Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-10-2016
Exécuté par rey11 (administrateur) sur DESKTOP-3JFGBNG (01-11-2016 11:01:43)
Exécuté depuis C:\Users\rey11.DESKTOP-3JFGBNG\Desktop
Profils chargés: rey11 (Profils disponibles: rey11)
Platform: Windows 10 Home Version 1511 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Stanper\Application\chrome.exe" "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(360.cn) C:\Program Files (x86)\360\360Safe\deepscan\ZhuDongFangYu.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(TODO: <公司名>) C:\Program Files (x86)\YouKu\YoukuClient\WebServe.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-24] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2015-06-17] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [360Safetray] => C:\Program Files (x86)\360\360Safe\safemon\360Tray.exe [395688 2016-10-25] (360.cn)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509"
HKU\S-1-5-18\...\Run: [] => 0
HKU\S-1-5-18\...\Run: [KSS] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
ShellIconOverlayIdentifiers: [ 360UDiskGuard Icon Overlay] -> {CC00F81D-5262-450A-B1FA-D6BEE3406263} => C:\Program Files (x86)\360\360Safe\safemon\360UDiskGuard64.dll [2016-10-25] (360.cn)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [KzShlobj2] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F3} => Pas de fichier
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kaspersky Software Updater Beta.lnk [2016-10-16]
ShortcutTarget: Kaspersky Software Updater Beta.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe (AO Kaspersky Lab)
GroupPolicy\User: Restriction - Chrome <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7a773097-8998-4e97-95b8-7fa2de3b68f6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b4e5ad9d-eaa5-436d-9172-4b57077dd458}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://google.com
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://hao.360.cn/?installer
SearchScopes: HKU\S-1-5-21-368780070-1562899766-1779122006-1002 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-07-07] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-07-07] (McAfee, Inc.)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-368780070-1562899766-1779122006-1002 ->
FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-09-22] [non signé]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-08-24] (Adobe Systems)
FF Plugin-x32: @360.cn/npaxlogin -> C:\Program Files (x86)\360\360Safe\Utils\npaxlogin.dll [2016-10-25] (360.cn)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-10-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-10-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-08-24] (Adobe Systems)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-11-01] <==== ATTENTION
CHR Extension: (Docs) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-14]
CHR Extension: (Google Drive) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-14]
CHR Extension: (YouTube) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-14]
CHR Extension: (Gmail) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-14]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-08-24] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-24] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
R2 kss; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-07-07] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-20] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-06-17] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.)
S3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364456 2016-09-07] (Microsoft Corporation)
R2 WebServe; C:\Program Files (x86)\YouKu\YoukuClient\WebServe.exe [370224 2015-12-08] (TODO: <公司名>)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-09-07] (Microsoft Corporation)
R2 ZhuDongFangYu; C:\Program Files (x86)\360\360Safe\deepscan\zhudongfangyu.exe [237168 2016-10-25] (360.cn)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [160768 2016-10-25] (360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [339456 2016-10-25] (360.cn)
S3 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [57856 2016-10-25] (360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [414208 2016-10-25] (360.cn)
R1 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [264192 2016-10-25] (360安全中心)
R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [90112 2016-10-25] (360.cn)
R1 360qpesv; C:\WINDOWS\System32\DRIVERS\360qpesv64.sys [249576 2016-10-03] (360.cn)
R1 360reskit64; C:\WINDOWS\system32\drivers\360reskit64.sys [68176 2016-10-25] (360.cn)
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [199680 2016-10-25] (360.cn)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc.)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-10-09] (REALiX(tm))
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [519456 2016-08-01] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [100136 2016-08-01] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [3870464 2015-10-01] (Realtek Semiconductor Corporation )
R1 ucdrv; C:\WINDOWS\System32\drivers:ucdrv-x64.sys [80850 ] (UC Web Inc.) <==== ATTENTION
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-10-31 18:47 - 2016-10-31 18:47 - 00000937 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\JRT.txt
2016-10-31 18:43 - 2016-10-31 18:44 - 01631928 _____ (Malwarebytes) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\JRT.exe
2016-10-31 18:43 - 2016-10-31 18:43 - 00000574 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\MBAM.txt
2016-10-31 18:30 - 2016-11-01 10:59 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-31 18:30 - 2016-10-31 18:30 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-10-31 18:30 - 2016-10-31 18:30 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-31 18:30 - 2016-10-31 18:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-10-31 18:30 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-31 18:30 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-31 18:30 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-31 18:28 - 2016-10-31 18:29 - 22851472 _____ (Malwarebytes ) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\mbam-setup-2.2.1.1043.exe
2016-10-31 18:28 - 2016-10-31 18:28 - 00029309 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\AdwCleaner[C0].txt
2016-10-31 18:18 - 2016-10-31 18:24 - 00000000 ____D C:\AdwCleaner
2016-10-31 18:17 - 2016-10-31 18:18 - 03910208 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\adwcleaner_6.030.exe
2016-10-31 18:04 - 2016-10-31 18:13 - 00023785 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPCleaner.txt
2016-10-31 17:57 - 2016-10-31 18:08 - 00000895 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPCleaner.lnk
2016-10-31 17:55 - 2016-10-31 17:57 - 02477568 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPCleaner.exe
2016-10-31 16:41 - 2016-10-31 16:42 - 00041667 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\Addition.txt
2016-10-31 16:38 - 2016-11-01 11:01 - 00019044 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\FRST.txt
2016-10-31 16:37 - 2016-11-01 11:01 - 00000000 ____D C:\FRST
2016-10-31 16:36 - 2016-10-31 16:37 - 02408960 _____ (Farbar) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\FRST64.exe
2016-10-31 16:31 - 2016-10-31 17:08 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\TS3Client
2016-10-31 16:31 - 2016-10-31 16:31 - 32019840 _____ (TeamSpeak Systems GmbH) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\TeamSpeak3-Client-win64-3.0.19.4.exe
2016-10-31 16:31 - 2016-10-31 16:31 - 00001012 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-10-31 16:31 - 2016-10-31 16:31 - 00000974 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-10-31 16:31 - 2016-10-31 16:31 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-10-31 14:59 - 2016-10-31 15:02 - 00157324 _____ C:\WINDOWS\ntbtlog.txt
2016-10-31 14:59 - 2016-10-31 14:59 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-10-31 14:02 - 2016-11-01 10:55 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\ZHP
2016-10-31 14:02 - 2016-11-01 10:54 - 00000885 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPDiag.lnk
2016-10-31 14:01 - 2016-10-31 14:02 - 02430464 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\ZHPDiag3.exe
