Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:29-05-2016 02 Exécuté par Sergio (administrateur) sur SERGIOFERNANDES (01-06-2016 13:38:04) Exécuté depuis C:\Users\Sergio\Desktop Profils chargés: Sergio (Profils disponibles: Sergio) Platform: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (UPEK Inc.) C:\Program Files\Common Files\SPBA\upeksvr.exe (Egis Technology Inc.) C:\Program Files\Acer Bio Protection\CompPtcVUI.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe () C:\Program Files\Acer\Empowering Technology\Service\ETService.exe (Egis Technology Inc.) C:\Program Files\Acer Bio Protection\BASVC.exe () C:\ProgramData\Lamzap\Lamzap.exe (O2Micro International) C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe () C:\Windows\System32\PnkBstrA.exe (TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe (TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe (Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Toshiba Registration] => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [134032 2009-07-30] (Toshiba Europe GmbH) HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation) HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-07-29] () HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1190920 2009-08-24] (Dritek System Inc.) HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-03-07] (Acer Incorporated) HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated) HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [413696 2008-09-23] (Acer Inc.) HKLM\...\Run: [VitaKeyPdtWzd] => C:\Program Files\Acer Bio Protection\PdtWzd.exe [3568640 2009-06-18] (Egis Technology Inc.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.) HKLM\...\Run: [Dolby Home Theater v4] => C:\Program Files\Dolby Home Theater v4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.) HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-02-14] (Advanced Micro Devices, Inc.) HKLM\...\Run: [Adobe ARM] => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" HKLM\...\Run: [] => [X] HKLM\...\Run: [Reader Application Helper] => C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe [898952 2012-11-08] (Sony Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10996368 2012-06-11] (Realtek Semiconductor) HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] () HKLM\...\Run: [WinampAgent] => "C:\Program Files\Winamp\winampa.exe" HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe [2081792 2013-03-29] (CHENGDU YIWO Tech Development Co., Ltd) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2015-04-07] (Apple Inc.) HKLM\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs, Winlogon\Notify\spba: C:\Program Files\Common Files\SPBA\homefus2.dll [2009-05-28] (UPEK Inc.) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [msnmsgr] => C:\Program Files\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Facebook Update] => C:\Users\Sergio\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-09-12] (Facebook Inc.) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [EA Core] => "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Spotify Web Helper] => C:\Users\Sergio\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-27] (Spotify Ltd) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Reader 11.0\Reader\AdobeCollabSync.exe [759712 2014-09-12] (Adobe Systems Incorporated) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Sergio\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [HFSSync] => C:\Program Files\Syncthing\HFSSync.exe HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [AceStream] => C:\Users\Sergio\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2016-05-10] () HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Tomtomax MaxiBox] => C:\Program Files\Tomtomax Maxi-Box V3\Tomtomax_MaxiBox.exe [1325056 2014-10-11] (Tomtomax & KoakDesign) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Spotify] => C:\Users\Sergio\AppData\Roaming\Spotify\Spotify.exe [7389752 2015-08-27] (Spotify Ltd) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.) HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Run: [AceUpdater] => C:\Users\Sergio\AppData\Roaming\ACEStream\updater\ace_update.exe [27000 2016-01-13] () HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\MountPoints2: {38710e08-df72-11e4-b56b-00238bf55e58} - H:\LG_PC_Programs.exe AppInit_DLLs: C:\ProgramData\Lamzap\Lattech.dll => C:\ProgramData\Lamzap\Lattech.dll [257536 2016-05-31] () Lsa: [Notification Packages] C:\Program Files\Acer Bio Protection\PwdFilter ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Sergio\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-07-29] (Egis Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AML Device Install.lnk [2016-05-31] ShortcutTarget: AML Device Install.lnk -> C:\Program Files\AMD AVT\bin\kdbsync.exe () Startup: C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-05-31] ShortcutTarget: MEGAsync.lnk -> C:\Users\Sergio\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited) Startup: C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2016-05-31] ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{17C9B6A2-0F6D-43B9-B36E-7C5F576A9854}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{1857ABE8-3C11-4E86-ACE3-933CDE8AB5BB}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{4E59847D-8672-46AD-A4AB-72A24293A9D0}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{4E59847D-8672-46AD-A4AB-72A24293A9D0}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{732275AC-B04F-4FA1-B422-FECCB2E15C24}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{732275AC-B04F-4FA1-B422-FECCB2E15C24}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{CDE34F43-3535-4B51-BF12-BEB8D35C53C1}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{CDE34F43-3535-4B51-BF12-BEB8D35C53C1}: [DhcpNameServer] 172.20.2.10 172.20.2.39 Tcpip\..\Interfaces\{E1FB4CAC-C1D6-4CED-81E6-88833AF78E15}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{E1FB4CAC-C1D6-4CED-81E6-88833AF78E15}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e29ac6c2-7037-11de-816d-806e6f6e6963}: [NameServer] 104.197.191.4 ManualProxies: Internet Explorer: ================== HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com SearchScopes: HKLM -> DefaultScope {ielnksrch} URL = SearchScopes: HKLM -> IELNKSRCH URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBFnYN5R-SRTQR4zPSPlbKdkH6CEUjkSSDPwupWEMeQboI-iM13pQ6GdBnxtfWpvFJFsw-TvOcFaVvHPIj6_onWSvCAyfxVVnuoNdq2Z3W5xap4YonmcPHz2YONkQdNV8Tx7LnDYTX2JTE9tb3gut0r4pNcUanS34WuC-45CGnJm9nubI7pKg,,&q={searchTerms} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKU\S-1-5-21-3851689551-3125411691-1771927614-1000 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBFnYN5R-SRTQR4zPSPlbKdkH6CEUjkSSDPwupWEMeQboI-iM13pQ6GdBnxtfWpvFJFsw-TvOcFaVvHPIj6_onWSvCAyfxVVnuoNdq2Z3W5xap4YonmcPHz2YONkQdNV8Tx7LnDYTX2JTE9tb3gut0r4pNcUanS34WuC-45CGnJm9nubI7pKg,,&q={searchTerms} BHO: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-16] (Oracle Corporation) BHO: ShowBarObj Class -> {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} -> C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll [2008-07-29] (Egis) BHO: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll => Pas de fichier BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-16] (Oracle Corporation) Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29] (Egis Incorporated.) Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll Pas de fichier DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation) Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation) Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544 FF SelectedSearchEngine: Bing Protect FF Homepage: hxxps://www.google.fr/ FF Keyword.URL: hxxp://www.bing.com/search?FORM=INMODF&PC=IN01&q= FF NetworkProxy: "autoconfig_url", "file://C:/Program Files/ChrisPC Free Anonymous Proxy/chrispc_proxy_fox.pac" FF NetworkProxy: "type", 2 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1165635.dll [2012-07-05] (Adobe Systems, Inc.) FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-16] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-16] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation) FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\Media Convert Master\codec\real\browser\plugins\nppl3260.dll [Pas de fichier] FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll [Pas de fichier] FF Plugin: @sony.com/ReaderDesktop -> C:\Program Files\Sony\ReaderDesktop\npreaderdetectmoz.dll [2012-11-08] (Sony Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-09-12] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @acestream.net/acestreamplugin,version=3.0.12 -> C:\Users\Sergio\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies) FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @acestream.net/acestreamplugin,version=3.1.6 -> C:\Users\Sergio\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies) FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @eximion.com/KalydoPlayer -> C:\Users\Sergio\AppData\Roaming\Kalydo\KalydoPlayer\bin1\npkalydo.dll [2012-01-30] (Eximion B.V.) FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @g2.com/iggweb3dupdater -> C:\Users\Sergio\AppData\Roaming\IGG\Web3D\1.0.0.37\NPIGGWeb3DUpdater.dll [2011-09-24] (IGG) FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @g2.com/joyconnectshell -> C:\Users\Sergio\AppData\Roaming\IGG\Web3D\1.0.0.37\NPJoyConnectShell.dll [2011-09-24] (IGG) FF Plugin HKU\S-1-5-21-3851689551-3125411691-1771927614-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Sergio\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdevalvr.dll [2012-02-02] (www.devalvr.com) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-09-12] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2008-09-10] (RealNetworks, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2014-10-29] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2014-10-29] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2014-10-29] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2014-10-29] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2014-10-29] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2008-09-10] (RealNetworks, Inc.) FF SearchPlugin: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\searchplugins\Bing Protect.xml [2015-02-23] FF SearchPlugin: C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\searchplugins\commentcamarchenet.xml [2015-11-12] FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\findit.xml [2016-05-31] FF Extension: AS Magic Player - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\extensions\magicplayer_unlisted@acestream.org [2016-03-31] FF Extension: Google Translator for Firefox - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\extensions\translator@zoli.bod.xpi [2016-04-27] FF Extension: 20-20 3D Viewer - IKEA - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\Extensions\2020Player_IKEA@2020Technologies.com [2014-03-15] [non signé] FF Extension: MEGA - C:\Users\Sergio\AppData\Roaming\Mozilla\Firefox\Profiles\uwv1xn6a.default-1386660523544\Extensions\firefox@mega.co.nz.xpi [2016-05-31] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2015-06-03] [non signé] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF => non trouvé(e) FF HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Sergio\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi FF Extension: Ace Stream Web Extension - C:\Users\Sergio\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-04-03] Chrome: ======= CHR dev: Chrome dev build détecté(e)! <======= ATTENTION CHR HomePage: ChromeDefaultData -> hxxp://d391tbweljugwk.cloudfront.net/?ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm CHR StartupUrls: ChromeDefaultData -> "hxxp://d391tbweljugwk.cloudfront.net/?ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm" CHR DefaultSearchURL: ChromeDefaultData -> hxxp://d391tbweljugwk.cloudfront.net/chrome.php?q={searchTerms}&ts=AHEqB3QlBX4kAU..&v=20160531&uid=D161EE4AC483DAA6EA4427D135F0DDB7&ptid=wak&mode=loadm CHR DefaultSearchKeyword: ChromeDefaultData -> yessearches CHR Profile: C:\Users\Sergio\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Pas de nom) - C:\Users\Sergio\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim [2016-06-01] CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKU\S-1-5-21-3851689551-3125411691-1771927614-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-08-19] () [Fichier non signé] R2 IGBASVC; C:\Program Files\Acer Bio Protection\BASVC.exe [3450368 2009-06-18] (Egis Technology Inc.) [Fichier non signé] R2 Lamzap; C:\ProgramData\\Lamzap\\Lamzap.exe [782848 2016-05-31] () [Fichier non signé] S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 o2flash; C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [Fichier non signé] R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-10-17] () S3 Sony SCSI Helper Service; C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe [73728 2012-10-23] (Sony Corporation) [Fichier non signé] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) S2 AdobeARMservice; "C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X] S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X] S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [X] S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X] S3 TOSHIBA HDD SSD Alert Service; "C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe" [X] S2 Vegeno; "C:\Users\Sergio\AppData\Roaming\OizeaToafb\Awufda.exe" -cms [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [140800 2011-10-19] (Windows (R) Win 7 DDK provider) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [14920 2013-03-07] () [Fichier non signé] S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9160 