Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x86) Version:29-05-2016 02
Exécuté par Kevin (administrateur) sur KEVIN-PC (29-05-2016 17:42:33)
Exécuté depuis C:\Users\Kevin\Downloads
Profils chargés: Kevin (Profils disponibles: Kevin & Jean)
Platform: Microsoft Windows 10 Famille (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
() C:\Program Files\D-Link\DWA-525 revA\ANIWConnService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hi-Rez Studios) C:\Program Files\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
() C:\Windows\System32\PnkBstrA.exe
(Razer Inc.) C:\Program Files\Razer\Razer Cortex\RzKLService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(D-Link Corp.) C:\Program Files\D-Link\DWA-525 revA\AirNCFG.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12214528 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-23] (NVIDIA Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [D-Link D-Link DWA-525] => C:\Program Files\D-Link\DWA-525 revA\AirNCFG.exe [1071560 2012-12-16] (D-Link Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated)
HKLM\...\Run: [RazerCortex] => C:\Program Files\Razer\Razer Cortex\RazerCortex.exe [98256 2015-03-12] (Razer Inc.)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [BlueStacks Agent] => C:\Program Files\BlueStacks\HD-Agent.exe [912920 2016-03-11] (BlueStack Systems, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM\...\Run: [Aeria Ignite] => C:\Program Files\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Kevin\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.exe [426600 2016-01-11] (CyberGhost S.R.L.)
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\Run: [Xvid] => C:\Program Files\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\Run: [uTorrent] => C:\Users\Kevin\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-05-21] (BitTorrent Inc.)
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3576664 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\Run: [BlueStacks Agent] => C:\Program Files\BlueStacks\HD-Agent.exe [912920 2016-03-11] (BlueStack Systems, Inc.)
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\...\MountPoints2: {10c33b18-3840-11e5-93d2-001e902ce65b} - "Z:\setup.exe" 
HKU\S-1-5-21-1390765117-513661198-3067191156-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [792064 2015-07-10] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{4b62a188-a15d-4874-bfbe-c3d9dff8bb55}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{657ae517-ee29-40e5-8aef-b1bcf1adaceb}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{726de683-cc51-473c-b098-f2969579597e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bca6073a-819c-47e3-bc90-60be60277f4a}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{C5DC79D4-108F-4315-BFE1-1373A94BEA11}: [NameServer] 95.169.183.219,89.41.60.38
ManualProxies: 

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
URLSearchHook: [S-1-5-21-1390765117-513661198-3067191156-1000] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKU\S-1-5-21-1390765117-513661198-3067191156-1000 -> DefaultScope {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1390765117-513661198-3067191156-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1390765117-513661198-3067191156-1000 -> {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = hxxp://go-search.ru/search?q={searchTerms}
BHO: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-10] (Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Pas de nom -> {C9C42510-9B41-42c1-9DCD-7282A2D07C61}C -> Pas de fichier
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-10] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
Toolbar: HKLM - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll [2014-11-07] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Pas de fichier]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1390765117-513661198-3067191156-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kevin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1390765117-513661198-3067191156-1000: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Pas de fichier]
FF HKLM\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files\Epson Software\E-Web Print\Firefox Add-on
FF Extension: E-Web Print - C:\Program Files\Epson Software\E-Web Print\Firefox Add-on [2015-12-09] [non signé]

Chrome: 
=======
CHR HomePage: Default -> mail.ru/cnt/11956636?rciguc__PARAM__
CHR Profile: C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-28]
CHR Extension: (YouTube) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-28]
CHR Extension: (Adblock Plus) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-05-28]
CHR Extension: (Tampermonkey) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-05-28]
CHR Extension: (Slither.io Mods, Zoom, Unlock Skins, Bots) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eogeabecipmckmihpmkgjbghbffcebcf [2016-05-28]
CHR Extension: (Stylish) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2016-05-28]
CHR Extension: (HTTPS Everywhere) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2016-05-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-28]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-05-28]
CHR Extension: (Treasure Arena) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hedpcboianohjgdhoblpcpgapknkoojm [2016-05-28]
CHR Extension: (Space) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hepnfgiockihbakjbhonkinpagbkaobo [2016-05-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-28]
CHR Extension: (Gmail) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-28]
CHR HKLM\...\Chrome\Extension: [bgcifljfapbhgiehkjlckfjmgeojijcb] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ehfjihahbphdpljpiadbkmgmhnfehhgi] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
OPR StartupUrls: "hxxp://chatozov.ru/?utm_content=706daf58c4c295e14015a61bf477685c&utm_source=startpm&utm_term=0B8E985CAD4223FD2818F385176F8F18&utm_d=20160527"

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-04-04] (BitRaider, LLC)
S3 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [437784 2016-03-11] (BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [417304 2016-03-11] (BlueStack Systems, Inc.)