2016-10-31 12:20 - 2016-10-31 12:20 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Expert
2016-10-31 12:20 - 2016-10-31 12:20 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360DiagnoseScan
2016-10-30 22:05 - 2016-11-01 10:55 - 00004020 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2016-10-29 15:59 - 2016-10-29 15:59 - 00003456 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\téléchargement.htm
2016-10-28 16:35 - 2016-10-28 16:35 - 00000000 ____D C:\ProgramData\ttff
2016-10-28 16:35 - 2016-10-28 16:35 - 00000000 ____D C:\ProgramData\dgadg
2016-10-26 22:26 - 2016-10-31 21:49 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-26 22:26 - 2016-10-29 22:33 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-10-26 22:26 - 2016-10-26 22:26 - 00004144 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-10-26 22:26 - 2016-10-26 22:26 - 00003978 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-10-26 18:29 - 2016-10-26 18:29 - 00000003 _____ C:\WINDOWS\SysWOW64\hoewmds
2016-10-26 18:28 - 2016-10-26 18:28 - 00000382 _____ C:\WINDOWS\SysWOW64\data.bin
2016-10-26 18:25 - 2016-10-26 22:26 - 00000000 ____D C:\Program Files (x86)\f09er35s
2016-10-26 17:45 - 2016-10-03 13:02 - 00249576 _____ (360.cn) C:\WINDOWS\system32\Drivers\360qpesv64.sys
2016-10-26 17:38 - 2016-10-26 17:38 - 00000000 ____D C:\WINDOWS\Tasks\360Disabled
2016-10-25 17:26 - 2016-10-25 17:26 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360Login
2016-10-25 17:25 - 2016-10-31 18:39 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360mobilemgr
2016-10-25 17:25 - 2016-10-31 18:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\LocalLow\360WD
2016-10-25 17:25 - 2016-10-31 18:26 - 00000001 _____ C:\WINDOWS\system32\Drivers\360Hvm64.dat
2016-10-25 17:25 - 2016-10-26 17:37 - 00000000 ____D C:\ProgramData\360safe
2016-10-25 17:25 - 2016-10-25 17:25 - 00002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\强力卸载电脑上的软件.lnk
2016-10-25 17:25 - 2016-10-25 17:25 - 00000000 _RSHD C:\360SANDBOX
2016-10-25 17:25 - 2016-10-25 17:24 - 00414208 _____ (360.cn) C:\WINDOWS\system32\Drivers\360FsFlt.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00339456 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00264192 _____ (360安全中心) C:\WINDOWS\system32\Drivers\360Hvm64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00160768 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00068176 _____ (360.cn) C:\WINDOWS\system32\Drivers\360reskit64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00060416 _____ (360.cn) C:\WINDOWS\system32\Drivers\360LanProtect.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00057856 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys
2016-10-25 17:24 - 2016-10-25 17:24 - 00199680 _____ (360.cn) C:\WINDOWS\system32\Drivers\BAPIDRV64.sys
2016-10-25 17:24 - 2016-10-25 17:24 - 00180336 _____ (360.cn) C:\WINDOWS\SysWOW64\360SoftMgr.cpl
2016-10-25 17:24 - 2016-10-25 17:24 - 00090112 _____ (360.cn) C:\WINDOWS\system32\Drivers\360netmon.sys
2016-10-25 17:24 - 2016-10-25 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360安全中心
2016-10-25 17:23 - 2016-10-26 17:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360Safe
2016-10-25 17:23 - 2016-10-25 17:23 - 00000000 ____D C:\Program Files (x86)\360
2016-10-25 17:20 - 2016-10-31 18:12 - 00000000 ____D C:\WINDOWS\system32\log
2016-10-25 17:19 - 2016-10-28 16:35 - 00000000 _____ C:\Users\Public\Documents\report.dat
2016-10-25 17:18 - 2016-10-31 15:04 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2016-10-25 17:18 - 2016-10-25 17:18 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Stanper
2016-10-25 17:18 - 2016-10-25 17:18 - 00000000 ____D C:\Program Files (x86)\Stanper
2016-10-25 16:25 - 2016-10-31 17:10 - 00004208 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2016-10-23 20:09 - 2016-10-25 17:19 - 00000032 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\temp.tmp
2016-10-23 20:09 - 2016-10-25 17:19 - 00000000 ____D C:\Program Files (x86)\SGCalendar
2016-10-23 20:09 - 2016-10-25 16:30 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\SGCalendar
2016-10-23 20:07 - 2016-09-27 15:22 - 00405480 _____ (Blizzard Entertainment) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\Battle.net.exe
2016-10-19 19:17 - 2016-10-19 19:17 - 00000000 ____D C:\Program Files (x86)\fgz6wprv
2016-10-16 12:43 - 2016-10-16 12:46 - 00000000 ____D C:\KVRT_Data
2016-10-16 12:37 - 2016-10-16 12:37 - 00001172 _____ C:\Users\Public\Desktop\Kaspersky Software Updater Beta.lnk
2016-10-16 12:37 - 2016-10-16 12:37 - 00001132 _____ C:\Users\Public\Desktop\Kaspersky Security Scan.lnk
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Software Updater Beta
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-10-16 12:36 - 2016-10-16 12:36 - 02623496 _____ (Kaspersky Lab) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\kss16.0.0.1344mlg_10011.exe
2016-10-16 12:36 - 2016-10-16 12:36 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-10-16 12:33 - 2016-10-16 12:53 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\Documents\Youku Files
2016-10-16 12:33 - 2016-10-16 12:33 - 00003738 _____ C:\WINDOWS\System32\Tasks\{C4185E10-710A-4E19-9CE9-AB510D1FD0BE}
2016-10-16 12:32 - 2016-10-23 20:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\ytmediacenter
2016-10-16 12:32 - 2016-10-16 14:28 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\youku
2016-10-16 12:32 - 2016-10-16 12:32 - 00000000 ____D C:\Program Files (x86)\YouKu
2016-10-16 12:31 - 2016-10-31 18:22 - 00000000 ____D C:\Program Files (x86)\KuaiZip
2016-10-16 12:31 - 2016-10-26 17:45 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-10-16 12:31 - 2016-10-16 12:31 - 00004444 _____ C:\WINDOWS\System32\Tasks\SecureUpdater
2016-10-16 12:31 - 2016-10-16 12:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\UCBrowser
2016-10-16 12:30 - 2016-10-16 14:11 - 00000000 ____D C:\Program Files (x86)\hhh
2016-10-15 23:21 - 2016-10-15 23:21 - 00000000 _____ C:\TOSTACK
2016-10-15 23:20 - 2016-10-15 23:20 - 07203328 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\agent.dat
2016-10-15 23:20 - 2016-10-15 23:20 - 00070704 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Config.xml
2016-10-15 23:19 - 2016-10-15 23:20 - 00015936 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\InstallationConfiguration.xml
2016-10-15 23:19 - 2016-10-15 23:19 - 00140288 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Installer.dat
2016-10-15 16:18 - 2016-10-26 18:29 - 00002172 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-15 16:17 - 2016-10-15 16:17 - 00000000 ____D C:\Program Files (x86)\Google
2016-10-14 20:46 - 2016-10-14 20:46 - 01065376 _____ (Google Inc.) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\ChromeSetup.exe
2016-10-14 20:32 - 2016-10-15 16:01 - 00187904 _____ C:\WINDOWS\rsrcs.dll
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Mozilla
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\ProgramData\Avira
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\ProgramData\Avg
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\ProgramData\AVAST Software
2016-10-14 20:30 - 2016-11-01 10:56 - 00004176 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ED950EA7-77DF-446F-8476-FCF8D53B5808}
2016-10-14 20:29 - 2016-10-31 18:45 - 00000000 ____D C:\Program Files (x86)\Vuhoent
2016-10-14 20:29 - 2016-10-16 14:11 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\UrlControl_
2016-10-14 20:29 - 2016-10-16 14:11 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\MzIzNTM1MzA=
2016-10-14 20:29 - 2016-10-16 12:50 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Ghkercult
2016-10-14 20:29 - 2016-10-14 20:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tileherrpy
2016-10-14 20:29 - 2016-10-14 20:29 - 00000290 __RSH C:\Users\rey11.DESKTOP-3JFGBNG\ntuser.pol
2016-10-14 20:28 - 2016-10-15 23:20 - 00000000 ____D C:\WINDOWS\system32\SSL
2016-10-14 20:24 - 2016-10-16 12:47 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\MyDesktop
2016-10-14 20:24 - 2016-10-15 23:16 - 00000165 _____ C:\WINDOWS\SysWOW64\MUpdater.exe.config
2016-10-14 20:24 - 2016-10-15 23:16 - 00000165 _____ C:\WINDOWS\SysWOW64\GameXP.exe.config