2013-03-07] () [Fichier non signé] S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.) R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2008-03-12] () [Fichier non signé] R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [55848 2010-03-29] (Atheros Communications, Inc.) S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42592 2016-05-17] (hxxp://libusb-win32.sourceforge.net) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2016-05-31] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation) S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [95304 2011-11-10] (MotioninJoy) S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18432 2011-08-02] (Apple Inc.) [Fichier non signé] R3 NETwNs32; C:\Windows\System32\DRIVERS\NETwNs32.sys [7522304 2011-10-31] (Intel Corporation) S3 NPF; C:\Windows\System32\drivers\npf.sys [30336 2003-04-04] (Politecnico di Torino) [Fichier non signé] R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-08-31] (Nuvoton Technology Corporation) S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [328552 2011-07-06] (Realtek Semiconductor Corp.) S3 RTL8187Se; C:\Windows\System32\DRIVERS\RTL8187Se.sys [359424 2009-07-14] (Realtek Semiconductor Corporation ) S3 winbondcir; C:\Windows\System32\DRIVERS\winbondcir.sys [43008 2007-03-28] (Winbond Electronics Corporation) S1 DritekPortIO; \??\C:\Program Files\Launch Manager\DPortIO.sys [X] S3 DrvSnSht; \??\C:\Program Files\R-Drive Image\DrvSnSht.sys [X] S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X] S3 R-ImageDisk; \??\C:\Program Files\R-Drive Image\R-ImageDisk.sys [X] S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X] S3 tapSF0901; system32\DRIVERS\tapSF0901.sys [X] U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Fichier non signé] S3 USBCCID; system32\DRIVERS\usbccid.sys [X] S3 vtany; \??\C:\Windows\vtany.sys [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-06-01 13:38 - 2016-06-01 13:38 - 00027203 _____ C:\Users\Sergio\Desktop\FRST.txt 2016-06-01 13:37 - 2016-06-01 13:38 - 00000000 ____D C:\FRST 2016-06-01 13:37 - 2016-06-01 13:37 - 01734656 _____ (Farbar) C:\Users\Sergio\Desktop\FRST.exe 2016-06-01 13:23 - 2016-06-01 13:23 - 00000000 ____D C:\uninst 2016-06-01 13:22 - 2016-06-01 13:23 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media 2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\AceWebExtension 2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Local\FB5A5D00-1464726207-11DC-BC29-00238BF55E58 2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\ProgramData\Logic Handler 2016-06-01 13:22 - 2016-06-01 13:22 - 00000000 ____D C:\ProgramData\CloudPrinter 2016-06-01 13:18 - 2016-06-01 13:22 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\acestream 2016-06-01 13:18 - 2016-06-01 13:22 - 00000000 ____D C:\_acestream_cache_ 2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\.acestream 2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Users\Sergio\AppData\LocalLow\.acestream 2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\ProgramData\{f8df692d-9b61-87b3-f8df-f692d9b6a4b6} 2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\ProgramData\{16afe74a-d7e1-1c2d-16af-fe74ad7e9d2b} 2016-06-01 13:18 - 2016-06-01 13:18 - 00000000 ____D C:\Program Files\CutTheePrice 2016-05-31 20:53 - 2016-05-31 20:53 - 00000000 ____D C:\Windows\system32\mirn 2016-05-31 20:49 - 2016-06-01 13:27 - 00000000 ____D C:\ProgramData\Lamzap 2016-05-31 20:49 - 2016-05-31 20:49 - 06859776 _____ C:\Users\Sergio\AppData\Roaming\agent.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 02279413 _____ C:\Users\Sergio\AppData\Roaming\SingTop.bin 2016-05-31 20:49 - 2016-05-31 20:49 - 01756999 _____ C:\Users\Sergio\AppData\Roaming\Top-Job.tst 2016-05-31 20:49 - 2016-05-31 20:49 - 00126464 _____ C:\Users\Sergio\AppData\Roaming\noah.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 00126464 _____ C:\Users\Sergio\AppData\Roaming\lobby.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 00072820 _____ C:\Users\Sergio\AppData\Roaming\StanTom.tst 2016-05-31 20:49 - 2016-05-31 20:49 - 00067776 _____ C:\Users\Sergio\AppData\Roaming\Config.xml 2016-05-31 20:49 - 2016-05-31 20:49 - 00054272 _____ C:\Users\Sergio\AppData\Roaming\ApplicationHosting.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 00018432 _____ C:\Users\Sergio\AppData\Roaming\Main.