S3 BstHdUpdaterSvc; C:\Program Files\BlueStacks\HD-UpdaterService.exe [880152 2016-03-11] (BlueStack Systems, Inc.)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-01-11] (CyberGhost S.R.L)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584 2015-06-18] (Disc Soft Ltd)
R2 D_Link_DWA-525_WPS; C:\Program Files\D-Link\DWA-525 revA\ANIWConnService.exe [53248 2010-07-12] () [Fichier non signé]
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc.exe [126128 2012-05-17] (Seiko Epson Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [929728 2016-01-23] (NVIDIA Corporation)
R2 HiPatchService; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [9216 2015-03-12] (Hi-Rez Studios) [Fichier non signé]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S4 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
S2 MyEpson Portal Service; C:\Program Files\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-23] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [5179328 2016-01-23] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [3997120 2016-01-23] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2015-04-18] ()
S2 Razer Game Scanner Service; C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-03-10] ()
R2 RzKLService; C:\Program Files\Razer\Razer Cortex\RzKLService.exe [129168 2015-03-12] (Razer Inc.)
S3 TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH) [Fichier non signé]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)
S2 Poletherclnsrv; "C:\Program Files\Polether\Poletherclnsrv.exe32" {79740E79-A383-47A7-B513-3DF6563D007F} {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83} [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 anodlwf; C:\WINDOWS\System32\DRIVERS\anodlwf.sys [12800 2010-05-03] ()
S3 BRDriver_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver.sys [66824 2016-04-05] (BitRaider)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [140856 2016-03-11] (BlueStack Systems)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [25016 2015-08-01] (Disc Soft Ltd)
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2015-07-14] (LogMeIn, Inc.)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo_0115.sys [38144 2015-07-07] (SoftEther Corporation)
R3 netr28; C:\WINDOWS\system32\DRIVERS\netr28.sys [1527456 2015-06-12] (MediaTek Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [25536 2016-01-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [42128 2015-12-18] (NVIDIA Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [492032 2015-07-10] (Realtek                                            )
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [20416 2015-03-10] (Razer, Inc.)
S3 SEE; C:\WINDOWS\System32\drivers\see.sys [53888 2015-07-06] (SoftEther Corporation)
R1 SeLow; C:\WINDOWS\system32\DRIVERS\SeLow_x86.sys [50576 2015-07-30] (SoftEther Corporation)
S0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2015-08-01] (Duplex Secure Ltd.)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [128568 2015-08-01] (Duplex Secure Ltd)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [27136 2009-09-16] (Tunngle.net)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [65768 2016-05-17] (Wellbia.com)
U3 idsvc; pas de ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-05-29 17:39 - 2016-05-29 17:42 - 00074490 _____ C:\Users\Kevin\Downloads\Addition.txt
2016-05-29 17:36 - 2016-05-29 17:42 - 00020766 _____ C:\Users\Kevin\Downloads\FRST.txt
2016-05-29 17:36 - 2016-05-29 17:42 - 00000000 ____D C:\FRST
2016-05-29 17:35 - 2016-05-29 17:35 - 01734656 _____ (Farbar) C:\Users\Kevin\Downloads\FRST.exe
2016-05-29 16:22 - 2016-05-29 16:22 - 00001793 _____ C:\Users\Kevin\Desktop\ZHPFix[R1].txt
2016-05-29 16:21 - 2016-05-29 16:21 - 00001793 _____ C:\Users\Kevin\Desktop\ZHPFixReport.txt
2016-05-29 16:20 - 2016-05-29 16:20 - 00001864 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-05-29 16:20 - 2016-05-29 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-05-29 16:20 - 2016-05-29 16:20 - 00000000 ____D C:\Program Files\ZHPFix
2016-05-29 16:19 - 2016-05-29 16:19 - 03521617 _____ (Nicolas Coolman ) C:\Users\Kevin\Downloads\ZHPFix.exe
2016-05-29 13:26 - 2016-05-29 13:26 - 00178472 _____ C:\Users\Kevin\Desktop\rapport.txt
