Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:21-10-2015 01 Exécuté par Giaeme (administrateur) sur GIAEME-PC (23-10-2015 13:05:05) Exécuté depuis C:\Users\Giaeme\Desktop Profils chargés: Giaeme (Profils disponibles: Giaeme) Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Disk Unlocker\ASPFSVS64.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe (Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.10\AsusFanControlService.exe (Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe (ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe () C:\Windows\SysWOW64\PnkBstrA.exe (www.shadowexplorer.com) C:\Program Files (x86)\ShadowExplorer\sesvc.exe (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelp.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetiCtrlTray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (BitTorrent Inc.) C:\Users\Giaeme\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) C:\Users\Giaeme\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe (BitTorrent Inc.) C:\Users\Giaeme\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe (Google Inc.) C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor) HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1142496 2013-04-15] (Druide informatique inc.) HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1291488 2013-04-15] (Druide informatique inc.) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2012-02-01] (Intel Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime Alternative\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-09-21] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782008 2015-08-07] (Avira Operations GmbH & Co. KG) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-57785965-4060547464-863274036-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd) HKU\S-1-5-21-57785965-4060547464-863274036-1000\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [242688 2013-11-05] (SteelSeries ApS) HKU\S-1-5-21-57785965-4060547464-863274036-1000\...\Run: [uTorrent] => C:\Users\Giaeme\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-13] (BitTorrent Inc.) HKU\S-1-5-21-57785965-4060547464-863274036-1000\...\Run: [GoogleChromeAutoLaunch_F7070DBDAC71A06A2369DCDE54B63D19] => C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe [811848 2015-10-09] (Google Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-10-12] (Google) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Pas de fichier ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2012-11-16] (Tonec Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Giaeme\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-10-13] (Dropbox, Inc.) Startup: C:\Users\Giaeme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2014-07-15] () ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{50FD13D9-C2EE-4DC6-8588-2F0034DEE19B}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-57785965-4060547464-863274036-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-57785965-4060547464-863274036-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-57785965-4060547464-863274036-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2013-07-19] (Internet Download Manager, Tonec Inc.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-09] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-07] (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-07] (Oracle Corporation) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2013-07-19] (Internet Download Manager, Tonec Inc.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-09] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-07] (Oracle Corporation) BHO-x32: IEExtension.VDownloaderBHO -> {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} -> C:\Windows\SysWOW64\mscoree.dll [2010-11-05] (Microsoft Corporation) BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-07] (Oracle Corporation) FireFox: ======== FF ProfilePath: C:\Users\Giaeme\AppData\Roaming\Mozilla\Firefox\Profiles\fb7yzgle.default-1423830657836 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] () FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-24] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-07] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2013-01-24] (Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.) FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [2014-05-26] (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-07] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-07] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2013-01-24] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Pas de fichier] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-12-21] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-57785965-4060547464-863274036-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Giaeme\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin HKU\S-1-5-21-57785965-4060547464-863274036-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Giaeme\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.) FF