Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 Exécuté par Vinciane (administrateur) sur PC-SALON (31-03-2016 12:32:08) Exécuté depuis C:\Users\Vinciane\Desktop Profils chargés: Vinciane (Profils disponibles: Vinciane) Platform: Windows 8.1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe (TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe (Conduit) C:\Users\Vinciane\AppData\Local\ValueApps\ValueApps.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Windows\SysWOW64\UMonit64.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe () C:\Users\Vinciane\AppData\Local\ValueApps\ValueAppsTrayIcon.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe (Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [] => [X] HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [894048 2013-01-12] (Conexant Systems, Inc.) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation) HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-14] (TOSHIBA Corporation) HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-18] (TOSHIBA Corporation) HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296520 2013-09-12] (TOSHIBA Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated) HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-21] (Avast Software s.r.o.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595504 2016-01-29] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3199634993-518937472-4119080787-1001\...\Run: [ValueAppsTrayIcon] => C:\Users\Vinciane\AppData\Local\ValueApps\ValueAppsTrayIcon.exe [20280 2014-03-13] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-21] (Avast Software s.r.o.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) ProxyEnable: [.DEFAULT] => Proxy est activé. ProxyServer: [.DEFAULT] => http=127.0.0.1:60083;https=127.0.0.1:60083 Winsock: Catalog9 01 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit) Winsock: Catalog9 02 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit) Winsock: Catalog9 03 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit) Winsock: Catalog9 04 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit) Winsock: Catalog9 16 C:\Windows\SysWOW64\ValueApps.dll [345400 2014-03-13] (Conduit) Winsock: Catalog9-x64 01 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit) Winsock: Catalog9-x64 02 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit) Winsock: Catalog9-x64 03 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit) Winsock: Catalog9-x64 04 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit) Winsock: Catalog9-x64 16 C:\Windows\system32\ValueApps64.dll [445752 2014-03-13] (Conduit) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{C0BBBB6C-4FD7-49DA-A8E6-F6620355C053}: [DhcpNameServer] 40.41.1.201 40.41.1.203 Tcpip\..\Interfaces\{FA6FE8E4-C8BB-454B-BC58-059C841DE510}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com?fr=hp-avast&type=avastbcl HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-3199634993-518937472-4119080787-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} HKU\S-1-5-21-3199634993-518937472-4119080787-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?gd=&ctid=CT3319415&octid=EB_ORIGINAL_CTID&ISID=M65AD2808-6810-4FC8-AE7B-D7C5307DC4EE&SearchSource=55&CUI=&UM=5&UP=SP1840C35D-8E84-4E96-9960-FBA300A1D8EE&SSPV= SearchScopes: HKLM -> DefaultScope {D041A96F-27FA-4787-AB93-0087CDE1FF2A} URL = hxxp://speedial.com/results.php?f=4&q={searchTerms}&a=spd_tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyDyCyB0EyE0FzztG0Fzy0B0EtGyCtByD0AtGzztAzz0DtGyB0DzyyBzztDtAyCzyyBzytA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=1537163213&ir= SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {31090377-0740-419E-BEFC-A56E50500D5B} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyD0DzztC0E0DyBzytGtBtA0AtCtGtB0CyEzztGtC0C0BtBtGyB0FzytD0F0CyD0FyE0D0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=747175941&ir= SearchScopes: HKLM -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyEtB0C0ByEyDyD0FtGzyzyzztAtGtB0Bzz0FtGyBtBtCyCtGyCtB0FtCyByE0EyDzyyEyCtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=959382111&ir= SearchScopes: HKLM -> {D041A96F-27FA-4787-AB93-0087CDE1FF2A} URL = hxxp://speedial.com/results.php?f=4&q={searchTerms}&a=spd_tele_14_18_ff&cd=2XzuyEtN2Y1L1Qzu0CyEyDyEyEyEtDyDyE0Fzz0F0AyDzyyDtN0D0Tzu0SzzyDtAtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyDyCyB0EyE0FzztG0Fzy0B0EtGyCtByD0AtGzztAzz0DtGyB0DzyyBzztDtAyCzyyBzytA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0CzytC0FtB0E0AtG0D0E0EyEtG0F0D0EtDtG0B0DyDtAtGyDzzzz0AtB0CtDzzyEtAyD0E2Q&cr=1537163213&ir= SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3319415&octid=EB_ORIGINAL_CTID&ISID=M65AD2808-6810-4FC8-AE7B-D7C5307DC4EE&SearchSource=58&CUI=&UM=5&UP=SP1840C35D-8E84-4E96-9960-FBA300A1D8EE&q={searchTerms}&SSPV= SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {31090377-0740-419E-BEFC-A56E50500D5B} URL = SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = SearchScopes: HKU\S-1-5-21-3199634993-518937472-4119080787-1001 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-21] (Avast Software s.r.o.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\ssv.dll [2016-03-29] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-21] (Avast Software s.r.o.