2016-05-29 13:26 - 2016-05-29 13:26 - 00178469 _____ C:\Users\Kevin\Desktop\ZHPDiag.txt
2016-05-29 13:00 - 2016-05-29 16:21 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\ZHP
2016-05-29 13:00 - 2016-05-29 13:00 - 02210304 _____ C:\Users\Kevin\Downloads\ZHPDiag3.exe
2016-05-29 13:00 - 2016-05-29 13:00 - 00000903 _____ C:\Users\Kevin\Desktop\ZHPDiag.lnk
2016-05-29 12:27 - 2016-05-29 12:27 - 00016148 _____ C:\WINDOWS\system32\KEVIN-PC_Kevin_HistoryPrediction.bin
2016-05-29 12:17 - 2016-05-29 12:17 - 03678272 _____ C:\Users\Kevin\Downloads\adwcleaner_5.118 (1).exe
2016-05-28 22:49 - 2016-05-28 22:49 - 00001273 _____ C:\m.txt
2016-05-28 22:48 - 2016-05-28 23:02 - 00000080 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\μTorrent.lnk
2016-05-28 22:48 - 2016-05-28 23:02 - 00000080 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fonctionnalites optionnelles.lnk
2016-05-28 22:48 - 2016-05-28 23:02 - 00000080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\μTorrent.lnk
2016-05-28 22:48 - 2016-05-28 23:01 - 00000080 _____ C:\Users\Kevin\Desktop\μTorrent.lnk
2016-05-28 21:59 - 2016-05-25 17:02 - 02936832 _____ C:\Users\Kevin\Desktop\Turtle.EXE
2016-05-28 21:48 - 2016-05-28 21:49 - 22851472 _____ (Malwarebytes ) C:\Users\Kevin\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-05-28 21:46 - 2016-05-28 21:46 - 00003508 _____ C:\Users\Kevin\Downloads\Crack By FlashShzer.rar
2016-05-28 21:43 - 2016-05-28 21:43 - 00019325 _____ C:\Users\Kevin\Downloads\BytesRevert (XIN7AX).zip
2016-05-28 21:40 - 2016-05-28 21:41 - 24346445 _____ C:\Users\Kevin\Downloads\mbam+key.rar
2016-05-28 21:32 - 2016-05-28 21:32 - 24321613 _____ C:\Users\Kevin\Downloads\Malwarebytes Anti-Malware 2.1.8.1057 + Key.zip
2016-05-28 20:26 - 2016-05-28 20:26 - 00987728 _____ (Google Inc.) C:\Users\Kevin\Downloads\ChromeSetup.exe
2016-05-28 19:16 - 2016-05-28 19:17 - 00000000 ____D C:\Users\Kevin\Documents\TMNT_MiM
2016-05-28 19:01 - 2016-05-28 23:01 - 00001321 _____ C:\Users\Kevin\Desktop\Teenage Mutant Ninja Turtles Mutants in Manhattan.lnk
2016-05-28 19:01 - 2016-05-28 19:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teenage Mutant Ninja Turtles Mutants in Manhattan
2016-05-28 18:47 - 2016-05-28 19:15 - 00000000 ____D C:\Program Files\Teenage Mutant Ninja Turtles Mutants in Manhattan
2016-05-28 00:29 - 2016-05-28 00:29 - 03678272 _____ C:\Users\Kevin\Downloads\adwcleaner_5.118.exe
2016-05-28 00:17 - 2016-05-28 15:46 - 00000000 ____D C:\Users\Kevin\AppData\Local\Host Service
2016-05-28 00:07 - 2016-05-29 17:07 - 00000000 ____D C:\Users\Kevin\AppData\Local\syslog
2016-05-28 00:01 - 2016-05-28 00:02 - 02923369 _____ C:\Users\Kevin\Downloads\teenage-mutant-ninja-turtles-mutants-in-manhattan-trainer-7-v1.0-lirw-ghl.rar
2016-05-27 23:54 - 2016-05-27 23:54 - 00030859 _____ C:\Users\Kevin\Downloads\Teenage.Mutant.Ninja.Turtles.Mutants.in.Manhattan-CODEX.torrent
2016-05-27 14:09 - 2016-05-27 14:09 - 00051356 _____ C:\Users\Kevin\Downloads\maxconvert_v0_71.rar
2016-05-26 20:20 - 2016-05-26 20:20 - 3199631360 _____ C:\Users\Kevin\Downloads\DragonBall Z - Budokai Tenkaichi 3 (Europe, Australia) (En,Ja,Fr,De,Es,It).iso
2016-05-25 16:32 - 2016-05-28 23:01 - 00001847 _____ C:\Users\Kevin\Desktop\YoutubersLife - Raccourci.lnk
2016-05-25 16:19 - 2016-05-25 16:19 - 00000000 ____D C:\Users\Kevin\Documents\U-Play online
2016-05-25 16:19 - 2016-05-25 16:19 - 00000000 ____D C:\Users\Kevin\AppData\LocalLow\U-Play online
2016-05-19 12:54 - 2016-05-29 16:54 - 00000943 _____ C:\WINDOWS\Tasks\EPSON XP-235 Series Update {1DBE8EAA-662E-4C75-AFD8-69913575B2B2}.job
2016-05-17 17:32 - 2016-05-17 17:32 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\HaMaDaS
2016-05-17 17:32 - 2016-05-17 17:32 - 00000000 _____ C:\Users\Kevin\AppData\Roaming\1.bin
2016-05-16 18:02 - 2016-05-17 17:50 - 00131584 ____H C:\WINDOWS\system32\Bypass.dll
2016-05-16 18:01 - 2016-05-16 18:01 - 00324034 _____ C:\Users\Kevin\Desktop\ItemBubble.AP
2016-05-16 17:59 - 2016-05-16 17:59 - 00324034 _____ C:\Users\Kevin\Desktop\ItemBubble.ap.txt
2016-05-16 17:44 - 2016-05-23 12:54 - 00000000 ____D C:\Users\Kevin\Desktop\Nouveau dossier (2)
2016-05-16 01:27 - 2016-05-17 17:41 - 00065768 _____ (Wellbia.com) C:\WINDOWS\xhunter1.sys
2016-05-16 00:50 - 2016-05-28 23:01 - 00001698 _____ C:\Users\Kevin\Desktop\S4 League.lnk