Plugin HKU\S-1-5-21-57785965-4060547464-863274036-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Giaeme\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-57785965-4060547464-863274036-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-05-24] () FF Plugin HKU\S-1-5-21-57785965-4060547464-863274036-1000: vasco.com/VascoCardReaderPlugin -> C:\Users\Giaeme\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin.dll [2013-10-28] (VASCO Data Security) FF Plugin HKU\S-1-5-21-57785965-4060547464-863274036-1000: vasco.com/VascoCardReaderPlugin64 -> C:\Users\Giaeme\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.2\npVascoCardReaderPlugin64.dll [2013-10-28] (VASCO Data Security) FF Plugin HKU\S-1-5-21-57785965-4060547464-863274036-1000: vitzo.com/VDownloader -> C:\Program Files\VDownloader\Addons\npVDownloader.dll [Pas de fichier] FF Extension: Module d'Antidote - C:\Users\Giaeme\AppData\Roaming\Mozilla\Firefox\Profiles\fb7yzgle.default-1423830657836\Extensions\antidote7_win_firefox_103@druide.com [2015-09-17] [non signé] FF Extension: Belgium eID - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2015-07-16] [non signé] FF HKLM-x32\...\Firefox\Extensions: [support@vdownloader.com] - C:\Program Files\VDownloader\Addons\FireFox => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be => non trouvé(e) FF HKU\S-1-5-21-57785965-4060547464-863274036-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Giaeme\AppData\Roaming\IDM\idmmzcc5 FF Extension: IDM CC - C:\Users\Giaeme\AppData\Roaming\IDM\idmmzcc5 [2013-08-24] [non signé] Chrome: ======= CHR HomePage: Default -> hxxp://google.be/ CHR StartupUrls: Default -> "hxxp://google.be/","hxxp://www.google.com" CHR Plugin: (Shockwave Flash) - C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\46.0.2490.71\PepperFlash\pepflashplayer.dll () CHR Plugin: (Native Client) - C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\46.0.2490.71\ppGoogleNaClPluginChrome.dll => Pas de fichier CHR Plugin: (Chrome PDF Viewer) - C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\46.0.2490.71\pdf.dll => Pas de fichier CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Uplay PC) - A:\Jeux\Ubisoft Game Launcher\npuplaypc.dll => Pas de fichier CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll => Pas de fichier CHR Plugin: (Intel\® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel\® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Pas de fichier CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll => Pas de fichier CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) CHR Plugin: (Ma-Config.com plugin) - C:\Program Files\ma-config.com\nphardwaredetection.dll => Pas de fichier CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Pas de fichier CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\SysWOW64\npDeployJava1.dll => Pas de fichier CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) CHR Profile: C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22] CHR Extension: (Adblock Plus) - C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-10-07] CHR Extension: (Protection Web Avira) - C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-10-23] CHR Extension: (Google Docs hors connexion) - C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-02] CHR Extension: (Hola - VPN gratuitx) - C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-10-22] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-26] CHR Extension: (20-20 3D Viewer for IKEA) - C:\Users\Giaeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfhldcakmgpmglboaclpfdedehjblalp [2013-09-02] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [mjcnhgdodmhnpmndnljbmafpgomahfal] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2013-04-15] CHR HKLM-x32\...\Chrome\Extension: [eoccbpoodnckjdnackiffhjfkogfhnhh] - C:\Program Files\VDownloader\Addons\Chrome.crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [jmolcgpienlcieaajfkkdamlngancncm] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2013-07-19] CHR HKLM-x32\...\Chrome\Extension: [khjilmcjipkeokomeekfnhkpbnhmgaje] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [mjcnhgdodmhnpmndnljbmafpgomahfal] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2013-04-15] StartMenuInternet: Google Chrome.JHQKSTYM4TPIVI7ATOLHOBS7KY - C:\Users\Giaeme\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [887128 2015-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-08-07] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-08-07] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1213072 2015-08-07] (Avira Operations GmbH & Co. KG) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-06-01] () R2 ASDiskUnlocker; C:\Program Files (x86)\ASUS\Disk Unlocker\ASPFSVS64.exe [262816 2012-06-18] (ASUSTeK Computer Inc.) R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-06-01] (ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.10\AsusFanControlService.exe [1475744 2012-05-25] (ASUSTeK Computer Inc.) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [240360 2015-09-21] (Avira Operations GmbH & Co. KG) R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [4086992 2015-10-23] (SurfRight B.V.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company) R3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160768 2011-05-27] (Intel Corporation) [Fichier non signé] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2013-02-24] () [Fichier non signé] S2 libusbd; C:\Windows\SysWOW64\libusbd-nt.exe [18944 2005-03-09] (http://libusb-win32.sourceforge.net) [Fichier non signé] R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-16] () R2 sesvc; C:\Program Files (x86)\ShadowExplorer\sesvc.exe [9216 2013-01-02] (www.shadowexplorer.com) [Fichier non signé] R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.) S3 androidusb; C:\Windows\System32\Drivers\wsadb.sys [40808 2014-07-03] (Google Inc) R3 ASFLTDrv.sys; C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys [16512 2010-09-16] (ASUSTeK Computer Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] () R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] () R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [162528 2015-08-07] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141416 2015-08-07] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-08-07] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-08-07] (Avira Operations GmbH & Co. KG) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-04-10] (DT Soft Ltd) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 EMVSCARD; C:\Windows\System32\Drivers\EMVSCARD.sys [28544 2006-12-13] (USB Smart Card Reader) S3 H5xUSB; C:\Windows\System32\Drivers\uth5x64.sys [101632 2012-08-02] (UT) [Fichier non signé] S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [41080 2015-10-23] () R3 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [198216 2015-10-23] (SurfRight B.V.) R3 hmpnet; C:\Windows\system32\drivers\hmpnet.sys [75640 2015-10-23] (SurfRight B.V.) S3 libusb0; C:\Windows\System32\drivers\libusb0.sys [52320 2013-12-03] (http://libusb-win32.sourceforge.net) S3 libusb0; C:\Windows\SysWOW64\drivers\libusb0.sys [33792 2005-03-09] () [Fichier non signé] R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation) S3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [22016 2013-03-04] (Razer USA Ltd) [Fichier non signé] S3 rzudd; C:\Windows\System32\DRIVERS\rzudd.sys [117248 2013-03-04] (Razer USA Ltd) [Fichier non signé] R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [38016 2013-05-31] (SteelSeries Corporation) U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [37624 2015-10-22] () S3 usbio; C:\Windows\System32\Drivers\dsiarhwprog_x64.sys [51600 2007-02-08] (Thesycon GmbH, Germany) R1 VDiskBus; C:\Windows\System32\DRIVERS\VDiskBus64.sys [42656 2012-06-01] (ASUSTeK Computer Inc.) S3 xb1usb; C:\Windows\System32\DRIVERS\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation) S3 catchme; \??\C:\Utilisateurl\catchme.sys [X] S0 snikdf; System32\drivers\fwosxm.sys [X] S3 wolf; \??\A:\Jeux\WolfTeam-FR\avital\wolf64.sys [X] S3 XPADFL02; system32\DRIVERS\xpadfl02.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-10-23 12:36 - 2015-10-23 12:36 - 00019139 _____ C:\Users\Giaeme\Downloads\Windows10-AIO-64bits.iso.torrent 2015-10-23 12:36 - 2015-10-23 12:36 - 00000000 ____D C:\Users\Giaeme\AppData\LocalLow\uTorrent 2015-10-23 11:32 - 2015-10-23 11:32 - 00210218 _____ C:\Users\Giaeme\Desktop\OTL.Txt 2015-10-23 07:42 - 2015-10-23 11:31 - 00100972 _____ C:\Users\Giaeme\Downloads\Extras.Txt 2015-10-23 07:41 - 2015-10-23 11:31 - 00210218 _____ C:\Users\Giaeme\Downloads\OTL.Txt 2015-10-23 07:36 - 2015-10-23 07:36 - 00602112 _____ (OldTimer Tools) C:\Users\Giaeme\Downloads\OTL.exe 2015-10-23 04:27 - 2015-10-23 04:27 - 00498868 _____ (C_XX) C:\Users\Giaeme\Desktop\SEAF.exe 2015-10-23 04:27 - 2015-10-23 04:27 - 00000000 ____D C:\Program Files (x86)\SEAF 2015-10-23 04:17 - 2015-10-23 13:05 - 00035398 _____ C:\Users\Giaeme\Desktop\FRST.txt 2015-10-23 04:17 - 2015-10-23 04:17 - 00062336 _____ C:\Users\Giaeme\Desktop\Addition.txt 2015-10-23 04:16 - 2015-10-23 13:05 - 00000000 ____D C:\FRST 2015-10-23 04:16 - 2015-10-23 04:16 - 02196480 _____ (Farbar) C:\Users\Giaeme\Desktop\FRST64.exe 2015-10-23 04:16 - 2015-10-23 04:16 - 01700352 _____ (Farbar) C:\Users\Giaeme\Downloads\FRST.exe 2015-10-23 04:15 - 2015-10-23 04:15 - 01700352 _____ (Farbar) C:\Users\Giaeme\Desktop\FRST.exe 2015-10-23 03:44 - 2014-04-02 04:18 - 00794432 _____ (Emsisoft GmbH) C:\Users\Giaeme\Desktop\decrypt_cryptodefense.exe 2015-10-23 03:44 - 2014-04-01 19:38 - 00091512 _____ (Emsisoft GmbH) C:\Users\Giaeme\Desktop\CryptoOffense.exe 2015-10-23 03:42 - 2015-10-23 03:42 - 00614661 _____ C:\Users\Giaeme\Desktop\decrypt_cryptodefense.zip 2015-10-23 03:30 - 2015-10-23 03:30 - 00041080 _____ C:\Windows\system32\Drivers\hitmanpro37.sys 2015-10-23 03:15 - 2015-10-23 03:15 - 00000648 _____ C:\Windows\PFRO.log 2015-10-23 03:14 - 2015-10-23 03:26 - 00000296 _____ C:\Windows\system32\.crusader 2015-10-23 03:12 - 2015-10-23 13:03 - 00000000 ____D C:\Windows\CryptoGuard 2015-10-23 03:12 - 2015-10-23 04:21 - 00000000 ____D C:\ProgramData\HitmanPro.Alert 2015-10-23 03:12 - 2015-10-23 03:30 - 00000000 ____D C:\Program Files (x86)\HitmanPro.Alert 2015-10-23 03:12 - 2015-10-23 03:23 - 00830288 _____ (SurfRight B.V.) C:\Windows\system32\hmpalert.dll 2015-10-23 03:12 - 2015-10-23 03:23 - 00772944 _____ (SurfRight B.V.) C:\Windows\SysWOW64\hmpalert.dll 2015-10-23 03:12 - 2015-10-23 03:23 - 00198216 _____ (SurfRight B.V.) C:\Windows\system32\Drivers\hmpalert.sys 2015-10-23 03:12 - 2015-10-23 03:23 - 00075640 _____ (SurfRight B.V.) C:\Windows\system32\Drivers\hmpnet.sys 2015-10-23 03:12 - 2015-10-23 03:15 - 00000000 ____D C:\ProgramData\HitmanPro 2015-10-23 03:12 - 2015-10-23 03:12 - 03970584 _____ (SurfRight B.V.) C:\Users\Giaeme\Downloads\hmpalert3b143.exe 2015-10-23 03:12 - 2015-10-23 03:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro.Alert 2015-10-23 03:10 - 2015-10-23 03:48 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-10-23 03:10 - 2015-10-23 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-10-23 03:10 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-10-23 03:10 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-10-23 03:10 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-10-23 03:07 - 2015-10-23 03:07 - 00015365 _____ C:\Users\Giaeme\Downloads\Malwarebytes Anti-Malware Premium 2.1.8.1057.torrent 2015-10-23 02:56 - 2015-10-23 02:56 - 00002172 _____ C:\Users\Giaeme\Downloads\Malwarebytes Anti-Malware Premium 2.1.4.1018 officiel éditeur Novirus.torrent 2015-10-23 02:35 - 2015-10-23 02:35 - 00015593 _____ C:\Users\Giaeme\Downloads\Malwarebytes Anti-Malware Premium 2.2.0.1024 Final.torrent 2015-10-23 02:35 - 2015-10-23 02:35 - 00005511 _____ C:\Users\Giaeme\Downloads\Malwarebytes Anti-Malware(premium)2.0.0.502 Beta+Sérial.torrent 2015-10-23 02:27 - 2015-10-23 02:27 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\www.shadowexplorer.com 2015-10-23 02:27 - 2015-10-23 02:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer 2015-10-23 02:27 - 2015-10-23 02:27 - 00000000 ____D C:\Program Files (x86)\ShadowExplorer 2015-10-23 02:26 - 2015-10-23 02:26 - 00969845 _____ (ShadowExplorer.com ) C:\Users\Giaeme\Downloads\ShadowExplorer-0.9-setup.exe 2015-10-23 02:09 - 2015-10-23 02:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2015-10-23 02:08 - 2015-10-23 02:09 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo 2015-10-23 02:03 - 2015-10-23 04:22 - 00000448 _____ C:\Windows\setupact.log 2015-10-23 02:03 - 2015-10-23 02:03 - 00000000 _____ C:\Windows\setuperr.log 2015-10-23 01:33 - 2015-10-23 01:33 - 00000000 _____ C:\autoexec.bat 2015-10-23 01:32 - 2015-10-23 01:32 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Giaeme\Downloads\SpyHunter-Installer.exe 2015-10-23 01:14 - 2015-10-23 01:14 - 01020848 _____ (File Repair ) C:\Users\Giaeme\Downloads\file-repair-setup.exe 2015-10-23 01:14 - 2015-10-23 01:14 - 00001191 _____ C:\Users\Giaeme\Desktop\File Repair.lnk 2015-10-23 01:14 - 2015-10-23 01:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Repair 2015-10-23 01:14 - 2015-10-23 01:14 - 00000000 ____D C:\Program Files (x86)\Repair File 2015-10-23 00:40 - 2015-10-23 00:40 - 00002418 _____ C:\Users\Giaeme\Downloads\Stellar Phoenix Windows Data Recovery Professional 6 inclu Key Yuasa.torrent 2015-10-23 00:25 - 2015-10-23 01:46 - 00000000 ____D C:\Program Files (x86)\Stellar Phoenix Windows Data Recovery 2015-10-23 00:25 - 2015-10-23 00:25 - 00000000 ____D C:\Log 2015-10-23 00:23 - 2015-10-23 00:23 - 04175096 _____ (Stellar Information Systems Ltd ) C:\Users\Giaeme\Downloads\StellarPhoenixWindowsDataRecovery-Home_01NET.exe 2015-10-22 22:02 - 2015-10-22 22:02 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Avira 2015-10-22 22:00 - 2015-08-07 14:58 - 00162528 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-10-22 22:00 - 2015-08-07 14:58 - 00141416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2015-10-22 22:00 - 2015-08-07 14:58 - 00044088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2015-10-22 22:00 - 2015-08-07 14:58 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys 2015-10-22 21:59 - 2015-10-22 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-10-22 21:59 - 2015-10-22 22:00 - 00000000 ____D C:\ProgramData\Avira 2015-10-22 21:59 - 2015-10-22 22:00 - 00000000 ____D C:\Program Files (x86)\Avira 2015-10-22 21:59 - 2015-10-22 21:59 - 00001208 _____ C:\Users\Public\Desktop\Avira Launcher.lnk 2015-10-22 21:58 - 2015-10-22 21:58 - 04562576 _____ (Avira Operations GmbH & Co. KG) C:\Users\Giaeme\Downloads\avira_fr_av_56293fdf40abe__ws.exe 2015-10-22 21:55 - 2015-10-22 21:55 - 00040770 _____ C:\ComboFix.txt 2015-10-22 21:50 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe 2015-10-22 21:50 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe 2015-10-22 21:50 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2015-10-22 21:50 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2015-10-22 