2016-10-14 20:24 - 2016-10-15 23:16 - 00000165 _____ C:\WINDOWS\SysWOW64\GameCenter.exe.config
2016-10-12 16:58 - 2016-10-12 17:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-12 15:45 - 2016-10-05 08:56 - 01644736 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 01242304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00602304 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00591040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00329920 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-12 15:45 - 2016-10-05 08:56 - 00144576 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00085696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-12 15:45 - 2016-10-05 08:20 - 01030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-12 15:45 - 2016-10-05 08:20 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-12 15:45 - 2016-10-05 08:19 - 00129376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-12 15:45 - 2016-10-05 08:18 - 07468384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-12 15:45 - 2016-10-05 08:18 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-12 15:45 - 2016-10-05 08:18 - 01142560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-12 15:45 - 2016-10-05 08:01 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-12 15:45 - 2016-10-05 08:01 - 01337184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-12 15:45 - 2016-10-05 07:54 - 01297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-12 15:45 - 2016-10-05 07:17 - 03693064 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-12 15:45 - 2016-10-05 07:15 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-10-12 15:45 - 2016-10-05 07:14 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-12 15:45 - 2016-10-05 07:09 - 00604920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-12 15:45 - 2016-10-05 06:45 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-10-12 15:45 - 2016-10-05 06:39 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-12 15:45 - 2016-10-05 06:39 - 00576856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-12 15:45 - 2016-10-05 06:38 - 00636296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-12 15:45 - 2016-10-05 06:38 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-12 15:45 - 2016-10-05 06:37 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-10-12 15:45 - 2016-10-05 06:31 - 00422240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-12 15:45 - 2016-10-05 06:25 - 00871776 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-12 15:45 - 2016-10-05 06:23 - 00305808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-12 15:45 - 2016-10-05 06:08 - 02937896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-12 15:45 - 2016-10-05 06:05 - 00256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-10-12 15:45 - 2016-10-05 06:01 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-10-12 15:45 - 2016-10-05 06:00 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-12 15:45 - 2016-10-05 05:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-12 15:45 - 2016-10-05 05:50 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-10-12 15:45 - 2016-10-05 05:49 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2016-10-12 15:45 - 2016-10-05 05:49 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-10-12 15:45 - 2016-10-05 05:47 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2016-10-12 15:45 - 2016-10-05 05:47 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-12 15:45 - 2016-10-05 05:38 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-12 15:45 - 2016-10-05 05:35 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-12 15:45 - 2016-10-05 05:34 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-12 15:45 - 2016-10-05 05:33 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-12 15:45 - 2016-10-05 05:32 - 00538744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-10-12 15:45 - 2016-10-05 05:30 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-12 15:45 - 2016-10-05 05:30 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-10-12 15:45 - 2016-10-05 05:30 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-12 15:45 - 2016-10-05 05:29 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-10-12 15:45 - 2016-10-05 05:27 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-10-12 15:45 - 2016-10-05 05:23 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-10-12 15:45 - 2016-10-05 05:19 - 00717152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-12 15:45 - 2016-10-05 05:18 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-12 15:45 - 2016-10-05 05:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-12 15:45 - 2016-10-05 05:17 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-12 15:45 - 2016-10-05 05:15 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2016-10-12 15:45 - 2016-10-05 05:10 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-12 15:45 - 2016-10-05 05:10 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-12 15:45 - 2016-10-05 05:07 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-10-12 15:45 - 2016-10-05 05:05 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-12 15:45 - 2016-10-05 05:04 - 01718272 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-12 15:45 - 2016-10-05 05:02 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-12 15:45 - 2016-10-05 05:00 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-12 15:45 - 2016-10-05 05:00 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-12 15:45 - 2016-10-05 05:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-12 15:45 - 2016-10-05 04:57 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-10-12 15:45 - 2016-10-05 04:55 - 03549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-12 15:45 - 2016-10-05 04:48 - 02437120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-12 15:45 - 2016-10-05 04:40 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-12 15:45 - 2016-10-05 04:40 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-10-12 15:45 - 2016-10-05 04:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2016-10-12 15:45 - 2016-10-05 04:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-12 15:45 - 2016-10-05 04:30 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-12 15:45 - 2016-10-05 04:29 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-12 15:45 - 2016-10-05 04:29 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-12 15:45 - 2016-10-05 04:28 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-12 15:45 - 2016-10-05 04:24 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-10-12 15:45 - 2016-10-05 04:24 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-12 15:45 - 2016-10-05 04:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-10-12 15:45 - 2016-10-05 04:15 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-10-12 15:45 - 2016-10-05 04:14 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-12 15:45 - 2016-10-05 04:13 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2016-10-12 15:45 - 2016-10-05 04:10 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-12 15:45 - 2016-10-05 04:09 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-12 15:45 - 2016-10-05 04:05 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-12 15:45 - 2016-10-05 04:04 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-12 15:45 - 2016-10-05 04:04 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-12 15:45 - 2016-10-05 03:59 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-12 15:45 - 2016-10-05 03:55 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-12 15:45 - 2016-10-05 03:54 - 01987584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-12 15:45 - 2016-10-05 03:50 - 22379520 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-12 15:45 - 2016-10-05 03:50 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-12 15:45 - 2016-10-05 03:40 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-10-12 15:45 - 2016-10-05 03:39 - 24611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-12 15:45 - 2016-10-05 03:39 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-12 15:45 - 2016-10-05 03:39 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-12 15:45 - 2016-10-05 03:33 - 14255104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-12 15:45 - 