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\jp2ssv.dll [2016-03-29] (Oracle Corporation) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-04-19] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Vinciane\AppData\Roaming\Mozilla\Firefox\Profiles\d7ordo0a.default-1448720446826 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_197.dll [2016-03-23] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-23] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\dtplugin\npDeployJava1.dll [2016-03-29] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.74.2 -> C:\Program Files (x86)\Java\jre1.8.0_74\bin\plugin2\npjp2.dll [2016-03-29] (Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-04-19] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-12-21] (Adobe Systems Inc.) FF Extension: cacaoweb - C:\Users\Vinciane\AppData\Roaming\Mozilla\Firefox\Profiles\d7ordo0a.default-1448720446826\Extensions\cacaoweb@cacaoweb.org [2016-01-20] [non signé] FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-20] [non signé] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-11] Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://www.allobebe.fr/favicon.png?123456 CHR Profile: C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-06] CHR Extension: (Google Docs) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-04] CHR Extension: (Google Drive) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22] CHR Extension: (YouTube) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-30] CHR Extension: (Recherche Google) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Google Sheets) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-06] CHR Extension: (Google Docs hors connexion) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-25] CHR Extension: (Avast Online Security) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-13] CHR Extension: (Bouton Pin It) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2015-09-24] CHR Extension: (Ma liste de naissance allobébé) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcgfdfagankgcpmgeljfidbabneggbbo [2015-12-16] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-27] CHR Extension: (Gmail) - C:\Users\Vinciane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-04] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-21] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-08-22] (Windows (R) Win 7 DDK provider) [Fichier non signé] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-21] (Avast Software s.r.o.) R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] () S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé] R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [Fichier non signé] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation) R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.) R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.) R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1854056 2012-12-07] (Microsoft Corporation) R3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-07-19] (Toshiba Europe GmbH) R2 ValueApps; C:\Users\Vinciane\AppData\Local\ValueApps\ValueApps.exe [2149176 2014-03-13] (Conduit) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-21] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-21] (Avast Software s.r.o.) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-21] (Avast Software s.r.o.) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-21] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-21] (Avast Software s.r.o.) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-04] (Avast Software s.r.o.) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-21] (Avast Software s.r.o.) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-21] () R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-24] (Qualcomm Atheros Communications, Inc.) S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [105704 2013-08-16] (GenesysLogic) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation) S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.) R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.) R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.) S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation ) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2014-08-06] (Synaptics Incorporated) R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) R1 {29b136c9-938d-4d3d-8df8-d649d9b74d02}Gw64; C:\Windows\System32\drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}Gw64.sys [61120 2014-04-24] (StdLib) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-03-31 12:32 - 2016-03-31 12:32 - 00022172 _____ C:\Users\Vinciane\Desktop\FRST.txt 2016-03-31 12:31 - 2016-03-31 12:32 - 00000000 ____D C:\FRST 2016-03-31 12:29 - 2016-03-31 12:30 - 02374144 _____ (Farbar) C:\Users\Vinciane\Desktop\FRST64.exe 2016-03-31 12:24 - 2016-03-31 12:25 - 01725440 _____ (Farbar) C:\Users\Vinciane\Downloads\FRST.exe 2016-03-30 09:52 - 2016-03-30 09:56 - 06846688 _____ C:\Users\Vinciane\Downloads\pieces jointes_30_03_2016(1).zip 2016-03-30 09:47 - 2016-03-30 09:53 - 10535315 _____ C:\Users\Vinciane\Downloads\pieces jointes_30_03_2016.zip 2016-03-29 20:12 - 2016-03-29 20:12 - 00000000 ____D C:\Users\Vinciane\AppData\Roaming\Sun 2016-03-29 20:12 - 2016-03-29 20:12 - 00000000 ____D C:\Users\Vinciane\.oracle_jre_usage 2016-03-29 20:10 - 2016-03-29 20:10 - 00000000 ____D C:\Users\Vinciane\AppData\LocalLow\Oracle 2016-03-25 20:06 - 2016-03-08 09:00 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-03-25 20:06 - 2016-03-08 09:00 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-03-20 17:14 - 2016-03-25 20:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-03-09 21:23 - 2016-02-20 17:45 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-03-09 21:23 - 2016-02-20 17:45 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-03-09 21:23 - 2016-02-20 17:45 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-03-09 21:23 - 2016-02-20 17:45 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-03-09 