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 00005568 _____ C:\Users\Sergio\AppData\Roaming\md.xml 2016-05-31 20:49 - 2016-05-31 20:49 - 00000000 ____D C:\ProgramData\Lamzaps 2016-05-31 20:49 - 2016-05-31 20:49 - 00000000 ____D C:\Program Files\Common Files\KinIt 2016-05-31 20:49 - 2016-05-31 20:00 - 00782848 _____ C:\Users\Sergio\AppData\Roaming\Top-Job.exe 2016-05-31 20:49 - 2016-05-31 20:00 - 00782848 _____ C:\Users\Sergio\AppData\Roaming\StanTom.exe 2016-05-31 20:48 - 2016-05-31 20:48 - 00848437 _____ C:\Users\Sergio\AppData\Roaming\Concof.bin 2016-05-31 20:47 - 2016-05-31 20:48 - 00018336 _____ C:\Users\Sergio\AppData\Roaming\InstallationConfiguration.xml 2016-05-31 20:47 - 2016-05-31 20:47 - 00128512 _____ C:\Users\Sergio\AppData\Roaming\Installer.dat 2016-05-31 20:19 - 2016-05-31 20:55 - 00000000 ____D C:\Program Files\mpck 2016-05-31 19:38 - 2016-05-31 20:55 - 00000000 ____D C:\Users\Sergio\AppData\LocalLow\Company 2016-05-31 19:37 - 2016-05-31 20:55 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Aowoa 2016-05-31 19:37 - 2016-05-31 20:55 - 00000000 ____D C:\Program Files\Noczojoum 2016-05-31 19:37 - 2016-05-31 20:43 - 00000000 ____D C:\Program Files\NoczojoumUn 2016-05-31 19:37 - 2016-05-31 19:37 - 00000000 ____D C:\Users\Sergio\AppData\Local\Tempfolder 2016-05-31 19:35 - 2016-05-31 20:43 - 00000000 ____D C:\Program Files\Atuqoiedtharech 2016-05-31 19:35 - 2016-05-31 19:36 - 00000000 ____D C:\Program Files\Lipothersaph 2016-05-31 19:35 - 2016-05-31 19:36 - 00000000 ____D C:\Program Files\Cloweryvarogh 2016-05-31 19:35 - 2016-05-31 19:32 - 00001015 _____ C:\Windows\system32\Drivers\etc\hp.bak 2016-05-31 09:06 - 2016-05-31 19:29 - 00000000 ____D C:\Users\Sergio\Documents\MEGAsync Downloads 2016-05-31 09:05 - 2016-05-31 20:50 - 00001074 _____ C:\Users\Sergio\Desktop\MEGAsync.lnk 2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync 2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Local\MEGAsync 2016-05-31 09:05 - 2016-05-31 09:05 - 00000000 ____D C:\Users\Sergio\AppData\Local\Mega Limited 2016-05-31 08:57 - 2016-05-31 19:35 - 122159104 _____ C:\Users\Sergio\Desktop\Eu1GBWest9456243.rar 2016-05-28 14:03 - 2016-05-31 20:50 - 00001951 _____ C:\Users\Sergio\Desktop\Ace Stream Media Center.lnk 2016-05-22 12:08 - 2016-05-22 12:30 - 00000600 _____ C:\Users\Sergio\AppData\Local\PUTTY.RND 2016-05-17 09:41 - 2016-05-17 09:42 - 00000290 __RSH C:\ProgramData\ntuser.pol 2016-05-17 09:41 - 2016-05-17 09:41 - 00042592 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys 2016-05-17 09:39 - 2016-05-17 09:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SixaxisPairTool 2016-05-17 09:39 - 2016-05-17 09:39 - 00000000 ____D C:\Program Files\SixaxisPairTool 2016-05-17 09:39 - 2012-01-17 09:40 - 00067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll 2016-05-12 11:53 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2016-05-12 11:53 - 2016-04-09 08:54 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-05-12 11:53 - 2016-04-09 07:40 - 02397696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-05-12 11:53 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2016-05-12 11:53 - 2016-04-06 12:36 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2016-05-12 11:53 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2016-05-12 11:52 - 2016-04-23 18:24 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-05-12 11:52 - 2016-04-23 06:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-05-12 11:52 - 2016-04-23 06:20 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-05-12 11:52 - 2016-04-23 06:11 - 20350464 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-05-12 11:52 - 2016-04-23 06:08 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-05-12 11:52 - 2016-04-23 06:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-05-12 11:52 - 2016-04-23 06:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-05-12 11:52 - 2016-04-23 06:07 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-05-12 11:52 - 2016-04-23 06:07 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-05-12 11:52 - 2016-04-23 06:04 - 02285568 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-05-12 11:52 - 2016-04-23 06:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-05-12 11:52 - 2016-04-23 06:01 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-05-12 11:52 - 2016-04-23 05:59 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-05-12 11:52 - 2016-04-23 05:58 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-05-12 11:52 - 2016-04-23 05:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-05-12 11:52 - 2016-04-23 05:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-05-12 11:52 - 2016-04-23 05:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-05-12 11:52 - 2016-04-23 05:53 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-05-12 