2016-10-05 03:27 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-10-12 15:45 - 2016-10-05 03:26 - 07836672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-12 15:45 - 2016-10-05 03:22 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-12 15:45 - 2016-10-05 03:13 - 19349504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-12 15:45 - 2016-10-05 03:13 - 18675200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-12 15:45 - 2016-10-05 03:13 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-12 15:45 - 2016-10-05 03:06 - 12587008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-12 15:45 - 2016-10-05 03:01 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-12 15:45 - 2016-10-01 03:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-12 15:45 - 2016-09-27 03:39 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-12 15:45 - 2016-09-17 09:08 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-12 15:45 - 2016-09-17 08:45 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-12 15:45 - 2016-09-17 08:28 - 03077120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-12 15:45 - 2016-09-17 08:12 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-10-12 15:45 - 2016-09-17 07:45 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-12 15:45 - 2016-09-17 07:43 - 02552832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-12 15:45 - 2016-09-17 07:22 - 04405248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-12 15:45 - 2016-06-18 05:55 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-10-12 15:45 - 2016-06-18 05:51 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-10-12 15:45 - 2016-06-18 05:49 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-10-12 15:45 - 2016-06-18 05:45 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-10-09 22:17 - 2016-10-09 22:17 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2016-10-09 22:17 - 2016-10-09 22:17 - 00000000 ____D C:\WINDOWS\IObit
2016-10-09 22:16 - 2016-10-31 18:45 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\IObit
2016-10-09 22:16 - 2016-10-31 18:45 - 00000000 ____D C:\ProgramData\IObit
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\LocalLow\IObit
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignfb5f1718c9cc9245
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignb29c1ff8c84d5280
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign8579154f3f2186df
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign61b6c1127494df05
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign395433f75e10669a
2016-10-09 22:10 - 2016-10-09 22:10 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign0f1fe48fca375740
2016-10-09 22:09 - 2016-11-01 11:00 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-10-09 22:09 - 2016-10-09 22:16 - 00000033 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\AdobeWLCMCache.dat
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignfc315020b72fa7e9
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsigne51617a97b1b34eb
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignc758c92b9f40b4bc
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign944cf9b072b4fbf6
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign4764c374f3278a18
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-10-09 22:08 - 2016-10-09 22:08 - 00002544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015.3.lnk
2016-10-09 22:08 - 2016-10-09 22:08 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-10-09 22:05 - 2016-10-16 14:27 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-10-09 22:05 - 2016-10-09 22:05 - 00000000 ___RD C:\Users\rey11.DESKTOP-3JFGBNG\Creative Cloud Files
2016-10-09 22:05 - 2016-10-09 22:05 - 00000000 ____D C:\Program Files\Adobe
2016-10-09 22:01 - 2016-10-09 22:01 - 00001302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-10-09 22:01 - 2016-10-09 22:01 - 00001290 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-10-09 21:57 - 2016-10-14 20:31 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-10-09 21:55 - 2016-11-01 10:53 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Adobe
2016-10-09 21:30 - 2016-10-09 21:55 - 00800960 _____ (Adobe Systems Incorporated) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\CreativeCloudSet-Up.exe
2016-10-06 20:58 - 2016-10-14 20:31 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-10-06 20:58 - 2016-10-12 20:59 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Ubisoft Game Launcher
2016-10-06 20:58 - 2016-10-06 20:58 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-10-06 19:38 - 2016-10-14 20:31 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-10-06 19:38 - 2016-10-06 19:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\WinRAR
2016-10-06 19:38 - 2016-10-06 19:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-10-06 19:38 - 2016-10-06 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-10-03 06:14 - 2016-10-03 06:14 - 00000000 ____D C:\ProgramData\HP
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-11-01 10:54 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-31 22:38 - 2016-09-20 19:33 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Skype
2016-10-31 18:32 - 2016-09-19 20:06 - 00825226 _____ C:\WINDOWS\system32\perfh00C.dat
2016-10-31 18:32 - 2016-09-19 20:06 - 00156062 _____ C:\WINDOWS\system32\perfc00C.dat
2016-10-31 18:32 - 2016-09-19 19:57 - 00000000 ____D C:\WINDOWS\INF
2016-10-31 18:32 - 2015-07-21 02:02 - 01851820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-31 18:26 - 2016-09-19 19:15 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-31 18:25 - 2016-09-19 19:33 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-10-31 18:14 - 2016-09-19 20:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Curse Client
2016-10-29 23:04 - 2016-09-19 20:38 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-29 21:19 - 2016-02-11 23:32 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\BrawlhallaReplays
2016-10-29 13:43 - 2016-09-19 19:44 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-27 19:25 - 2016-09-19 19:33 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-10-27 19:19 - 2016-09-19 19:58 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-26 22:26 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-10-26 22:26 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-24 22:56 - 2016-09-19 20:00 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-24 22:56 - 2016-09-19 20:00 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-23 20:08 - 2016-09-27 15:26 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-10-23 20:08 - 2016-09-27 15:24 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Battle.net
2016-10-23 20:08 - 2016-09-27 15:22 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-22 17:35 - 2016-09-20 19:33 - 00000000 ____D C:\ProgramData\Skype
2016-10-16 13:57 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-16 12:50 - 2016-09-19 20:07 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-10-16 12:50 - 2016-09-19 20:07 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-10-16 12:47 - 2016-09-19 19:49 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Adobe
2016-10-14 20:31 - 2016-10-01 17:18 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2016-10-14 20:31 - 2016-09-25 21:40 - 00000000 ____D C:\Program Files (x86)\SoulseekQt
2016-10-14 20:31 - 2016-09-20 19:33 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-14 20:31 - 2016-09-19 21:59 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-14 20:31 - 2016-09-19 19:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-14 20:31 - 2015-07-21 05:21 - 00000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2016-10-14 20:31 - 2015-07-21 05:20 - 00000000 ____D C:\Program Files (x86)\CyberLink
2016-10-14 20:31 - 2015-07-21 05:12 - 00000000 ____D C:\Program Files (x86)\mcafee.com
2016-10-14 20:31 - 2015-07-21 05:12 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-10-14 20:31 - 2015-07-21 05:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-10-14 20:31 - 2015-07-21 04:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-14 20:31 - 2015-07-21 04:19 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-10-14 20:31 - 2015-07-21 04:18 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-10-14 20:31 - 2015-07-21 04:06 - 00000000 ____D C:\Program Files (x86)\Intel