2016-05-16 00:38 - 2016-05-28 23:03 - 00002053 _____ C:\Users\Public\Desktop\Aeria Ignite.lnk
2016-05-16 00:38 - 2016-05-16 00:38 - 00000000 ____D C:\Program Files\Aeria Games
2016-05-15 23:57 - 2016-05-25 15:42 - 00000000 ____D C:\AeriaGames
2016-05-15 22:51 - 2016-05-15 22:51 - 00000213 _____ C:\Users\Kevin\Desktop\Team Fortress 2.url
2016-05-15 20:32 - 2016-05-15 20:32 - 00000216 _____ C:\Users\Kevin\Desktop\Why So Evil.url
2016-05-15 19:14 - 2016-05-15 19:14 - 05292054 _____ C:\Users\Kevin\Desktop\ezezqe.bmp
2016-05-13 23:13 - 2016-05-13 23:13 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-05-13 22:59 - 2016-05-13 22:59 - 00000000 ____D C:\3919dd89be39895fb9de
2016-05-13 22:48 - 2016-05-13 23:33 - 00000000 ____D C:\Users\Kevin\Desktop\CRS - 0.1.0.0a
2016-05-13 12:16 - 2016-04-22 07:44 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-13 12:16 - 2016-04-15 08:43 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-05-13 12:16 - 2016-04-15 07:49 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-05-13 12:16 - 2016-04-15 07:39 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-13 12:16 - 2016-04-15 07:37 - 02986496 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-05-13 12:16 - 2016-04-15 07:36 - 01132544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-05-13 12:16 - 2016-04-09 12:54 - 06266200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-13 12:16 - 2016-04-09 12:50 - 01537112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-05-13 12:16 - 2016-04-09 12:45 - 01855328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-05-13 12:16 - 2016-04-09 12:45 - 00794888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-13 12:16 - 2016-04-09 11:50 - 01515936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-13 12:16 - 2016-04-09 10:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-05-13 12:16 - 2016-04-09 10:09 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-13 12:16 - 2016-04-09 10:09 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-05-13 12:16 - 2016-04-09 09:55 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-13 12:16 - 2016-04-09 09:54 - 00768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-13 12:16 - 2016-04-09 09:52 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-05-13 12:16 - 2016-04-09 09:38 - 00464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-13 12:16 - 2016-04-09 09:18 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-05-13 12:15 - 2016-04-15 07:55 - 19325952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-13 12:15 - 2016-04-15 07:42 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-05-13 12:15 - 2016-04-15 07:41 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-13 12:15 - 2016-04-09 12:52 - 00502504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-13 12:15 - 2016-04-09 12:47 - 01707872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-13 12:15 - 2016-04-09 12:46 - 00274272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-05-13 12:15 - 2016-04-09 12:45 - 01396072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-13 12:15 - 2016-04-09 10:13 - 05160960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-05-13 12:15 - 2016-04-09 10:09 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-13 12:15 - 2016-04-09 09:18 - 11264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-13 12:15 - 2016-04-09 09:14 - 18798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-05-13 11:59 - 2016-05-28 23:03 - 00001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FunCraft (Launcher Minecraft).lnk
2016-05-13 11:59 - 2016-05-28 23:03 - 00001133 _____ C:\Users\Public\Desktop\FunCraft (Launcher Minecraft).lnk
2016-05-13 11:59 - 2016-05-13 11:59 - 00000000 ____D C:\Program Files\FunCraft
2016-05-11 16:15 - 2016-05-28 00:46 - 00545898 _____ C:\WINDOWS\system32\perfh011.dat
2016-05-11 16:15 - 2016-05-28 00:46 - 00152110 _____ C:\WINDOWS\system32\perfc011.dat
2016-05-11 16:15 - 2016-05-11 16:08 - 00144476 _____ C:\WINDOWS\system32\perfi011.dat
2016-05-11 16:15 - 2016-05-11 16:08 - 00033362 _____ C:\WINDOWS\system32\perfd011.dat
2016-05-11 16:09 - 2016-05-11 16:09 - 00000000 ____D C:\WINDOWS\system32\ja
2016-05-11 15:41 - 2015-07-09 22:41 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\lzhfldr2.dll