21:50 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2015-10-22 21:50 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe 2015-10-22 21:50 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe 2015-10-22 21:50 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe 2015-10-22 21:49 - 2015-10-22 21:55 - 00000000 ____D C:\Qoobox 2015-10-22 21:49 - 2015-10-22 21:54 - 00000000 ____D C:\Windows\erdnt 2015-10-22 21:48 - 2015-10-22 21:48 - 05637184 ____R (Swearware) C:\Users\Giaeme\Desktop\Utilisateurl.exe 2015-10-22 21:43 - 2015-10-22 21:44 - 00002748 _____ C:\Users\Giaeme\Desktop\Rkill.txt 2015-10-22 21:43 - 2015-10-22 21:43 - 02019656 _____ (Bleeping Computer, LLC) C:\Users\Giaeme\Desktop\rkill.com 2015-10-22 21:38 - 2015-10-22 21:42 - 00000000 ____D C:\Program Files (x86)\Convar 2015-10-22 21:38 - 2015-10-22 21:38 - 03462033 _____ C:\Users\Giaeme\Downloads\pci_filerecovery.exe 2015-10-22 20:53 - 2015-10-22 20:54 - 22794824 _____ C:\Users\Giaeme\Downloads\RogueKillerX64 (2).exe 2015-10-22 20:45 - 2015-10-22 20:45 - 22794824 _____ C:\Users\Giaeme\Downloads\RogueKillerX64 (1).exe 2015-10-22 20:41 - 2015-10-22 20:41 - 23800392 _____ C:\Users\Giaeme\Downloads\RogueKillerX64_beta.exe 2015-10-22 20:36 - 2015-10-22 20:36 - 01691648 _____ C:\Users\Giaeme\Downloads\adwcleaner_5.014 (1).exe 2015-10-22 20:32 - 2015-10-22 21:23 - 00000000 ____D C:\ProgramData\RogueKiller 2015-10-22 20:32 - 2015-10-22 21:19 - 00037624 _____ C:\Windows\system32\Drivers\TrueSight.sys 2015-10-22 20:31 - 2015-10-22 20:32 - 22794824 _____ C:\Users\Giaeme\Downloads\RogueKillerX64.exe 2015-10-22 20:19 - 2015-10-22 20:19 - 01691648 _____ C:\Users\Giaeme\Downloads\adwcleaner_5.014.exe 2015-10-22 20:05 - 2015-10-23 12:15 - 00514537 _____ C:\Windows\WindowsUpdate.log 2015-10-22 20:05 - 2015-10-22 20:05 - 00307200 _____ (Secure By Design Inc.) C:\Users\Giaeme\Downloads\Ninite Essentials Installer.exe 2015-10-22 20:05 - 2015-10-22 20:05 - 00002117 _____ C:\Users\Public\Desktop\Microsoft Security Essentials.lnk 2015-10-22 20:05 - 2015-10-22 20:05 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk 2015-10-22 20:05 - 2015-10-22 20:05 - 00000000 ____D C:\Program Files\Microsoft Security Client 2015-10-22 20:05 - 2015-10-22 20:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client 2015-10-22 17:18 - 2015-10-22 17:18 - 00004270 _____ C:\Users\HELP_DECRYPT.TXT 2015-10-22 17:18 - 2015-10-22 17:18 - 00004270 _____ C:\Users\Giaeme\Downloads\HELP_DECRYPT.TXT 2015-10-22 17:18 - 2015-10-22 17:18 - 00004270 _____ C:\HELP_DECRYPT.TXT 2015-10-22 17:18 - 2015-10-22 17:18 - 00000296 _____ C:\Users\HELP_DECRYPT.URL 2015-10-22 17:18 - 2015-10-22 17:18 - 00000296 _____ C:\HELP_DECRYPT.URL 2015-10-22 17:14 - 2015-10-22 17:14 - 00004270 _____ C:\Users\Giaeme\Documents\HELP_DECRYPT.TXT 2015-10-22 17:14 - 2015-10-22 17:14 - 00000296 _____ C:\Users\Giaeme\Documents\HELP_DECRYPT.URL 2015-10-22 17:10 - 2015-10-22 17:10 - 00004270 _____ C:\Users\Giaeme\AppData\Local\Apps\HELP_DECRYPT.TXT 2015-10-22 17:10 - 2015-10-22 17:10 - 00000296 _____ C:\Users\Giaeme\AppData\Local\Apps\HELP_DECRYPT.URL 2015-10-21 18:49 - 2015-10-21 18:50 - 53945184 _____ C:\Users\Giaeme\Downloads\ACS_GC_Static_Skin_1500x1000.zip 2015-10-21 18:15 - 2015-10-21 18:15 - 00040872 _____ C:\Users\Giaeme\Downloads\The Vampire Diaries.S02.FRENCH.LD.DVDRiP.XviD-EPZ.torrent 2015-10-21 17:24 - 2015-10-21 17:24 - 00081683 _____ C:\Users\Giaeme\Downloads\The Vampire Diaries Saison 3 PROPER VOSTFR HDTV XviD MiND.torrent 2015-10-21 17:23 - 2015-10-21 17:23 - 00021250 _____ C:\Users\Giaeme\Downloads\the vampire diaries saison 2 vostfr.torrent 2015-10-21 01:44 - 2015-10-21 01:44 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-10-21 01:11 - 2015-10-21 01:12 - 127489552 _____ C:\Users\Giaeme\Desktop\Halo 5 Guardians OST.zip 2015-10-20 14:14 - 2015-10-22 21:43 - 00000000 ____D C:\Users\Giaeme\Desktop\h5 2015-10-19 18:22 - 2015-10-19 18:22 - 01408448 _____ C:\Users\Giaeme\Downloads\_reherhrerrere.rar 2015-10-19 18:18 - 2015-10-22 21:43 - 00000000 ____D C:\Users\Giaeme\Desktop\DQHeroesOnlineCreativeMasters 2015-10-19 18:18 - 2015-09-21 17:45 - 121246304 _____ C:\Users\Giaeme\Desktop\DQH Web Skin Pre-order.psd 2015-10-19 17:57 - 2015-10-19 17:58 - 100913840 _____ C:\Users\Giaeme\Downloads\Pub DQH.7z 2015-10-19 01:36 - 2015-10-19 01:36 - 00234469 _____ C:\Users\Giaeme\Downloads\Gundam.00.S1-S2.Intégrale.MULTi.720p.BluRay.x264-SiDERAL.torrent 2015-10-18 20:47 - 2015-10-22 20:10 - 00000000 ____D C:\750adafd 2015-10-18 18:54 - 2015-10-18 18:54 - 00000704 _____ C:\Users\Giaeme\Downloads\showtime.ics 2015-10-18 12:02 - 2015-10-18 12:03 - 06970488 _____ (Wargaming.net ) C:\Users\Giaeme\Downloads\WoWS_internet_install_eu (1).exe 2015-10-18 11:12 - 2015-10-18 12:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships 2015-10-18 11:12 - 2015-10-18 12:03 - 00000000 ____D C:\Games 2015-10-18 11:12 - 2015-10-18 11:12 - 06970488 _____ (Wargaming.net ) C:\Users\Giaeme\Downloads\WoWS_internet_install_eu.exe 2015-10-16 18:44 - 2015-10-16 