ProductData 2015-08-12 20:13 - 2014-11-05 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-08-12 20:13 - 2014-07-02 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-08-12 20:13 - 2014-07-02 15:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-08-12 20:13 - 2014-07-02 15:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-08-12 20:13 - 2014-05-15 15:24 - 00000000 ____D C:\ProgramData\Wondershare Player 2015-08-12 20:13 - 2014-04-23 12:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO 2015-08-12 20:13 - 2014-02-11 09:22 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\QFX Software 2015-08-12 20:13 - 2014-02-11 09:22 - 00000000 ____D C:\ProgramData\QFX Software 2015-08-12 20:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2015-08-12 20:06 - 2014-03-01 16:35 - 00000000 ____D C:\ProgramData\Adobe 2015-08-12 16:26 - 2014-11-07 17:17 - 00000000 ___DC C:\Users\tasspat\AppData\Local\MigWiz 2015-08-11 13:33 - 2014-02-21 15:40 - 00000000 ____D C:\Users\tasspat\AppData\Local\QuickPar 2015-08-11 13:33 - 2014-02-10 19:42 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\GrabIt 2015-08-10 21:04 - 2014-08-27 12:52 - 00000000 ____D C:\Users\tasspat\AppData\Local\Adobe 2015-08-06 21:03 - 2014-02-10 17:26 - 00000000 ____D C:\Program Files (x86)\Google 2015-08-06 21:02 - 2014-07-19 12:47 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\GlarySoft 2015-08-06 20:52 - 2014-10-01 13:51 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2015-08-06 20:52 - 2014-10-01 13:51 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2015-08-06 20:52 - 2014-10-01 13:51 - 00150672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-08-06 20:52 - 2014-10-01 13:51 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-08-06 20:52 - 2014-10-01 13:51 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-08-06 20:52 - 2014-10-01 13:51 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2015-08-06 20:52 - 2014-10-01 13:51 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2015-08-06 20:51 - 2014-10-01 13:51 - 01048856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2015-08-06 20:43 - 2014-08-11 12:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2015-08-06 20:43 - 2014-06-19 09:46 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-08-06 20:43 - 2014-06-19 09:46 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2015-08-06 20:43 - 2014-02-11 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-08-06 20:43 - 2014-02-11 11:03 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-08-06 20:43 - 2014-02-10 20:42 - 00000000 ____D C:\Program Files (x86)\KeyScrambler 2015-08-06 20:43 - 2014-02-10 19:44 - 00000000 ____D C:\Program Files\WinRAR 2015-08-06 20:43 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2015-08-06 20:43 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Portable Devices 2015-08-06 20:43 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-08-06 20:43 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2015-08-06 20:42 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2015-08-06 20:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Speech 2015-08-06 20:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing 2015-08-06 20:26 - 2014-02-10 17:35 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Mozilla 2015-08-06 20:26 - 2009-07-14 17:35 - 00000000 ___RD C:\Users\Public\Recorded TV 2015-08-06 08:45 - 2014-12-18 14:03 - 00000000 ____D C:\ProgramData\GlarySoft 2015-08-04 20:17 - 2009-07-14 06:54 - 00000749 ___RH C:\Windows\WindowsShell.Manifest 2015-08-04 12:17 - 2015-03-03 13:42 - 00003952 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{71EE063B-C923-4E49-8308-B444533469E3} 2015-08-04 08:47 - 2009-07-14 07:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-08-04 08:47 - 2009-07-14 07:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU(49).TXT 2015-08-04 08:47 - 2009-07-14 07:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU(24).TXT 2015-08-03 20:17 - 2014-04-09 13:59 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\TuneUp Software 2015-08-01 08:32 - 2014-05-06 22:03 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-07-31 15:28 - 2014-02-13 11:12 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\Adobe 2015-07-31 11:54 - 2014-02-10 20:42 - 01555824 _____ C:\Users\tasspat\Downloads\KeyScrambler_Setup.exe 2015-07-31 11:54 - 2014-02-10 20:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler 2015-07-29 19:22 - 