2016-10-14 20:29 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-10-14 20:29 - 2016-09-19 19:42 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG
2016-10-14 20:29 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-10-13 19:14 - 2015-07-21 01:58 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-13 18:34 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\rescache
2016-10-13 18:19 - 2016-09-19 19:14 - 00258304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-12 22:16 - 2016-09-19 19:58 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-12 22:16 - 2016-09-19 19:58 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-12 16:57 - 2016-09-20 18:07 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-09 22:16 - 2016-09-27 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-10-09 22:16 - 2016-09-27 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-10-09 22:05 - 2016-09-19 20:06 - 00000000 ____D C:\ProgramData\Adobe
2016-10-09 22:00 - 2015-07-21 04:07 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-09 21:59 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-09 20:53 - 2016-03-05 23:54 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\Films
2016-10-06 19:37 - 2016-09-19 22:00 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\vlc
2016-10-03 06:18 - 2016-05-01 15:23 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\Travail
2016-10-03 06:17 - 2016-09-19 19:49 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Packages
==================== Fichiers à la racine de certains dossiers =======
2016-10-09 22:09 - 2016-10-09 22:16 - 0000033 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\AdobeWLCMCache.dat
2016-10-15 23:20 - 2016-10-15 23:20 - 7203328 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\agent.dat
2016-10-15 23:20 - 2016-10-15 23:20 - 0070704 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Config.xml
2016-10-15 23:19 - 2016-10-15 23:20 - 0015936 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\InstallationConfiguration.xml
2016-10-15 23:19 - 2016-10-15 23:19 - 0140288 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Installer.dat
2016-10-23 20:09 - 2016-10-25 17:19 - 0000032 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\temp.tmp
2016-09-19 19:22 - 2016-09-19 19:22 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-07-21 05:22 - 2015-07-21 05:22 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2015-07-21 05:21 - 2015-07-21 05:21 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2015-07-21 05:21 - 2015-07-21 05:22 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2015-07-21 05:20 - 2015-07-21 05:20 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2015-07-21 05:21 - 2015-07-21 05:21 - 0000110 _____ () C:\ProgramData\{E3D04529-6EDB-11D8-A372-0050BAE317E1}.log
Certains fichiers dans TEMP:
====================
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\1F97.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\1__2211028.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\360ini.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\Browser_V5.6.14087.902_r_4728_(Build1608021049).exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\Browser_V5.7.15319.5_r_4670_(Build1608291541).exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\Browser_V5.7.15319.5_r_4722_(Build1608291541).exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\CC0C.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\ContentPushSetup.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\dl741F9827-6781-8A4B-B610-B175E2F84507.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\DriverBoosterSetup.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\E3B3.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\InstallOnline_inside.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\libeay32.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\msvcr120.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\nsw231C.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\SGCalendar_setup_1.0.2.7111_b.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\sqlite3.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\tu17p84.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\xzqiku_BD_FXKJ18.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\youkuclient_setup_external_7.0.6.10141.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-10-29 13:41
==================== Fin de FRST.txt ============================
Exécuté par rey11 (administrateur) sur DESKTOP-3JFGBNG (01-11-2016 11:01:43)
Exécuté depuis C:\Users\rey11.DESKTOP-3JFGBNG\Desktop
Profils chargés: rey11 (Profils disponibles: rey11)
Platform: Windows 10 Home Version 1511 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Stanper\Application\chrome.exe" "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(360.cn) C:\Program Files (x86)\360\360Safe\deepscan\ZhuDongFangYu.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(TODO: <公司名>) C:\Program Files (x86)\YouKu\YoukuClient\WebServe.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-24] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2015-06-17] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [360Safetray] => C:\Program Files (x86)\360\360Safe\safemon\360Tray.exe [395688 2016-10-25] (360.cn)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.5892.0626"
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\...\RunOnce: [Uninstall C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Microsoft\OneDrive\17.3.6390.0509"
HKU\S-1-5-18\...\Run: [] => 0
HKU\S-1-5-18\...\Run: [KSS] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
ShellIconOverlayIdentifiers: [ 360UDiskGuard Icon Overlay] -> {CC00F81D-5262-450A-B1FA-D6BEE3406263} => C:\Program Files (x86)\360\360Safe\safemon\360UDiskGuard64.dll [2016-10-25] (360.cn)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [KzShlobj2] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F3} => Pas de fichier
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kaspersky Software Updater Beta.lnk [2016-10-16]
ShortcutTarget: Kaspersky Software Updater Beta.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe (AO Kaspersky Lab)
GroupPolicy\User: Restriction - Chrome <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7a773097-8998-4e97-95b8-7fa2de3b68f6}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b4e5ad9d-eaa5-436d-9172-4b57077dd458}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://google.com
HKU\S-1-5-21-368780070-1562899766-1779122006-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://hao.360.cn/?installer
SearchScopes: HKU\S-1-5-21-368780070-1562899766-1779122006-1002 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-07-07] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-07-07] (McAfee, Inc.)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-368780070-1562899766-1779122006-1002 ->
FireFox:
========
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-09-22] [non signé]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-08-24] (Adobe Systems)
FF Plugin-x32: @360.cn/npaxlogin -> C:\Program Files (x86)\360\360Safe\Utils\npaxlogin.dll [2016-10-25] (360.cn)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-10-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-10-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-08-24] (Adobe Systems)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-11-01] <==== ATTENTION
CHR Extension: (Docs) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-14]
CHR Extension: (Google Drive) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-14]
CHR Extension: (YouTube) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-14]
CHR Extension: (Gmail) - C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-14]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-08-24] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-24] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
R2 kss; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-07-07] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-20] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-06-17] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.)