18:44 - 04034368 _____ C:\Users\Giaeme\Downloads\powersaves3ds-software-129.zip 2015-10-15 12:03 - 2015-10-15 12:03 - 00010032 _____ C:\Users\Giaeme\Downloads\Beta keys for Giveaway Belgium.xlsx 2015-10-14 23:42 - 2015-10-14 23:42 - 00112205 _____ C:\Users\Giaeme\Downloads\Spy.2015.EXTENDED.FRENCH.BDRip.XviD-GLUPS.avi.torrent 2015-10-14 23:36 - 2015-10-14 23:36 - 00017108 _____ C:\Users\Giaeme\Downloads\Dragon Ball Z Fukkatsu No F FULLHD 1080P VOSTFR.mkv.torrent 2015-10-13 20:15 - 2015-10-13 20:15 - 00002936 _____ C:\Users\Giaeme\Documents\Piste 5 - 1.sfk 2015-10-13 20:14 - 2015-10-13 20:15 - 00737264 _____ C:\Users\Giaeme\Documents\Piste 5 - 1.wav 2015-10-07 19:56 - 2015-10-07 19:56 - 00000787 _____ C:\Battle.net.lnk 2015-10-07 19:56 - 2015-10-07 19:56 - 00000000 ____D C:\ProgramData\Blizzard Entertainment 2015-09-27 15:37 - 2015-09-27 15:39 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\iMobie 2015-09-27 15:37 - 2015-09-27 15:37 - 00000000 ____D C:\Users\Giaeme\AppData\Local\iMobie_PhoneRescue ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-10-23 13:03 - 2013-01-24 01:06 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\uTorrent 2015-10-23 12:59 - 2013-01-24 01:06 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-23 12:48 - 2013-01-30 23:44 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\DAEMON Tools Lite 2015-10-23 12:44 - 2015-06-16 21:33 - 00001200 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-57785965-4060547464-863274036-1000UA.job 2015-10-23 12:41 - 2013-01-24 01:05 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-10-23 12:29 - 2013-01-24 01:05 - 00001082 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-57785965-4060547464-863274036-1000UA.job 2015-10-23 10:33 - 2013-03-19 17:28 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-57785965-4060547464-863274036-1000UA.job 2015-10-23 04:31 - 2009-07-14 17:24 - 00763512 _____ C:\Windows\system32\perfh00C.dat 2015-10-23 04:31 - 2009-07-14 17:24 - 00155090 _____ C:\Windows\system32\perfc00C.dat 2015-10-23 04:31 - 2009-07-14 07:13 - 01701956 _____ C:\Windows\system32\PerfStringBackup.INI 2015-10-23 04:30 - 2009-07-14 06:45 - 00029024 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-23 04:30 - 2009-07-14 06:45 - 00029024 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-23 04:22 - 2014-07-15 16:49 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Deployment 2015-10-23 04:22 - 2013-01-24 01:06 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-23 04:22 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-23 04:01 - 2013-01-24 02:46 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\vlc 2015-10-23 03:28 - 2015-01-22 23:09 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Blizzard 2015-10-23 03:28 - 2015-01-22 23:00 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Blizzard Entertainment 2015-10-23 03:28 - 2015-01-22 23:00 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Battle.net 2015-10-23 03:28 - 2015-01-21 20:13 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Daedalic Entertainment GmbH 2015-10-23 03:28 - 2015-01-17 19:35 - 00000000 ____D C:\Users\Giaeme\AppData\Local\KowMedia 2015-10-23 03:28 - 2015-01-04 19:11 - 00000000 ____D C:\Users\Giaeme\AppData\Local\osu! 2015-10-23 03:28 - 2014-09-12 00:31 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Apps\Windows 7 USB DVD Download Tool 2015-10-23 03:28 - 2014-06-29 01:09 - 00000000 ____D C:\Users\Giaeme\AppData\Local\FeedDemon 2015-10-23 03:28 - 2014-02-15 20:37 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Origin 2015-10-23 03:28 - 2013-09-16 21:14 - 00000000 ____D C:\Users\Giaeme\AppData\Local\SplitMediaLabs 2015-10-23 03:28 - 2013-09-15 02:19 - 00000000 ____D C:\Users\Giaeme\AppData\Local\CombiTech 2015-10-23 03:28 - 2013-09-05 23:39 - 00000000 ____D C:\Users\Giaeme\AppData\Local\IM 2015-10-23 03:28 - 2013-03-19 17:33 - 00000000 ___RD C:\Users\Giaeme\Google Drive 2015-10-23 03:28 - 2013-03-19 17:28 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Facebook 2015-10-23 03:28 - 2013-01-31 00:00 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Skyrim 2015-10-23 03:28 - 2013-01-29 16:54 - 00000000 ____D C:\Users\Giaeme\AppData\Local\PunkBuster 2015-10-23 03:28 - 2013-01-28 13:20 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Sony 2015-10-23 03:28 - 2013-01-24 01:11 - 00000000 ___RD C:\Users\Giaeme\Dropbox 2015-10-23 03:15 - 2014-05-26 12:57 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-10-23 03:15 - 2014-01-04 02:11 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 2015-10-23 03:15 - 2013-04-22 12:36 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\IDM 2015-10-23 03:14 - 2015-06-11 19:59 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Samsung 2015-10-23 03:14 - 2015-05-27 18:07 - 00000000 ____D C:\Users\Giaeme\AppData\Local\HP 2015-10-23 03:14 - 2014-10-27 00:47 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\AMD 2015-10-23 03:14 - 2014-07-23 20:12 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Mumble 