21:23 - 2016-02-20 17:45 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-03-09 21:23 - 2016-02-20 17:45 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-03-09 21:23 - 2016-02-05 21:06 - 00046768 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-03-09 21:23 - 2016-01-24 20:19 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2016-03-09 21:23 - 2016-01-24 20:19 - 00378712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2016-03-09 21:23 - 2016-01-24 20:19 - 00331608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2016-03-09 21:23 - 2016-01-24 13:57 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2016-03-09 21:23 - 2016-01-24 13:45 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2016-03-09 21:23 - 2016-01-06 20:25 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-03-09 21:23 - 2015-12-30 23:53 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-03-09 21:22 - 2016-02-06 18:58 - 00987648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-03-09 21:22 - 2016-02-06 18:32 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-03-09 21:22 - 2016-01-15 18:56 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll 2016-03-09 21:22 - 2016-01-15 18:45 - 01482240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll 2016-03-09 21:22 - 2016-01-10 18:41 - 01707008 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2016-03-09 21:22 - 2016-01-10 18:31 - 01344512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2016-03-09 21:22 - 2016-01-09 03:49 - 00218448 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2016-03-09 21:22 - 2016-01-09 03:49 - 00192120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2016-03-09 21:22 - 2016-01-07 01:46 - 00148752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll 2016-03-09 21:22 - 2016-01-07 01:45 - 00177712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll 2016-03-09 21:22 - 2016-01-06 18:47 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2016-03-09 21:22 - 2016-01-05 17:00 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2016-03-09 21:22 - 2015-12-30 22:49 - 00470360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2016-03-09 21:22 - 2015-12-20 16:57 - 00839168 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2016-03-09 21:22 - 2015-12-20 16:56 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe 2016-03-09 21:22 - 2015-12-20 16:43 - 00696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2016-03-09 21:22 - 2015-11-19 16:33 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-03-09 21:22 - 2015-11-19 16:26 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-03-09 21:21 - 2016-01-09 03:38 - 00091992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2016-03-09 21:02 - 2016-03-25 19:35 - 00013520 _____ C:\Users\Vinciane\Desktop\bapteme Leandrinou.ods 2016-03-09 15:22 - 2016-03-09 15:22 - 00623512 _____ C:\Users\Vinciane\Downloads\fermeture relais affichette jaune mars 2016.pdf 2016-03-09 15:20 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-03-09 15:20 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-03-09 15:20 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-03-09 15:20 - 2016-02-08 22:29 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll 2016-03-09 15:20 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-03-09 15:20 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-03-09 15:20 - 2016-02-08 22:07 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-03-09 15:20 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-09 15:20 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-03-09 15:20 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-03-09 15:20 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-03-09 15:20 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-03-09 15:20 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-03-09 15:20 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-03-09 15:20 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-03-09 15:20 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-09 15:20 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-03-09 15:20 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-09 15:20 - 2016-02-08 20:14 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll 2016-03-09 15:20 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-03-09 15:20 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-03-09 15:20 - 2016-02-08 19:42 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-03-09 15:20 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-03-09 15:20 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-03-09 15:20 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-09 15:20 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-03-09 15:20 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-09 15:20 - 2016-02-08 19:15 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2016-03-09 15:20 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-09 15:20 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-03-09 15:18 - 2016-02-05 16:59 - 07784960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2016-03-09 15:18 - 2016-02-05 16:55 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2016-03-09 15:18 - 2016-02-05 16:48 - 07075840 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll 2016-03-09 15:18 - 2016-02-05 16:47 - 05268480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll 2016-03-09 15:17 - 2016-02-12 21:14 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-03-09 15:17 - 2016-02-12 17:14 - 03708416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-09 15:17 - 2016-02-12 16:55 