2016-05-11 12:18 - 2016-05-11 12:18 - 01688728 ____T (Google Inc.) C:\Users\Kevin\Desktop\goopdate.dll
2016-05-10 21:54 - 2016-05-10 21:54 - 00000000 ____D C:\Program Files\Common Files\Java
2016-05-09 18:16 - 2016-05-09 18:16 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\3909
2016-05-09 18:15 - 2016-05-28 23:03 - 00001083 _____ C:\Users\Public\Desktop\Papers Please.lnk
2016-05-09 18:15 - 2016-05-09 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Papers Please
2016-05-09 18:15 - 2016-05-09 18:15 - 00000000 ____D C:\Program Files\Papers Please
2016-05-09 17:49 - 2016-05-28 23:01 - 00001950 _____ C:\Users\Kevin\Desktop\CyberGhost 5.lnk
2016-05-09 17:49 - 2016-05-28 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 5

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-05-29 17:42 - 2014-10-20 17:18 - 00001082 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-29 17:12 - 2014-03-16 21:42 - 00000000 ____D C:\Users\Kevin\AppData\Local\CrashDumps
2016-05-29 17:09 - 2015-07-10 10:27 - 00000000 ____D C:\WINDOWS\INF
2016-05-29 16:57 - 2014-08-14 14:08 - 00000000 ____D C:\Users\Kevin\AppData\Local\ElevatedDiagnostics
2016-05-29 16:53 - 2014-05-01 22:16 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-05-29 15:01 - 2015-12-10 13:01 - 00000278 _____ C:\WINDOWS\Tasks\_DEFAULT.job
2016-05-29 12:42 - 2014-10-20 17:18 - 00001078 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-29 12:26 - 2015-07-30 22:08 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-29 12:26 - 2015-07-10 11:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-29 12:25 - 2015-07-10 08:59 - 01048576 ___SH C:\WINDOWS\system32\config\BBI
2016-05-29 12:23 - 2014-09-07 17:36 - 00000000 ____D C:\AdwCleaner
2016-05-29 12:11 - 2015-08-02 13:06 - 00000000 ____D C:\WINDOWS\Minidump
2016-05-29 12:11 - 2015-07-10 11:53 - 00432728 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-29 12:11 - 2013-02-27 16:43 - 00057856 ____N C:\WINDOWS\Minidump\052916-41328-01.dmp
2016-05-28 23:34 - 2015-07-14 23:03 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-05-28 23:03 - 2016-04-10 16:13 - 00000894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\60 Seconds.lnk
2016-05-28 23:03 - 2016-04-10 16:13 - 00000876 _____ C:\Users\Public\Desktop\60 Seconds.lnk
2016-05-28 23:03 - 2016-04-04 21:18 - 00000873 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2016-05-28 23:03 - 2016-03-27 20:12 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-05-28 23:03 - 2016-03-10 18:02 - 00001106 _____ C:\Users\Public\Desktop\Play Saints Row Gat out of Hell.lnk
2016-05-28 23:03 - 2016-02-06 22:17 - 00000920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LEGO Marvel's Avengers.lnk
2016-05-28 23:03 - 2016-01-20 19:20 - 00001150 _____ C:\Users\Public\Desktop\Dragonball Xenoverse.lnk
2016-05-28 23:03 - 2016-01-01 19:43 - 00001682 _____ C:\Users\Public\Desktop\BlueStacks.lnk
2016-05-28 23:03 - 2015-11-18 15:31 - 00001208 _____ C:\Users\Public\Desktop\Hearthstone.lnk
2016-05-28 23:03 - 2015-10-30 17:46 - 00000984 _____ C:\Users\Public\Desktop\Steam.lnk
2016-05-28 23:03 - 2015-10-22 20:35 - 00000962 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Saints Row Gat out of Hell.lnk
2016-05-28 23:03 - 2015-08-01 13:33 - 00001989 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-05-28 23:03 - 2015-07-30 22:23 - 00001463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-05-28 23:03 - 2015-07-14 22:56 - 00001150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-05-28 23:03 - 2015-07-14 22:56 - 00001063 _____ C:\Users\Public\Desktop\Opera.lnk
2016-05-28 23:03 - 2015-07-13 14:29 - 00001256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015 (32 Bit).lnk
2016-05-28 23:03 - 2015-07-13 14:11 - 00001362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2016-05-28 23:03 - 2015-07-10 22:23 - 00001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
2016-05-28 23:03 - 2015-06-01 17:53 - 00001123 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-28 23:03 - 2015-04-12 15:01 - 00001260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2016-05-28 23:03 - 2015-04-12 15:01 - 00001242 _____ C:\Users\Public\Desktop\paint.net.lnk
2016-05-28 23:03 - 2015-03-18 23:21 - 00000943 _____ C:\Users\Public\Desktop\Tunngle.lnk