2015-10-23 03:14 - 2014-06-16 16:49 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Raptr 2015-10-23 03:14 - 2014-06-10 13:08 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\TS3Client 2015-10-23 03:14 - 2014-04-28 13:13 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Skype 2015-10-23 03:14 - 2014-02-14 05:49 - 00000000 ____D C:\ProgramData\SteelSeries 2015-10-23 03:14 - 2014-02-03 23:45 - 00000000 ____D C:\ProgramData\Steam 2015-10-23 03:14 - 2014-01-26 13:53 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\TheBannerSaga 2015-10-23 03:14 - 2013-12-20 00:10 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\TeamViewer 2015-10-23 03:14 - 2013-12-09 20:21 - 00000000 ____D C:\ProgramData\TechSmith 2015-10-23 03:14 - 2013-10-31 23:20 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\.minecraft 2015-10-23 03:14 - 2013-10-31 14:09 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\FileZilla 2015-10-23 03:14 - 2013-09-16 21:14 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\SplitMediaLabs 2015-10-23 03:14 - 2013-09-16 21:14 - 00000000 ____D C:\ProgramData\SplitMediaLabs 2015-10-23 03:14 - 2013-04-18 14:33 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Apple Computer 2015-10-23 03:14 - 2013-04-09 22:04 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\OBS 2015-10-23 03:14 - 2013-03-26 21:17 - 00000000 ____D C:\Users\Default\AppData\Local\Google 2015-10-23 03:14 - 2013-03-26 21:17 - 00000000 ____D C:\Users\Default User\AppData\Local\Google 2015-10-23 03:14 - 2013-03-12 14:11 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Apple Computer 2015-10-23 03:14 - 2013-02-24 14:17 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Mozilla 2015-10-23 03:14 - 2013-02-09 22:54 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Ashampoo 2015-10-23 03:14 - 2013-01-28 13:23 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Publish Providers 2015-10-23 03:14 - 2013-01-28 13:20 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Sony 2015-10-23 03:14 - 2013-01-24 01:10 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Skype 2015-10-23 03:14 - 2013-01-24 01:06 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Dropbox 2015-10-23 03:14 - 2013-01-24 01:05 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\Adobe 2015-10-23 03:14 - 2013-01-24 01:05 - 00000000 ____D C:\Users\Giaeme\AppData\LocalLow\Sun 2015-10-23 03:14 - 2013-01-24 01:05 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Google 2015-10-23 03:14 - 2013-01-24 01:05 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Adobe 2015-10-23 03:14 - 2013-01-24 01:05 - 00000000 ____D C:\ProgramData\Adobe 2015-10-23 03:14 - 2013-01-23 23:44 - 00000000 ____D C:\Users\Giaeme 2015-10-23 03:14 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default 2015-10-23 03:13 - 2014-02-15 20:36 - 00000000 ____D C:\ProgramData\Origin 2015-10-23 03:13 - 2013-09-05 23:40 - 00000000 ____D C:\ProgramData\Photo Notifier and Animation Creator 2015-10-23 03:13 - 2013-04-11 14:28 - 00000000 ____D C:\ProgramData\PopCap Games 2015-10-23 01:48 - 2014-02-14 05:51 - 00000000 ____D C:\Windows\pss 2015-10-23 01:46 - 2015-01-22 22:59 - 00000000 ____D C:\ProgramData\Battle.net 2015-10-23 01:46 - 2013-12-12 16:45 - 00000000 ____D C:\ProgramData\InstallMate 2015-10-23 01:46 - 2013-03-18 14:46 - 00000000 ____D C:\ProgramData\LogiShrd 2015-10-23 01:46 - 2013-01-26 00:02 - 00000000 ____D C:\ProgramData\ASUS 2015-10-23 00:29 - 2013-01-24 01:05 - 00001030 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-57785965-4060547464-863274036-1000Core.job 2015-10-23 00:06 - 2014-07-15 16:49 - 00000000 ____D C:\Users\Giaeme\AppData\Local\Apps\2.0 2015-10-22 21:59 - 2013-12-04 13:43 - 00000000 ____D C:\ProgramData\Package Cache 2015-10-22 21:54 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini 2015-10-22 21:53 - 2013-01-24 16:27 - 00000000 ____D C:\Program Files (x86)\Pando Networks 2015-10-22 21:53 - 2009-07-14 04:34 - 84672512 _____ C:\Windows\system32\config\SOFTWARE.bak 2015-10-22 21:53 - 2009-07-14 04:34 - 43778048 _____ C:\Windows\system32\config\COMPONENTS.bak 2015-10-22 21:53 - 2009-07-14 04:34 - 30408704 _____ C:\Windows\system32\config\SYSTEM.bak 2015-10-22 21:53 - 2009-07-14 04:34 - 00524288 _____ C:\Windows\system32\config\DEFAULT.bak 2015-10-22 21:53 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak 2015-10-22 21:53 - 2009-07-14 04:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak 2015-10-22 21:43 - 2015-09-09 18:34 - 00000000 ____D C:\Users\Giaeme\Desktop\wordpress 2015-10-22 21:43 - 2015-07-17 17:23 - 00000000 ____D C:\Users\Giaeme\Desktop\Ventes ebay 2015-10-22 21:43 - 2015-07-10 14:59 - 00000000 ____D C:\Users\Giaeme\Desktop\Zelda 2015-10-22 21:43 - 2015-06-27 14:43 - 00000000 ____D C:\Users\Giaeme\Desktop\ventes 2015-10-22 21:43 - 2014-12-10 18:16 - 00000000 ____D C:\Users\Giaeme\Desktop\Barco Laser3D Kinepolis 2015-10-22 21:43 - 2014-11-24 16:48 - 00000000 ____D C:\Users\Giaeme\Desktop\LPDDTEST 2015-10-22 21:43 - 2014-10-20 17:06 - 00000000 ____D C:\Users\Giaeme\Desktop\ONEM 2015-10-22 21:43 - 2014-09-12 00:22 - 00000000 ____D C:\Users\Giaeme\Desktop\carte de visite 2015-10-22 21:43 - 2014-06-29 01:12 - 00000000 ____D C:\Users\Giaeme\Desktop\feed 2015-10-22 21:43 - 2014-03-07 01:14 - 00000000 ____D C:\Users\Giaeme\Desktop\Nouveau dossier 2015-10-22 21:22 - 2014-06-26 00:11 - 00000000 ____D C:\AdwCleaner 2015-10-22 20:05 - 2013-01-24 01:07 - 00001912 _____ C:\Windows\epplauncher.mif 2015-10-22 19:31 - 2015-05-19 01:03 - 00000000 ____D C:\Users\Giaeme\Documents\The Witcher 3 2015-10-22 17:18 - 2013-03-21 01:20 - 00000000 ____D C:\Users\Giaeme\Downloads\Video 2015-10-22 17:17 - 2015-01-21 17:20 - 00289232 _____ C:\Users\Giaeme\Downloads\noname.eml 2015-10-22 17:16 - 2015-01-04 19:11 - 00000000 ____D C:\Users\Giaeme\Downloads\Localisation 2015-10-22 17:14 - 2015-04-16 12:30 - 00000000 ____D C:\Users\Giaeme\Documents\Rockstar Games 2015-10-22 17:14 - 2014-02-03 23:45 - 00000000 ____D C:\Users\Giaeme\Documents\WB Games 2015-10-22 17:14 - 2013-07-27 20:31 - 00000000 ____D C:\Users\Giaeme\Documents\VirtualDJ 2015-10-22 17:14 - 2013-05-17 00:43 - 00000000 ____D C:\Users\Giaeme\Documents\WBFS Manager Covers 2015-10-22 17:13 - 2014-07-15 16:49 - 00000000 ____D C:\Users\Giaeme\Documents\My Curse 2015-10-22 17:13 - 2014-05-27 21:59 - 00000000 ____D C:\Users\Giaeme\Documents\Datel 2015-10-22 17:13 - 2014-03-03 18:59 - 00000000 ____D C:\Users\Giaeme\Documents\Elder Scrolls Online 2015-10-22 17:13 - 2013-08-16 00:30 - 00000000 ____D C:\Users\Giaeme\Documents\Electronic Arts 2015-10-22 17:13 - 2013-01-31 21:44 - 00000000 ____D C:\Users\Giaeme\Documents\PCSX2 2015-10-22 17:13 - 2013-01-30 23:57 - 00000000 ____D C:\Users\Giaeme\Documents\Nexus Mod Manager 2015-10-22 17:13 - 2013-01-29 16:54 - 00000000 ____D C:\Users\Giaeme\Documents\My Games 2015-10-22 17:11 - 2013-03-21 01:20 - 00000000 ____D C:\Users\Giaeme\AppData\Roaming\DMCache 2015-10-22 17:11 - 2013-01-23 23:44 - 00000000 ____D C:\Users\Giaeme\AppData\Local\VirtualStore 2015-10-22 17:09 - 2013-01-24 01:28 - 00000000 ____D C:\AMD 2015-10-22 13:44 - 2015-06-16 21:33 - 00001148 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-57785965-4060547464-863274036-1000Core.job 2015-10-22 13:26 - 2015-01-17 17:05 - 00000000 ____D C:\Users\Giaeme\Downloads\Druide_Téléchargement 2015-10-21 23:30 - 2013-12-21 00:06 - 00001456 _____ C:\Users\Giaeme\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs 2015-10-21 16:33 - 2013-03-19 17:28 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-57785965-4060547464-863274036-1000Core.job 2015-10-19 01:33 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2015-10-18 22:59 - 2013-01-24 01:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2015-10-17 03:41 - 2013-01-24 01:05 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-10-17 03:41 - 2013-01-24 01:05 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-17 03:41 - 2013-01-24 01:05 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-10-16 19:02 - 2014-07-04 01:46 - 00000000 ____D C:\Users\Giaeme\Powersaves3DS 2015-10-16 18:44 - 2014-07-07 01:14 - 00000000 ____D C:\Program Files (x86)\Action Replay PowerSaves 3DS 2015-10-16 18:44 - 2014-07-04 01:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Action Replay PowerSaves 3DS 2015-10-14 09:42 - 2014-12-25 12:58 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-10-07 17:39 - 2013-12-28 20:52 - 00000000 ____D C:\Users\Giaeme\AppData\Local\CrashDumps ==================== Fichiers à la racine de certains dossiers ======= 2013-10-09 18:34 - 2015-08-13 23:14 - 0000132 _____ () C:\Users\Giaeme\AppData\Roaming\Adobe PNG Format CS5 Prefs 2013-08-08 01:14 - 2013-10-03 16:07 - 0000117 _____ () C:\Users\Giaeme\AppData\Roaming\D2Info0 2013-08-08 01:14 - 2013-09-05 23:04 - 0000008 _____ () C:\Users\Giaeme\AppData\Roaming\DofusAppId0_1 2013-08-08 12:03 - 2013-10-03 16:19 - 0000008 _____ () C:\Users\Giaeme\AppData\Roaming\DofusAppId0_2 2013-08-08 16:31 - 2013-09-02 20:26 - 0000008 _____ () C:\Users\Giaeme\AppData\Roaming\DofusAppId0_3 2013-08-10 21:32 - 2013-08-14 00:19 - 0000008 _____ () C:\Users\Giaeme\AppData\Roaming\DofusAppId0_4 2013-12-21 00:06 - 2015-10-21 23:30 - 0001456 _____ () C:\Users\Giaeme\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs 2013-06-05 23:49 - 2013-06-05 23:49 - 0012432 _____ () C:\Users\Giaeme\AppData\Local\CleanupUninstall.txt 2013-02-10 17:04 - 2014-12-25 13:51 - 0013312 _____ () C:\Users\Giaeme\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-10-26 03:28 - 2014-10-26 03:28 - 0000000 ___SH () C:\Users\Giaeme\AppData\Local\LumaEmu 2015-05-27 18:08 - 2015-05-27 18:08 - 0000057 _____ () C:\ProgramData\Ament.ini Certains fichiers dans TEMP: ==================== C:\Users\Giaeme\AppData\Local\Temp\avgnt.exe C:\Users\Giaeme\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpodizuc.dll C:\Users\Giaeme\AppData\Local\Temp\HitmanPro_x64.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2015-10-21 02:11 ==================== Fin de FRST.txt ============================