S3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [511488 2016-09-07] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364456 2016-09-07] (Microsoft Corporation)
R2 WebServe; C:\Program Files (x86)\YouKu\YoukuClient\WebServe.exe [370224 2015-12-08] (TODO: <公司名>)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-09-07] (Microsoft Corporation)
R2 ZhuDongFangYu; C:\Program Files (x86)\360\360Safe\deepscan\zhudongfangyu.exe [237168 2016-10-25] (360.cn)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [160768 2016-10-25] (360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [339456 2016-10-25] (360.cn)
S3 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [57856 2016-10-25] (360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [414208 2016-10-25] (360.cn)
R1 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [264192 2016-10-25] (360安全中心)
R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [90112 2016-10-25] (360.cn)
R1 360qpesv; C:\WINDOWS\System32\DRIVERS\360qpesv64.sys [249576 2016-10-03] (360.cn)
R1 360reskit64; C:\WINDOWS\system32\drivers\360reskit64.sys [68176 2016-10-25] (360.cn)
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [199680 2016-10-25] (360.cn)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc.)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-10-09] (REALiX(tm))
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [519456 2016-08-01] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [100136 2016-08-01] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [3870464 2015-10-01] (Realtek Semiconductor Corporation )
R1 ucdrv; C:\WINDOWS\System32\drivers:ucdrv-x64.sys [80850 ] (UC Web Inc.) <==== ATTENTION
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-10-31 18:47 - 2016-10-31 18:47 - 00000937 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\JRT.txt
2016-10-31 18:43 - 2016-10-31 18:44 - 01631928 _____ (Malwarebytes) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\JRT.exe
2016-10-31 18:43 - 2016-10-31 18:43 - 00000574 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\MBAM.txt
2016-10-31 18:30 - 2016-11-01 10:59 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-31 18:30 - 2016-10-31 18:30 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-10-31 18:30 - 2016-10-31 18:30 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-31 18:30 - 2016-10-31 18:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-10-31 18:30 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-31 18:30 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-31 18:30 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-31 18:28 - 2016-10-31 18:29 - 22851472 _____ (Malwarebytes ) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\mbam-setup-2.2.1.1043.exe
2016-10-31 18:28 - 2016-10-31 18:28 - 00029309 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\AdwCleaner[C0].txt
2016-10-31 18:18 - 2016-10-31 18:24 - 00000000 ____D C:\AdwCleaner
2016-10-31 18:17 - 2016-10-31 18:18 - 03910208 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\adwcleaner_6.030.exe
2016-10-31 18:04 - 2016-10-31 18:13 - 00023785 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPCleaner.txt
2016-10-31 17:57 - 2016-10-31 18:08 - 00000895 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPCleaner.lnk
2016-10-31 17:55 - 2016-10-31 17:57 - 02477568 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPCleaner.exe
2016-10-31 16:41 - 2016-10-31 16:42 - 00041667 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\Addition.txt
2016-10-31 16:38 - 2016-11-01 11:01 - 00019044 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\FRST.txt
2016-10-31 16:37 - 2016-11-01 11:01 - 00000000 ____D C:\FRST
2016-10-31 16:36 - 2016-10-31 16:37 - 02408960 _____ (Farbar) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\FRST64.exe
2016-10-31 16:31 - 2016-10-31 17:08 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\TS3Client
2016-10-31 16:31 - 2016-10-31 16:31 - 32019840 _____ (TeamSpeak Systems GmbH) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\TeamSpeak3-Client-win64-3.0.19.4.exe
2016-10-31 16:31 - 2016-10-31 16:31 - 00001012 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-10-31 16:31 - 2016-10-31 16:31 - 00000974 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-10-31 16:31 - 2016-10-31 16:31 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-10-31 14:59 - 2016-10-31 15:02 - 00157324 _____ C:\WINDOWS\ntbtlog.txt
2016-10-31 14:59 - 2016-10-31 14:59 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-10-31 14:02 - 2016-11-01 10:55 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\ZHP
2016-10-31 14:02 - 2016-11-01 10:54 - 00000885 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\ZHPDiag.lnk
2016-10-31 14:01 - 2016-10-31 14:02 - 02430464 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\ZHPDiag3.exe
2016-10-31 12:20 - 2016-10-31 12:20 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Expert
2016-10-31 12:20 - 2016-10-31 12:20 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360DiagnoseScan
2016-10-30 22:05 - 2016-11-01 10:55 - 00004020 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2016-10-29 15:59 - 2016-10-29 15:59 - 00003456 _____ C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\téléchargement.htm
2016-10-28 16:35 - 2016-10-28 16:35 - 00000000 ____D C:\ProgramData\ttff
2016-10-28 16:35 - 2016-10-28 16:35 - 00000000 ____D C:\ProgramData\dgadg
2016-10-26 22:26 - 2016-10-31 21:49 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-26 22:26 - 2016-10-29 22:33 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-10-26 22:26 - 2016-10-26 22:26 - 00004144 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-10-26 22:26 - 2016-10-26 22:26 - 00003978 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-10-26 18:29 - 2016-10-26 18:29 - 00000003 _____ C:\WINDOWS\SysWOW64\hoewmds
2016-10-26 18:28 - 2016-10-26 18:28 - 00000382 _____ C:\WINDOWS\SysWOW64\data.bin
2016-10-26 18:25 - 2016-10-26 22:26 - 00000000 ____D C:\Program Files (x86)\f09er35s
2016-10-26 17:45 - 2016-10-03 13:02 - 00249576 _____ (360.cn) C:\WINDOWS\system32\Drivers\360qpesv64.sys
2016-10-26 17:38 - 2016-10-26 17:38 - 00000000 ____D C:\WINDOWS\Tasks\360Disabled
2016-10-25 17:26 - 2016-10-25 17:26 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360Login
2016-10-25 17:25 - 2016-10-31 18:39 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360mobilemgr
2016-10-25 17:25 - 2016-10-31 18:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\LocalLow\360WD
2016-10-25 17:25 - 2016-10-31 18:26 - 00000001 _____ C:\WINDOWS\system32\Drivers\360Hvm64.dat
2016-10-25 17:25 - 2016-10-26 17:37 - 00000000 ____D C:\ProgramData\360safe
2016-10-25 17:25 - 2016-10-25 17:25 - 00002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\强力卸载电脑上的软件.lnk
2016-10-25 17:25 - 2016-10-25 17:25 - 00000000 _RSHD C:\360SANDBOX
2016-10-25 17:25 - 2016-10-25 17:24 - 00414208 _____ (360.cn) C:\WINDOWS\system32\Drivers\360FsFlt.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00339456 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00264192 _____ (360安全中心) C:\WINDOWS\system32\Drivers\360Hvm64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00160768 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00068176 _____ (360.cn) C:\WINDOWS\system32\Drivers\360reskit64.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00060416 _____ (360.cn) C:\WINDOWS\system32\Drivers\360LanProtect.sys
2016-10-25 17:25 - 2016-10-25 17:24 - 00057856 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys
2016-10-25 17:24 - 2016-10-25 17:24 - 00199680 _____ (360.cn) C:\WINDOWS\system32\Drivers\BAPIDRV64.sys
2016-10-25 17:24 - 2016-10-25 17:24 - 00180336 _____ (360.cn) C:\WINDOWS\SysWOW64\360SoftMgr.cpl
2016-10-25 17:24 - 2016-10-25 17:24 - 00090112 _____ (360.cn) C:\WINDOWS\system32\Drivers\360netmon.sys
2016-10-25 17:24 - 2016-10-25 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360安全中心
2016-10-25 17:23 - 2016-10-26 17:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\360Safe
2016-10-25 17:23 - 2016-10-25 17:23 - 00000000 ____D C:\Program Files (x86)\360
2016-10-25 17:20 - 2016-10-31 18:12 - 00000000 ____D C:\WINDOWS\system32\log
2016-10-25 17:19 - 2016-10-28 16:35 - 00000000 _____ C:\Users\Public\Documents\report.dat
2016-10-25 17:18 - 2016-10-31 15:04 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2016-10-25 17:18 - 2016-10-25 17:18 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Stanper
2016-10-25 17:18 - 2016-10-25 17:18 - 00000000 ____D C:\Program Files (x86)\Stanper
2016-10-25 16:25 - 2016-10-31 17:10 - 00004208 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2016-10-23 20:09 - 2016-10-25 17:19 - 00000032 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\temp.tmp
2016-10-23 20:09 - 2016-10-25 17:19 - 00000000 ____D C:\Program Files (x86)\SGCalendar
2016-10-23 20:09 - 2016-10-25 16:30 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\SGCalendar