2016-05-28 23:03 - 2015-01-10 12:35 - 00001102 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-05-28 23:03 - 2014-10-20 17:20 - 00002288 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-28 23:03 - 2014-10-20 17:20 - 00002270 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-28 23:03 - 2014-10-17 20:22 - 00001099 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-05-28 23:03 - 2014-09-15 17:29 - 00001981 _____ C:\Users\Public\Desktop\Wireless Connection Manager.lnk
2016-05-28 23:03 - 2014-07-27 20:58 - 00001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-28 23:03 - 2014-02-27 21:11 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\uTorrent
2016-05-28 23:03 - 2014-02-27 18:38 - 00000959 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-05-28 23:03 - 2014-02-27 18:29 - 00001018 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-05-28 23:02 - 2016-03-27 20:16 - 00001742 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\BlueStacks.lnk
2016-05-28 23:02 - 2016-01-20 16:00 - 00000980 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prototype-Razor1911 FULL PC ISO MAXSPEED.lnk
2016-05-28 23:02 - 2015-12-31 18:19 - 00001048 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iPadian.lnk
2016-05-28 23:02 - 2015-10-11 17:25 - 00001275 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft.lnk
2016-05-28 23:02 - 2015-08-01 15:18 - 00000228 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lecteur de disquettes (A).lnk
2016-05-28 23:02 - 2015-07-30 23:14 - 00002416 _____ C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-05-28 23:01 - 2016-03-08 12:26 - 00001089 _____ C:\Users\Kevin\Desktop\PhotoFiltre 7.lnk
2016-05-28 23:01 - 2016-03-04 22:00 - 00001606 _____ C:\Users\Kevin\Desktop\PlantsVsZombies - Raccourci.lnk
2016-05-28 23:01 - 2016-03-04 20:48 - 00001143 _____ C:\Users\Kevin\Desktop\Plants vs. Zombies.lnk
2016-05-28 23:01 - 2016-03-03 18:59 - 00002304 _____ C:\Users\Kevin\Desktop\Splinter Cell Blacklist.lnk
2016-05-28 23:01 - 2016-02-24 15:36 - 00001759 _____ C:\Users\Kevin\Desktop\Conviction_game - Raccourci.lnk
2016-05-28 23:01 - 2016-01-11 12:03 - 00001613 _____ C:\Users\Kevin\Desktop\LEGO_Worlds - Raccourci.lnk
2016-05-28 23:01 - 2015-11-01 22:11 - 00001158 _____ C:\Users\Kevin\Desktop\OpenOffice 4.1.1.lnk
2016-05-28 23:01 - 2015-08-22 13:19 - 00001108 _____ C:\Users\Kevin\Desktop\Battle.net.lnk
2016-05-28 23:01 - 2015-07-27 00:27 - 00001881 _____ C:\Users\Kevin\Desktop\PCSX2 1.2.1 (r5875).lnk
2016-05-28 23:01 - 2015-05-13 13:30 - 00001124 _____ C:\Users\Kevin\Desktop\Actionaz 2.lnk
2016-05-28 23:01 - 2015-03-21 17:36 - 00001099 _____ C:\Users\Kevin\Desktop\Hard Time.lnk
2016-05-28 23:01 - 2014-12-13 00:29 - 00001268 _____ C:\Users\Kevin\Desktop\Notepad.lnk
2016-05-28 23:01 - 2014-02-27 18:50 - 00003123 _____ C:\Users\Kevin\Desktop\Microsoft Word 2010.lnk
2016-05-28 23:01 - 2014-02-27 18:50 - 00003045 _____ C:\Users\Kevin\Desktop\Microsoft Excel 2010.lnk
2016-05-28 22:52 - 2016-02-24 19:18 - 00000290 __RSH C:\Users\Kevin\ntuser.pol
2016-05-28 22:52 - 2016-02-24 19:18 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-05-28 22:52 - 2015-07-30 22:13 - 00000000 ____D C:\Users\Kevin
2016-05-28 22:48 - 2016-03-08 12:26 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
2016-05-28 22:48 - 2016-03-04 20:48 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plants vs. Zombies
2016-05-28 22:48 - 2015-11-14 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assassins Creed IV Black Flag
2016-05-28 22:48 - 2015-10-06 22:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sleeping Dogs Definitive Edition
2016-05-28 22:48 - 2015-07-25 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-05-28 22:48 - 2015-07-14 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glyph
2016-05-28 22:48 - 2015-06-01 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-05-28 22:48 - 2015-05-21 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blablatopia Game - BlablaTopia.com
2016-05-28 22:48 - 2015-04-05 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragonball Xenoverse
2016-05-28 22:48 - 2015-03-18 23:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2016-05-28 22:48 - 2014-11-02 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-05-28 22:48 - 2014-09-18 21:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Mouse Auto Clicker