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2016-03-09 15:17 - 2016-02-12 16:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-03-09 15:17 - 2016-02-12 16:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-03-09 15:17 - 2016-02-12 16:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-03-09 15:17 - 2016-02-12 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2016-03-09 15:17 - 2016-02-12 16:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2016-03-09 15:17 - 2016-02-12 16:51 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2016-03-09 15:17 - 2016-02-12 16:48 - 02244096 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-03-09 15:17 - 2016-02-12 16:47 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-03-09 15:17 - 2016-02-12 16:46 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-03-09 15:17 - 2016-02-11 16:21 - 00869576 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll 2016-03-09 15:17 - 2016-02-11 16:21 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll 2016-03-09 15:17 - 2016-02-11 16:20 - 00875720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll 2016-03-09 15:17 - 2016-02-11 16:20 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll 2016-03-09 15:17 - 2016-02-06 20:08 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-09 15:17 - 2016-02-05 21:07 - 00292696 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL 2016-03-09 15:17 - 2016-02-05 21:07 - 00243032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL 2016-03-09 15:17 - 2016-02-05 17:03 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-09 15:17 - 2016-02-05 17:00 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-03-09 15:17 - 2016-02-04 20:18 - 04174336 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-03-09 15:17 - 2016-02-04 20:18 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-03-09 15:17 - 2016-02-04 20:12 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-09 15:17 - 2016-02-04 19:44 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-03-09 15:17 - 2016-02-04 19:39 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-03-09 15:17 - 2016-02-04 19:24 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-09 15:17 - 2016-02-04 19:02 - 00483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-03-09 15:17 - 2016-02-03 22:37 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2016-03-09 15:17 - 2016-02-03 22:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2016-03-09 15:17 - 2016-02-03 17:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll 2016-03-09 15:17 - 2016-02-03 17:00 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-09 15:17 - 2016-02-03 17:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2016-03-09 15:17 - 2016-01-31 21:16 - 00148832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-08 18:42 - 2016-03-08 18:42 - 00107621 _____ C:\Users\Vinciane\Downloads\LCL - Le Crédit Lyonnais.pdf 2016-03-08 18:40 - 2016-03-08 18:40 - 00013672 _____ C:\Users\Vinciane\Downloads\OIS199PF_160308_103317_389717_715861997224 (1).PDF 2016-03-08 15:47 - 2016-03-08 15:47 - 00013672 _____ C:\Users\Vinciane\Downloads\OIS199PF_160308_103317_389717_715861997224.PDF 2016-03-07 17:26 - 2016-03-07 17:29 - 11239434 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (6).zip 2016-03-07 15:17 - 2016-03-07 15:19 - 08885722 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (5).zip 2016-03-07 15:07 - 2016-03-07 15:09 - 08160920 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (4).zip 2016-03-07 14:58 - 2016-03-07 15:00 - 07464051 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (3).zip 2016-03-07 14:54 - 2016-03-07 14:56 - 09843664 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (2).zip 2016-03-07 14:49 - 2016-03-07 14:55 - 24087707 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016 (1).zip 2016-03-07 14:41 - 2016-03-07 14:46 - 26645766 _____ C:\Users\Vinciane\Downloads\pieces jointes_07_03_2016.zip ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-03-31 12:22 - 2014-03-29 16:44 - 00003948 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{966D2F21-AA14-4F90-A622-B7E4D98CD01B} 2016-03-31 11:58 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf 2016-03-31 11:47 - 2014-05-09 12:43 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-03-30 21:04 - 2015-07-04 08:44 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-03-30 10:03 - 2014-12-22 13:32 - 00867328 ___SH C:\Users\Vinciane\Downloads\Thumbs.db 2016-03-29 20:21 - 2014-03-29 16:45 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3199634993-518937472-4119080787-1001 2016-03-29 20:14 - 2014-03-29 16:43 - 00000000 ___DO C:\Users\Vinciane\SkyDrive 2016-03-29 20:14 - 2013-09-11 01:32 - 03641726 _____ C:\Windows\system32\PerfStringBackup.INI 2016-03-29 20:14 - 2013-08-28 17:57 - 00788756 _____ C:\Windows\system32\prfh0816.dat 2016-03-29 20:14 - 2013-08-28 17:57 - 00163828 _____ C:\Windows\system32\prfc0816.dat 2016-03-29 20:14 - 2013-08-28 17:49 - 00714814 _____ C:\Windows\system32\perfh01F.dat 2016-03-29 20:14 - 2013-08-28 17:49 - 00149960 _____ C:\Windows\system32\perfc01F.dat 2016-03-29 20:14 - 2013-08-28 17:40 - 00812350 _____ C:\Windows\system32\perfh00C.dat 2016-03-29 20:14 - 2013-08-28 17:40 - 00159412 _____ C:\Windows\system32\perfc00C.dat 2016-03-29 20:13 - 2014-04-21 20:11 - 00001093 _____ C:\Users\Public\Desktop\VLC media player.lnk 2016-03-29 20:12 - 2014-12-10 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-03-29 20:12 - 2014-03-29 16:37 - 00000000 ____D C:\Users\Vinciane 2016-03-29 20:11 - 2014-12-10 22:43 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-03-29 20:10 - 2015-07-04 08:44 