11:52 - 2016-04-23 05:50 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-05-12 11:52 - 2016-04-23 05:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-05-12 11:52 - 2016-04-23 05:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-05-12 11:52 - 2016-04-23 05:43 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-05-12 11:52 - 2016-04-23 05:41 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-05-12 11:52 - 2016-04-23 05:40 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-05-12 11:52 - 2016-04-23 05:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-05-12 11:52 - 2016-04-23 05:36 - 04611072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-05-12 11:52 - 2016-04-23 05:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-05-12 11:52 - 2016-04-23 05:31 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-05-12 11:52 - 2016-04-23 05:31 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-05-12 11:52 - 2016-04-23 05:30 - 02056192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-05-12 11:52 - 2016-04-23 05:30 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-05-12 11:52 - 2016-04-23 05:26 - 13811200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-05-12 11:52 - 2016-04-23 05:12 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-05-12 11:52 - 2016-04-23 05:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-05-12 11:52 - 2016-04-23 05:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-05-12 11:52 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2016-05-12 11:52 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-05-12 11:52 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2016-05-12 11:52 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2016-05-12 11:52 - 2016-04-09 08:59 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-05-12 11:52 - 2016-04-09 08:59 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-05-12 11:52 - 2016-04-09 08:57 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-05-12 11:52 - 2016-04-09 08:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-05-12 11:52 - 2016-04-09 07:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2016-05-12 11:52 - 2016-04-09 07:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2016-05-12 11:52 - 2016-04-09 07:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-05-12 11:52 - 2016-04-09 07:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2016-05-12 11:52 - 2016-04-09 07:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2016-05-12 11:52 - 2016-04-09 07:40 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-05-12 11:52 - 2016-04-09 07:38 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-05-12 11:52 - 2016-04-09 07:38 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-05-12 11:52 - 2016-04-09 07:38 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-05-12 11:52 - 2016-04-09 07:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-05-12 11:52 - 2016-04-09 07:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-05-12 11:52 - 2016-04-09 07:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-05-12 11:52 - 2016-04-09 07:37 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-06-01 13:32 - 2009-09-10 07:28 - 01623488 _____ C:\Windows\system32\PerfStringBackup.INI 2016-06-01 13:32 - 2009-07-14 10:39 - 00730820 _____ C:\Windows\system32\perfh00C.dat 2016-06-01 13:32 - 2009-07-14 10:39 - 00142624 _____ C:\Windows\system32\perfc00C.dat 2016-06-01 13:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf 2016-06-01 13:26 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-06-01 13:18 - 2014-11-16 22:09 - 00000000 ____D C:\AdwCleaner 2016-05-31 21:26 - 2015-06-29 11:06 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-05-31 21:25 - 2009-07-14 06:34 - 00025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-05-31 21:25 - 2009-07-14 06:34 - 00025600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-05-31 21:23 - 2012-10-02 12:04 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Spotify 2016-05-31 21:23 - 2012-03-16 11:05 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Skype 2016-05-31 21:21 - 2012-10-02 12:04 - 00000000 ____D C:\Users\Sergio\AppData\Local\Spotify 2016-05-31 21:21 - 2012-01-12 12:39 - 00000000 ____D C:\Users\Sergio\Tracing 2016-05-31 20:55 - 2012-01-08 16:43 - 00000000 ____D C:\Windows\OemDrv 2016-05-31 20:52 - 2015-06-27 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2016-05-31 20:51 - 2015-06-18 14:17 - 00002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk 2016-05-31 20:51 - 2013-10-09 09:59 - 00002859 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk 2016-05-31 20:51 - 2012-10-26 08:48 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2016-05-31 20:51 - 2012-10-02 12:04 - 00001811 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2016-05-31 20:51 - 2012-01-31 00:58 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2016-05-31 20:51 - 2012-01-23 21:34 - 00001816 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2016-05-31 20:51 - 2012-01-12 12:36 - 00000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-05-31 20:51 - 2012-01-08 18:00 - 00001129 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2016-05-31 20:51 - 2009-09-10 07:57 - 00002571 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visionneuse Microsoft Office PowerPoint 2007.lnk 2016-05-31 20:51 - 2009-09-10 07:57 - 00001108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lanceur de tâches Microsoft Works.lnk 2016-05-31 20:51 - 2009-09-10 07:17 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2016-05-31 20:51 - 2009-09-10 07:17 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2016-05-31 20:51 - 2009-07-14 06:46 - 00001491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-05-31 20:51 - 2009-07-14 06:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk 2016-05-31 20:51 - 2009-07-14 06:42 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk 2016-05-31 20:51 - 2009-07-14 06:42 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk 2016-05-31 20:51 - 2009-07-14 06:42 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk 2016-05-31 20:51 - 2009-07-14 06:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk 2016-05-31 20:50 - 2016-03-31 13:51 - 00001754 _____ C:\Users\Sergio\Desktop\Kodi.lnk 2016-05-31 20:50 - 2015-08-26 09:05 - 00002685 _____ C:\Users\Public\Desktop\Skype.lnk 2016-05-31 20:50 - 2015-06-29 11:06 - 00001031 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-05-31 20:50 - 2015-06-27 11:31 - 00001720 _____ C:\Users\Public\Desktop\iTunes.lnk 2016-05-31 20:50 - 2015-06-19 16:18 - 00001060 _____ C:\Users\Public\Desktop\Tomtomax Maxi-Box.lnk 2016-05-31 20:50 - 2015-06-12 12:31 - 00000898 _____ C:\Users\Public\Desktop\Minecraft.lnk 2016-05-31 20:50 - 2015-05-03 20:49 - 00000995 _____ C:\Users\Public\Desktop\VLC media player.lnk 2016-05-31 20:50 - 2015-04-26 19:31 - 00000920 _____ C:\Users\Sergio\Desktop\SopCast.lnk 2016-05-31 20:50 - 2015-04-26 18:29 - 00001935 _____ C:\Users\Sergio\Desktop\Ace Player.lnk 2016-05-31 20:50 - 2015-04-11 09:25 - 00000984 _____ C:\Users\Sergio\Desktop\iOSinstaller.lnk 2016-05-31 20:50 - 2015-03-04 16:00 - 00000846 _____ C:\Users\Sergio\Desktop\ZHPCleaner.lnk 2016-05-31 20:50 - 2015-02-23 19:54 - 00001037 _____ C:\Users\Public\Desktop\SUPER ©.lnk 2016-05-31 20:50 - 2015-02-20 13:51 - 00002094 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-05-31 20:50 - 2014-12-04 11:26 - 00000867 _____ C:\Users\Sergio\Desktop\µTorrent.lnk 2016-05-31 20:50 - 2014-12-04 11:26 - 00000847 _____ C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2016-05-31 20:50 - 2014-10-29 13:42 - 00001782 _____ C:\Users\Public\Desktop\QuickTime Player.lnk 2016-05-31 20:50 - 2013-10-07 11:39 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2016-05-31 20:50 - 2013-04-02 13:25 - 00000908 _____ C:\Users\Public\Desktop\WinSCP.lnk 2016-05-31 20:50 - 2012-12-25 20:36 - 00001990 _____ C:\Users\Public\Desktop\Reader for PC.lnk 2016-05-31 20:50 - 2012-10-26 08:48 - 00001956 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk 2016-05-31 20:50 - 2012-10-02 12:04 - 00001825 _____ C:\Users\Sergio\Desktop\Spotify.lnk 2016-05-31 20:50 - 2012-09-02 14:45 - 00000860 _____ C:\Users\Sergio\Desktop\XnView.lnk 2016-05-31 20:50 - 2012-03-02 09:56 - 00000960 _____ C:\Users\Public\Desktop\PDFCreator.lnk 2016-05-31 20:50 - 2012-01-23 21:34 - 00001870 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk 2016-05-31 20:50 - 2012-01-12 12:36 - 00000978 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-05-31 20:50 - 2012-01-10 10:27 - 00001908 _____ C:\Users\Public\Desktop\Empowering Technology.lnk 2016-05-31 20:50 - 2009-09-10 07:48 - 00002036 _____ C:\Users\Public\Desktop\Prêt pour les appels voix et vidéo Skype.lnk 2016-05-31 20:41 - 2012-09-12 17:36 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3851689551-3125411691-1771927614-1000UA.job 2016-05-31 20:15 - 2012-04-12 17:18 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-05-31 19:18 - 2012-09-12 17:36 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3851689551-3125411691-1771927614-1000Core.job 2016-05-31 19:06 - 2015-06-28 09:10 - 00000386 _____ C:\Windows\Tasks\PetGuides.job 2016-05-31 13:36 - 2016-03-31 13:24 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\Kodi 2016-05-31 13:28 - 2013-02-06 20:51 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\vlc 2016-05-31 09:08 - 2009-09-10 07:13 - 00000000 ____D C:\Windows\Panther 2016-05-27 12:26 - 2016-02-13 15:02 - 00000000 ___HD C:\$WINDOWS.