2016-05-28 22:48 - 2014-05-10 13:32 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-05-28 22:48 - 2014-05-10 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-05-28 22:48 - 2014-04-05 11:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
2016-05-28 21:52 - 2014-05-10 16:43 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-05-28 21:50 - 2015-06-01 17:53 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-05-28 21:43 - 2013-02-27 17:17 - 00000000 ____D C:\Users\Kevin\AppData\Local\Google
2016-05-28 20:33 - 2013-02-27 17:17 - 00000000 ____D C:\Program Files\Google
2016-05-28 20:28 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-28 19:13 - 2015-10-30 17:46 - 00000000 ____D C:\Program Files\Steam
2016-05-28 15:13 - 2014-02-27 18:33 - 00000000 ____D C:\Users\Kevin\AppData\Local\Adobe
2016-05-28 00:46 - 2015-07-30 22:11 - 01974104 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-28 00:46 - 2015-07-10 15:30 - 00188698 _____ C:\WINDOWS\system32\perfc00C.dat
2016-05-28 00:46 - 2015-07-10 15:30 - 00114174 _____ C:\WINDOWS\system32\perfh00C.dat
2016-05-28 00:41 - 2014-04-11 14:55 - 00000000 ____D C:\Users\Kevin\AppData\Local\Unity
2016-05-28 00:03 - 2009-07-14 04:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-05-27 23:25 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\rescache
2016-05-27 18:17 - 2014-06-17 20:01 - 00007645 _____ C:\Users\Kevin\AppData\Local\Resmon.ResmonCfg
2016-05-27 18:07 - 2014-12-06 14:50 - 00000000 ____D C:\ProgramData\BlueStacks
2016-05-27 17:18 - 2015-07-10 10:28 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-27 14:08 - 2014-02-27 23:32 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\Skype
2016-05-25 16:06 - 2016-02-28 22:38 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\.minecraftsp
2016-05-25 16:05 - 2016-02-28 22:43 - 00000024 _____ C:\Users\Kevin\AppData\AdobeACBCache.dat
2016-05-25 11:51 - 2016-04-12 13:55 - 00000000 ____D C:\WINDOWS\Panther
2016-05-25 11:28 - 2016-02-13 15:02 - 00000000 ___HD C:\$WINDOWS.~BT
2016-05-22 17:58 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-05-21 16:09 - 2014-02-27 19:18 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\.ascentia
2016-05-19 12:11 - 2015-11-06 20:09 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-17 18:37 - 2015-07-14 22:54 - 00000000 ____D C:\Program Files\Opera
2016-05-16 15:58 - 2014-06-29 21:59 - 00000000 __SHD C:\WINDOWS\system32\AI_RecycleBin
2016-05-16 15:10 - 2014-10-09 20:21 - 00000000 ____D C:\Users\Kevin\AppData\Local\Akamai
2016-05-16 00:38 - 2014-12-15 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames
2016-05-15 22:51 - 2014-03-04 21:01 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-05-15 22:50 - 2014-03-04 20:36 - 00000000 ____D C:\Program Files\Common Files\Steam
2016-05-14 13:04 - 2015-07-10 10:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-13 23:02 - 2015-07-10 15:33 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-13 11:59 - 2016-02-28 22:38 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\.funcraft
2016-05-12 22:17 - 2016-04-14 23:03 - 00000000 ____D C:\WINDOWS\system32\MpEngineStore
2016-05-12 22:17 - 2014-03-25 12:13 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-12 21:14 - 2014-03-25 12:13 - 136686448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-05-12 19:17 - 2015-07-10 15:30 - 00000000 ____D C:\WINDOWS\OCR
2016-05-11 21:50 - 2015-10-02 16:51 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-05-11 21:50 - 2015-10-02 16:51 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-05-11 18:28 - 2015-01-10 12:35 - 00000000 ____D C:\Users\Kevin\AppData\Local\Battle.net
2016-05-11 18:27 - 2015-01-10 12:34 - 00000000 ____D C:\Program Files\Battle.net
2016-05-11 16:10 - 2015-07-30 22:46 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2016-05-11 16:10 - 2015-07-10 15:30 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-05-11 16:10 - 2015-07-10 15:30 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-05-11 16:10 - 2015-07-10 15:30 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-05-11 16:10 - 2015-07-10 15:30 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-05-11 16:10 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-05-11 16:10 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-11 16:10 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-05-11 16:10 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-05-11 16:10 - 2015-07-10 08:59 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\system32\Com