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-03-29 20:10 - 2014-12-10 22:43 - 00000000 ____D C:\Program Files (x86)\Java 2016-03-29 20:06 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-29 19:04 - 2015-06-24 18:49 - 00000000 ____D C:\Users\Vinciane\AppData\Local\avabvdxvy 2016-03-29 19:04 - 2015-06-14 11:59 - 00000000 ____D C:\Users\Vinciane\AppData\Local\avabvbavad 2016-03-29 18:51 - 2014-03-29 19:49 - 00000000 ____D C:\Program Files (x86)\Mega Browse 2016-03-29 18:33 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-03-29 18:29 - 2015-04-08 06:50 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2016-03-29 18:29 - 2015-04-08 06:50 - 00000000 ___SD C:\Windows\system32\GWX 2016-03-29 18:28 - 2014-04-21 18:39 - 00000000 ____D C:\Users\Vinciane\AppData\Local\ValueApps 2016-03-28 08:57 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2016-03-25 21:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache 2016-03-25 20:11 - 2015-11-28 16:16 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-03-25 20:04 - 2013-08-22 16:44 - 00509632 _____ C:\Windows\system32\FNTCACHE.DAT 2016-03-25 19:59 - 2014-12-13 21:12 - 00000000 ____D C:\Windows\system32\appraiser 2016-03-25 19:35 - 2016-02-21 22:12 - 00028994 _____ C:\Users\Vinciane\Desktop\CONTRAT NOUNOU MME DUSSAUX.odt 2016-03-25 19:35 - 2014-05-01 18:22 - 01348096 ___SH C:\Users\Vinciane\Desktop\Thumbs.db 2016-03-24 01:48 - 2014-05-09 12:43 - 00003890 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-03-15 15:08 - 2015-07-04 08:46 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-03-15 15:08 - 2015-07-04 08:46 - 00002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-03-14 20:25 - 2013-09-12 03:02 - 00000000 ____D C:\Windows\Panther 2016-03-14 20:19 - 2016-02-13 16:22 - 00000000 ___HD C:\$WINDOWS.~BT 2016-03-14 07:53 - 2014-04-21 20:31 - 00000000 ____D C:\Users\Vinciane\AppData\Roaming\vlc 2016-03-12 20:48 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness 2016-03-09 21:44 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-03-09 21:43 - 2014-04-02 21:28 - 00000000 ____D C:\Windows\system32\MRT 2016-03-09 21:33 - 2014-04-02 21:27 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Fichiers à la racine de certains dossiers ======= 2014-05-02 22:34 - 2014-05-02 22:34 - 0000042 _____ () C:\Users\Vinciane\AppData\Roaming\WB.CFG Certains fichiers dans TEMP: ==================== C:\Users\Vinciane\AppData\Local\Temp\cct.dll C:\Users\Vinciane\AppData\Local\Temp\dlLogic.exe C:\Users\Vinciane\AppData\Local\Temp\JavaIC.dll C:\Users\Vinciane\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe C:\Users\Vinciane\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe C:\Users\Vinciane\AppData\Local\Temp\jre-8u40-windows-au.exe C:\Users\Vinciane\AppData\Local\Temp\jre-8u45-windows-au.exe C:\Users\Vinciane\AppData\Local\Temp\jre-8u60-windows-au.exe C:\Users\Vinciane\AppData\Local\Temp\jre-8u65-windows-au.exe C:\Users\Vinciane\AppData\Local\Temp\jre-8u66-windows-au.exe C:\Users\Vinciane\AppData\Local\Temp\jre-8u73-windows-au.exe C:\Users\Vinciane\AppData\Local\Temp\msscct32.dll C:\Users\Vinciane\AppData\Local\Temp\nslD7A6.exe C:\Users\Vinciane\AppData\Local\Temp\nsnD023.exe C:\Users\Vinciane\AppData\Local\Temp\nsp5572.exe C:\Users\Vinciane\AppData\Local\Temp\nsw4D72.exe C:\Users\Vinciane\AppData\Local\Temp\OfficeSetup.exe C:\Users\Vinciane\AppData\Local\Temp\SetupO365HomePremRetail.x86.fr-FR_O365HomePremRetail_C8QJD-6GNX4-MX4JJ-3Y349-WTWGJ_act_1_.exe C:\Users\Vinciane\AppData\Local\Temp\SetupO365HomePremRetail.x86.fr-FR_O365HomePremRetail_G2NXQ-2Y9XV-9XF2M-PWB2J-YPXCW_act_1_.exe C:\Users\Vinciane\AppData\Local\Temp\SpOrder.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite10371.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite12636.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite13350.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite13550.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite14271.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite14534.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite15116.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite15978.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite16105.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite16149.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite17122.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite17579.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite18107.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite18839.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite19337.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite20722.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite21835.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite22899.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite25434.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite26115.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite26317.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite27076.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite27330.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite28406.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite29075.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite29312.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite31574.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite31777.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite31788.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite32470.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite34046.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite34780.