2015-01-04 12:15 - 00000000 ____D C:\Program Files (x86)\Auslogics 2015-07-29 16:35 - 2014-05-13 11:51 - 00000085 _____ C:\Windows\WININIT.INI 2015-07-29 16:10 - 2015-05-10 17:36 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy 2015-07-29 08:27 - 2015-03-02 13:14 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-07-27 15:40 - 2014-02-10 19:49 - 00000000 ____D C:\ProgramData\TEMP 2015-07-25 15:39 - 2014-11-08 12:43 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-07-24 13:08 - 2009-07-14 06:45 - 00280296 _____ C:\Windows\system32\FNTCACHE.DAT 2015-07-24 08:45 - 2013-11-11 11:27 - 00000000 ___DC C:\AdwCleaner 2015-07-23 17:29 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp 2015-07-22 20:26 - 2014-02-10 17:25 - 00000000 ____D C:\Users\tasspat\AppData\Local\Google 2015-07-22 15:24 - 2014-06-17 13:42 - 00000000 ____D C:\Windows\System32\Tasks\Games 2015-07-20 15:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\IME 2015-07-20 15:17 - 2015-02-27 20:33 - 00000000 ____D C:\Users\tasspat\AppData\Roaming\ZHP 2015-07-20 13:05 - 2014-06-16 12:53 - 00000000 ____D C:\Program Files (x86)\Kate's Video Toolkit 7.0 2015-07-20 08:57 - 2014-12-10 12:07 - 00000000 ____D C:\Windows\system32\appraiser 2015-07-20 08:48 - 2014-02-11 10:52 - 00000000 ____D C:\Windows\system32\MRT 2015-07-19 10:59 - 2014-03-01 16:36 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-07-19 10:58 - 2015-02-28 17:27 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-07-19 09:13 - 2014-02-14 12:55 - 00000000 ____D C:\Users\tasspat\Mes photos 2015-07-17 15:49 - 2014-05-15 12:55 - 00000000 ____D C:\Users\tasspat\Downloads\XMediaRecode3187 2015-07-16 09:16 - 2015-03-01 13:04 - 00004064 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3265541430-358929532-2367108362-1001UA1d0540f8c8df2e0 2015-07-16 09:16 - 2015-03-01 13:04 - 00003668 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3265541430-358929532-2367108362-1001Core1d0540f8b18df10 2015-07-15 17:24 - 2015-05-10 15:32 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-07-15 17:01 - 2014-05-30 13:59 - 00002257 _____ C:\Users\Public\Desktop\GOOGLE.lnk 2015-07-15 17:01 - 2014-05-30 13:36 - 00000953 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-07-15 17:01 - 2014-02-10 16:54 - 00001321 _____ C:\Users\tasspat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-07-15 16:43 - 2014-03-06 12:12 - 00004153 _____ C:\Windows\SysWOW64\${LOGFILE} ==================== Fichiers à la racine de certains dossiers ======= 2015-02-21 12:32 - 2015-02-21 12:32 - 6103040 _____ () C:\Program Files (x86)\GUT257B.tmp 2015-08-06 20:55 - 2015-08-06 20:57 - 6103040 _____ () C:\Program Files (x86)\GUTD7A9.tmp 2014-12-20 13:43 - 2014-12-20 13:43 - 0000000 _____ () C:\Program Files (x86)\hmk-config.log 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\tasspat\AppData\Roaming\a1afeAA 2014-02-25 11:11 - 2014-02-25 11:12 - 0000010 _____ () C:\Users\tasspat\AppData\Roaming\iColor.ini 2014-07-11 15:26 - 2014-07-11 15:28 - 0007859 _____ () C:\Users\tasspat\AppData\Roaming\pcouffin.cat 2014-07-11 15:26 - 2014-07-11 15:28 - 0001167 _____ () C:\Users\tasspat\AppData\Roaming\pcouffin.inf 2014-07-11 15:26 - 2014-07-11 15:28 - 0000055 _____ () C:\Users\tasspat\AppData\Roaming\pcouffin.log 2014-07-11 15:26 - 2014-07-11 15:28 - 0082816 _____ (VSO Software) C:\Users\tasspat\AppData\Roaming\pcouffin.sys 2015-01-07 17:14 - 2015-01-07 17:14 - 0000830 _____ () C:\Users\tasspat\AppData\Roaming\Sample.lnk 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\tasspat\AppData\Roaming\TKeBHnNqqrjBnmvEz3DuFojwf95 2014-02-12 09:09 - 2014-06-01 14:28 - 0000092 _____ () C:\Users\tasspat\AppData\Roaming\WB.CFG 2015-06-07 16:25 - 2015-06-07 16:25 - 0000038 ___SH () C:\Users\tasspat\AppData\Local\69ff07055291669bb2b218.72821112 2012-05-03 13:12 - 2012-05-03 13:12 - 0000532 _____ () C:\Users\tasspat\AppData\Local\datos.txt 2015-07-20 13:03 - 2015-07-20 13:03 - 0003584 _____ () C:\Users\tasspat\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-05-14 15:14 - 2014-05-14 15:14 - 0301488 _____ (VuuPC Limited) C:\Users\tasspat\AppData\Local\nsr19C2.tmp 2014-10-25 16:04 - 2014-10-25 16:04 - 0000017 _____ () C:\Users\tasspat\AppData\Local\resmon.resmoncfg 2015-06-14 14:04 - 2015-06-14 14:04 - 0000011 _____ () C:\ProgramData\.tv5 2014-10-25 16:37 - 2014-10-25 16:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2015-08-02 18:45 ==================== Fin de journal ============================