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\IME
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\WINDOWS\Help
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\Program Files\Windows Defender
2016-05-11 16:09 - 2015-07-10 10:28 - 00000000 ____D C:\Program Files\Common Files\System
2016-05-11 16:09 - 2015-07-10 08:59 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-05-11 16:09 - 2015-07-10 08:59 - 00000000 ____D C:\WINDOWS\servicing
2016-05-10 21:55 - 2014-02-27 20:40 - 00000000 ____D C:\ProgramData\Oracle
2016-05-10 21:54 - 2016-03-20 00:34 - 00000000 ____D C:\Users\Kevin\.oracle_jre_usage
2016-05-10 21:54 - 2016-03-20 00:33 - 00000000 ____D C:\Program Files\Java
2016-05-10 21:53 - 2015-04-26 15:48 - 00095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2016-05-10 16:54 - 2014-02-27 18:00 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-05-10 16:53 - 2015-10-19 17:23 - 00000000 ____D C:\Program Files\R.G. Mechanics
2016-05-10 16:53 - 2014-07-04 22:48 - 00000000 ____D C:\ProgramData\Orbit
2016-05-10 16:53 - 2014-03-12 22:32 - 00000000 ____D C:\Users\Kevin\Documents\My Games
2016-05-10 16:52 - 2016-04-02 17:25 - 00000000 ____D C:\Program Files\DLLEscort
2016-05-10 16:48 - 2016-03-12 21:28 - 00000000 ____D C:\Users\Kevin\AppData\Roaming\InstallShield Installation Information
2016-05-10 16:41 - 2015-06-21 13:32 - 00000000 ____D C:\Program Files\SoftEther VPN Client
2016-05-10 16:36 - 2015-09-25 21:35 - 00000000 ____D C:\Program Files\2K Games
2016-05-10 16:35 - 2015-07-14 13:25 - 00000000 ____D C:\Users\Kevin\AppData\Local\Glyph
2016-05-10 16:35 - 2015-07-14 13:25 - 00000000 ____D C:\ProgramData\Glyph
2016-05-10 16:35 - 2015-07-14 13:24 - 00000000 ____D C:\Program Files\Glyph
2016-05-10 16:33 - 2015-03-14 18:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts
2016-05-10 16:33 - 2014-02-27 18:10 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2016-05-10 16:31 - 2016-03-03 17:14 - 00000000 ____D C:\Users\Kevin\Documents\Ubisoft
2016-05-09 20:49 - 2015-08-26 16:36 - 00000000 ___RD C:\Program Files\Skype
2016-05-09 20:49 - 2014-02-27 23:31 - 00000000 ____D C:\ProgramData\Skype
2016-05-09 17:53 - 2015-03-02 16:45 - 00000000 ____D C:\Users\Kevin\AppData\Local\CyberGhost
2016-05-09 17:49 - 2014-11-13 23:02 - 00000000 ____D C:\Program Files\CyberGhost 5
2016-05-09 16:12 - 2015-07-30 22:59 - 00000000 ____D C:\Users\Kevin\AppData\Local\Packages

==================== Fichiers à la racine de certains dossiers =======

2015-02-14 22:58 - 2012-07-28 11:33 - 0000079 _____ () C:\Program Files\update-prototype2.bat
2015-02-14 22:58 - 2012-06-30 21:13 - 0003153 _____ () C:\Program Files\visit-nosteam.ro.html
2016-05-17 17:32 - 2016-05-17 17:32 - 0000000 _____ () C:\Users\Kevin\AppData\Roaming\1.bin
2014-09-15 17:27 - 2014-09-15 17:28 - 0000258 _____ () C:\Users\Kevin\AppData\Roaming\ANICONFIG_{657AE517-EE29-40E5-8AEF-B1BCF1ADACEB}.ini
2014-04-02 10:24 - 2014-04-02 10:24 - 0000036 _____ () C:\Users\Kevin\AppData\Roaming\DOK52P4Q3J.dat
2014-03-05 00:20 - 2014-03-05 14:10 - 0138904 _____ () C:\Users\Kevin\AppData\Roaming\PnkBstrK.sys
2014-10-09 22:23 - 2014-10-17 13:57 - 0001042 _____ () C:\Users\Kevin\AppData\Roaming\SpeedRunnersLog.txt
2014-07-23 14:34 - 2014-07-23 14:34 - 0000036 _____ () C:\Users\Kevin\AppData\Roaming\SuYZkvrV.tmp
2014-02-27 23:05 - 2014-03-31 13:05 - 0000088 _____ () C:\Users\Kevin\AppData\Roaming\WB.CFG
2014-03-16 18:11 - 2016-03-24 21:17 - 0005120 _____ () C:\Users\Kevin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-17 20:01 - 2016-05-27 18:17 - 0007645 _____ () C:\Users\Kevin\AppData\Local\Resmon.ResmonCfg
2015-12-31 18:23 - 2015-12-31 19:50 - 0000017 _____ () C:\Users\Kevin\AppData\Local\si
2015-07-30 22:07 - 2015-07-30 22:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-05-28 19:56

==================== Fin de FRST.txt ============================