2016-10-23 20:07 - 2016-09-27 15:22 - 00405480 _____ (Blizzard Entertainment) C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\Battle.net.exe
2016-10-19 19:17 - 2016-10-19 19:17 - 00000000 ____D C:\Program Files (x86)\fgz6wprv
2016-10-16 12:43 - 2016-10-16 12:46 - 00000000 ____D C:\KVRT_Data
2016-10-16 12:37 - 2016-10-16 12:37 - 00001172 _____ C:\Users\Public\Desktop\Kaspersky Software Updater Beta.lnk
2016-10-16 12:37 - 2016-10-16 12:37 - 00001132 _____ C:\Users\Public\Desktop\Kaspersky Security Scan.lnk
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Software Updater Beta
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Scan
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-10-16 12:37 - 2016-10-16 12:37 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2016-10-16 12:36 - 2016-10-16 12:36 - 02623496 _____ (Kaspersky Lab) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\kss16.0.0.1344mlg_10011.exe
2016-10-16 12:36 - 2016-10-16 12:36 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-10-16 12:33 - 2016-10-16 12:53 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\Documents\Youku Files
2016-10-16 12:33 - 2016-10-16 12:33 - 00003738 _____ C:\WINDOWS\System32\Tasks\{C4185E10-710A-4E19-9CE9-AB510D1FD0BE}
2016-10-16 12:32 - 2016-10-23 20:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\ytmediacenter
2016-10-16 12:32 - 2016-10-16 14:28 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\youku
2016-10-16 12:32 - 2016-10-16 12:32 - 00000000 ____D C:\Program Files (x86)\YouKu
2016-10-16 12:31 - 2016-10-31 18:22 - 00000000 ____D C:\Program Files (x86)\KuaiZip
2016-10-16 12:31 - 2016-10-26 17:45 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-10-16 12:31 - 2016-10-16 12:31 - 00004444 _____ C:\WINDOWS\System32\Tasks\SecureUpdater
2016-10-16 12:31 - 2016-10-16 12:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\UCBrowser
2016-10-16 12:30 - 2016-10-16 14:11 - 00000000 ____D C:\Program Files (x86)\hhh
2016-10-15 23:21 - 2016-10-15 23:21 - 00000000 _____ C:\TOSTACK
2016-10-15 23:20 - 2016-10-15 23:20 - 07203328 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\agent.dat
2016-10-15 23:20 - 2016-10-15 23:20 - 00070704 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Config.xml
2016-10-15 23:19 - 2016-10-15 23:20 - 00015936 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\InstallationConfiguration.xml
2016-10-15 23:19 - 2016-10-15 23:19 - 00140288 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Installer.dat
2016-10-15 16:18 - 2016-10-26 18:29 - 00002172 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-15 16:17 - 2016-10-15 16:17 - 00000000 ____D C:\Program Files (x86)\Google
2016-10-14 20:46 - 2016-10-14 20:46 - 01065376 _____ (Google Inc.) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\ChromeSetup.exe
2016-10-14 20:32 - 2016-10-15 16:01 - 00187904 _____ C:\WINDOWS\rsrcs.dll
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Mozilla
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\ProgramData\Avira
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\ProgramData\Avg
2016-10-14 20:31 - 2016-10-14 20:31 - 00000000 ____D C:\ProgramData\AVAST Software
2016-10-14 20:30 - 2016-11-01 10:56 - 00004176 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{ED950EA7-77DF-446F-8476-FCF8D53B5808}
2016-10-14 20:29 - 2016-10-31 18:45 - 00000000 ____D C:\Program Files (x86)\Vuhoent
2016-10-14 20:29 - 2016-10-16 14:11 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\UrlControl_
2016-10-14 20:29 - 2016-10-16 14:11 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\MzIzNTM1MzA=
2016-10-14 20:29 - 2016-10-16 12:50 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Ghkercult
2016-10-14 20:29 - 2016-10-14 20:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tileherrpy
2016-10-14 20:29 - 2016-10-14 20:29 - 00000290 __RSH C:\Users\rey11.DESKTOP-3JFGBNG\ntuser.pol
2016-10-14 20:28 - 2016-10-15 23:20 - 00000000 ____D C:\WINDOWS\system32\SSL
2016-10-14 20:24 - 2016-10-16 12:47 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\MyDesktop
2016-10-14 20:24 - 2016-10-15 23:16 - 00000165 _____ C:\WINDOWS\SysWOW64\MUpdater.exe.config
2016-10-14 20:24 - 2016-10-15 23:16 - 00000165 _____ C:\WINDOWS\SysWOW64\GameXP.exe.config
2016-10-14 20:24 - 2016-10-15 23:16 - 00000165 _____ C:\WINDOWS\SysWOW64\GameCenter.exe.config
2016-10-12 16:58 - 2016-10-12 17:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-12 15:45 - 2016-10-05 08:56 - 01644736 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 01242304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00602304 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00591040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00329920 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-12 15:45 - 2016-10-05 08:56 - 00144576 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-12 15:45 - 2016-10-05 08:56 - 00085696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-12 15:45 - 2016-10-05 08:20 - 01030408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-12 15:45 - 2016-10-05 08:20 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-12 15:45 - 2016-10-05 08:19 - 00129376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-12 15:45 - 2016-10-05 08:18 - 07468384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-12 15:45 - 2016-10-05 08:18 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-12 15:45 - 2016-10-05 08:18 - 01142560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-12 15:45 - 2016-10-05 08:01 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-12 15:45 - 2016-10-05 08:01 - 01337184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-12 15:45 - 2016-10-05 07:54 - 01297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-12 15:45 - 2016-10-05 07:17 - 03693064 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-12 15:45 - 2016-10-05 07:15 - 00304752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-10-12 15:45 - 2016-10-05 07:14 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-12 15:45 - 2016-10-05 07:09 - 00604920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-12 15:45 - 2016-10-05 06:45 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-10-12 15:45 - 2016-10-05 06:39 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-12 15:45 - 2016-10-05 06:39 - 00576856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-12 15:45 - 2016-10-05 06:38 - 00636296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-12 15:45 - 2016-10-05 06:38 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-12 15:45 - 2016-10-05 06:37 - 00640976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-10-12 15:45 - 2016-10-05 06:31 - 00422240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-12 15:45 - 2016-10-05 06:25 - 00871776 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-12 15:45 - 2016-10-05 06:23 - 00305808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-12 15:45 - 2016-10-05 06:08 - 02937896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-12 15:45 - 2016-10-05 06:05 - 00256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-10-12 15:45 - 2016-10-05 06:01 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-10-12 15:45 - 2016-10-05 06:00 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-12 15:45 - 2016-10-05 05:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-12 15:45 - 2016-10-05 05:50 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-10-12 15:45 - 2016-10-05 05:49 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2016-10-12 15:45 - 2016-10-05 05:49 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-10-12 15:45 - 2016-10-05 05:47 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2016-10-12 15:45 - 2016-10-05 05:47 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-12 15:45 - 2016-10-05 05:38 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-12 15:45 - 2016-10-05 05:35 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-12 15:45 - 2016-10-05 05:34 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-12 15:45 - 2016-10-05 05:33 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-12 15:45 - 2016-10-05 05:32 - 00538744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-10-12 15:45 - 2016-10-05 05:30 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-12 15:45 - 2016-10-05 05:30 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-10-12 15:45 - 2016-10-05 05:30 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-12 15:45 - 2016-10-05 05:29 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-10-12 15:45 - 2016-10-05 05:27 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-10-12 15:45 - 2016-10-05 05:23 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-10-12 15:45 - 2016-10-05 05:19 - 00717152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-12 15:45 - 2016-10-05 05:18 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-12 15:45 - 2016-10-05 05:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-12 15:45 - 2016-10-05 05:17 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-12 15:45 - 2016-10-05 05:15 