~BT 2016-05-26 12:47 - 2015-03-29 16:37 - 00000000 ___SD C:\Windows\system32\GWX 2016-05-17 13:58 - 2016-03-11 09:47 - 00000000 ____D C:\Windows\rescache 2016-05-17 09:41 - 2009-07-14 04:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy 2016-05-17 09:39 - 2014-04-16 16:39 - 00000000 ____D C:\ProgramData\Package Cache 2016-05-15 19:55 - 2009-07-14 06:33 - 00453520 _____ C:\Windows\system32\FNTCACHE.DAT 2016-05-15 19:52 - 2014-12-11 16:46 - 00000000 ____D C:\Windows\system32\appraiser 2016-05-15 19:52 - 2009-07-14 11:01 - 00000000 ____D C:\Program Files\Windows Journal 2016-05-13 12:15 - 2012-04-12 17:18 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2016-05-13 12:15 - 2012-01-08 18:29 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2016-05-13 12:14 - 2013-05-23 12:57 - 00000000 ____D C:\Users\Sergio\AppData\Roaming\uTorrent 2016-05-13 09:28 - 2013-09-03 19:44 - 00000000 ____D C:\Windows\system32\MRT 2016-05-13 09:07 - 2012-01-11 11:30 - 136686448 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-05-04 21:04 - 2015-04-09 16:18 - 00005699 ____H C:\Users\Sergio\.swfinfo ==================== Fichiers à la racine de certains dossiers ======= 2016-05-31 20:49 - 2016-05-31 20:49 - 6859776 _____ () C:\Users\Sergio\AppData\Roaming\agent.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 0054272 _____ () C:\Users\Sergio\AppData\Roaming\ApplicationHosting.dat 2016-05-31 20:48 - 2016-05-31 20:48 - 0848437 _____ () C:\Users\Sergio\AppData\Roaming\Concof.bin 2016-05-31 20:49 - 2016-05-31 20:49 - 0067776 _____ () C:\Users\Sergio\AppData\Roaming\Config.xml 2016-05-31 20:47 - 2016-05-31 20:48 - 0018336 _____ () C:\Users\Sergio\AppData\Roaming\InstallationConfiguration.xml 2016-05-31 20:47 - 2016-05-31 20:47 - 0128512 _____ () C:\Users\Sergio\AppData\Roaming\Installer.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 0126464 _____ () C:\Users\Sergio\AppData\Roaming\lobby.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 0018432 _____ () C:\Users\Sergio\AppData\Roaming\Main.dat 2016-05-31 20:49 - 2016-05-31 20:49 - 0005568 _____ () C:\Users\Sergio\AppData\Roaming\md.xml 2016-05-31 20:49 - 2016-05-31 20:49 - 0126464 _____ () C:\Users\Sergio\AppData\Roaming\noah.dat 2013-10-14 19:43 - 2013-10-14 19:43 - 0138056 _____ () C:\Users\Sergio\AppData\Roaming\PnkBstrK.sys 2016-05-31 20:49 - 2016-05-31 20:49 - 2279413 _____ () C:\Users\Sergio\AppData\Roaming\SingTop.bin 2016-05-31 20:49 - 2016-05-31 20:00 - 0782848 _____ () C:\Users\Sergio\AppData\Roaming\StanTom.exe 2016-05-31 20:49 - 2016-05-31 20:49 - 0072820 _____ () C:\Users\Sergio\AppData\Roaming\StanTom.tst 2016-05-31 20:49 - 2016-05-31 20:00 - 0782848 _____ () C:\Users\Sergio\AppData\Roaming\Top-Job.exe 2016-05-31 20:49 - 2016-05-31 20:49 - 1756999 _____ () C:\Users\Sergio\AppData\Roaming\Top-Job.tst 2016-05-31 20:49 - 2016-05-31 20:49 - 0032038 _____ () C:\Users\Sergio\AppData\Roaming\uninstall_temp.ico 2013-04-02 13:30 - 2014-12-05 17:10 - 0000600 _____ () C:\Users\Sergio\AppData\Roaming\winscp.rnd 2012-01-14 14:12 - 2016-04-29 11:00 - 0001456 _____ () C:\Users\Sergio\AppData\Local\Adobe Enregistrer pour le Web 11.0 Prefs 2012-01-10 10:47 - 2012-01-10 10:48 - 0095506 _____ () C:\Users\Sergio\AppData\Local\edsinstaller.txt-20120110.log 2015-02-23 21:10 - 2015-02-23 21:10 - 0628496 _____ (CMI Limited) C:\Users\Sergio\AppData\Local\nst6550.tmp 2016-05-22 12:08 - 2016-05-22 12:30 - 0000600 _____ () C:\Users\Sergio\AppData\Local\PUTTY.RND 2015-02-23 22:18 - 2015-02-24 18:59 - 0000085 ___SH () C:\ProgramData\.zreglib Certains fichiers dans TEMP: ==================== C:\Users\Sergio\AppData\Local\Temp\5F84.tmp.exe C:\Users\Sergio\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbtjjas.dll C:\Users\Sergio\AppData\Local\Temp\installer_x64.exe C:\Users\Sergio\AppData\Local\Temp\installer_x86.exe C:\Users\Sergio\AppData\Local\Temp\jre-8u45-windows-au.exe C:\Users\Sergio\AppData\Local\Temp\Quarantine.exe C:\Users\Sergio\AppData\Local\Temp\RO2SMWW9WK.exe C:\Users\Sergio\AppData\Local\Temp\SkypeSetup.exe C:\Users\Sergio\AppData\Local\Temp\tasklisten.exe C:\Users\Sergio\AppData\Local\Temp\uninstall.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-05-28 09:08 ==================== Fin de FRST.txt ============================