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite34999.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite36049.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite36266.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite37498.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite38820.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite38913.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite39634.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite40615.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43176.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43204.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43241.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite43715.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite45674.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46250.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46281.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46559.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite46980.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite47489.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite47533.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite48488.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite48757.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite48834.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite49659.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite49827.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite50357.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite51911.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite53050.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite53060.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite54659.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite54679.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite54723.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite55293.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite55893.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite56151.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite56215.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite56264.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite58568.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite59259.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite60829.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite61400.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite62491.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite62545.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite63675.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite63883.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite64785.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite64832.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite66223.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite66777.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite66930.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite67241.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite67723.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite67730.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite68469.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite68827.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite69949.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite70894.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite71268.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite71274.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite72182.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite72462.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite76308.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite76574.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite80139.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite80820.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite81445.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite81869.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite81923.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite82467.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite83112.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite83532.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite84870.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite85558.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite86002.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite86072.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite86531.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite87598.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite87685.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite88291.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite89953.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite89986.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite92770.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite94755.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite96923.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98293.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98642.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98668.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite98968.dll C:\Users\Vinciane\AppData\Local\Temp\System.Data.SQLite99870.dll C:\Users\Vinciane\AppData\Local\Temp\vlc-2.2.1-win32.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-03-16 11:00 ==================== Fin de FRST.txt ============================