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2016-10-12 15:45 - 2016-10-05 05:10 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-12 15:45 - 2016-10-05 05:10 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-12 15:45 - 2016-10-05 05:07 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-10-12 15:45 - 2016-10-05 05:05 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-12 15:45 - 2016-10-05 05:04 - 01718272 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-12 15:45 - 2016-10-05 05:02 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-12 15:45 - 2016-10-05 05:00 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-12 15:45 - 2016-10-05 05:00 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-12 15:45 - 2016-10-05 05:00 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-12 15:45 - 2016-10-05 04:57 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-10-12 15:45 - 2016-10-05 04:55 - 03549696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-12 15:45 - 2016-10-05 04:48 - 02437120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-12 15:45 - 2016-10-05 04:40 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-12 15:45 - 2016-10-05 04:40 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-10-12 15:45 - 2016-10-05 04:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2016-10-12 15:45 - 2016-10-05 04:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-12 15:45 - 2016-10-05 04:30 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-12 15:45 - 2016-10-05 04:29 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-12 15:45 - 2016-10-05 04:29 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-12 15:45 - 2016-10-05 04:28 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-12 15:45 - 2016-10-05 04:24 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-10-12 15:45 - 2016-10-05 04:24 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-12 15:45 - 2016-10-05 04:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-10-12 15:45 - 2016-10-05 04:15 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-10-12 15:45 - 2016-10-05 04:14 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-12 15:45 - 2016-10-05 04:13 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2016-10-12 15:45 - 2016-10-05 04:10 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-12 15:45 - 2016-10-05 04:09 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-12 15:45 - 2016-10-05 04:05 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-12 15:45 - 2016-10-05 04:04 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-12 15:45 - 2016-10-05 04:04 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-12 15:45 - 2016-10-05 03:59 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-12 15:45 - 2016-10-05 03:55 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-12 15:45 - 2016-10-05 03:54 - 01987584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-12 15:45 - 2016-10-05 03:50 - 22379520 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-12 15:45 - 2016-10-05 03:50 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-12 15:45 - 2016-10-05 03:40 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-10-12 15:45 - 2016-10-05 03:39 - 24611328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-12 15:45 - 2016-10-05 03:39 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-12 15:45 - 2016-10-05 03:39 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-12 15:45 - 2016-10-05 03:33 - 14255104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-12 15:45 - 2016-10-05 03:27 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-10-12 15:45 - 2016-10-05 03:26 - 07836672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-12 15:45 - 2016-10-05 03:22 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-12 15:45 - 2016-10-05 03:13 - 19349504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-12 15:45 - 2016-10-05 03:13 - 18675200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-12 15:45 - 2016-10-05 03:13 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-12 15:45 - 2016-10-05 03:06 - 12587008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-12 15:45 - 2016-10-05 03:01 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-12 15:45 - 2016-10-01 03:16 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-12 15:45 - 2016-09-27 03:39 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-12 15:45 - 2016-09-17 09:08 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-12 15:45 - 2016-09-17 08:45 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-12 15:45 - 2016-09-17 08:28 - 03077120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-12 15:45 - 2016-09-17 08:12 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-10-12 15:45 - 2016-09-17 07:45 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-12 15:45 - 2016-09-17 07:43 - 02552832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-12 15:45 - 2016-09-17 07:22 - 04405248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-12 15:45 - 2016-06-18 05:55 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-10-12 15:45 - 2016-06-18 05:51 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-10-12 15:45 - 2016-06-18 05:49 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-10-12 15:45 - 2016-06-18 05:45 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-10-09 22:17 - 2016-10-09 22:17 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2016-10-09 22:17 - 2016-10-09 22:17 - 00000000 ____D C:\WINDOWS\IObit
2016-10-09 22:16 - 2016-10-31 18:45 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\IObit
2016-10-09 22:16 - 2016-10-31 18:45 - 00000000 ____D C:\ProgramData\IObit
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\LocalLow\IObit
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignfb5f1718c9cc9245
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignb29c1ff8c84d5280
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign8579154f3f2186df
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign61b6c1127494df05
2016-10-09 22:16 - 2016-10-09 22:16 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign395433f75e10669a
2016-10-09 22:10 - 2016-10-09 22:10 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign0f1fe48fca375740
2016-10-09 22:09 - 2016-11-01 11:00 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-10-09 22:09 - 2016-10-09 22:16 - 00000033 _____ C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\AdobeWLCMCache.dat
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignfc315020b72fa7e9
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsigne51617a97b1b34eb
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsignc758c92b9f40b4bc
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign944cf9b072b4fbf6
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Tempzxpsign4764c374f3278a18
2016-10-09 22:09 - 2016-10-09 22:09 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-10-09 22:08 - 2016-10-09 22:08 - 00002544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2015.3.lnk
2016-10-09 22:08 - 2016-10-09 22:08 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-10-09 22:05 - 2016-10-16 14:27 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-10-09 22:05 - 2016-10-09 22:05 - 00000000 ___RD C:\Users\rey11.DESKTOP-3JFGBNG\Creative Cloud Files
2016-10-09 22:05 - 2016-10-09 22:05 - 00000000 ____D C:\Program Files\Adobe
2016-10-09 22:01 - 2016-10-09 22:01 - 00001302 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2016-10-09 22:01 - 2016-10-09 22:01 - 00001290 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2016-10-09 21:57 - 2016-10-14 20:31 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-10-09 21:55 - 2016-11-01 10:53 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Adobe
2016-10-09 21:30 - 2016-10-09 21:55 - 00800960 _____ (Adobe Systems Incorporated) C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\CreativeCloudSet-Up.exe
2016-10-06 20:58 - 2016-10-14 20:31 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-10-06 20:58 - 2016-10-12 20:59 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Ubisoft Game Launcher
2016-10-06 20:58 - 2016-10-06 20:58 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-10-06 19:38 - 2016-10-14 20:31 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-10-06 19:38 - 2016-10-06 19:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\WinRAR
2016-10-06 19:38 - 2016-10-06 19:38 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-10-06 19:38 - 2016-10-06 19:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-10-03 06:14 - 2016-10-03 06:14 - 00000000 ____D C:\ProgramData\HP
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-11-01 10:54 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-31 22:38 - 2016-09-20 19:33 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Skype
2016-10-31 18:32 - 2016-09-19 20:06 - 00825226 _____ C:\WINDOWS\system32\perfh00C.dat
2016-10-31 18:32 - 2016-09-19 20:06 - 00156062 _____ C:\WINDOWS\system32\perfc00C.dat
2016-10-31 18:32 - 2016-09-19 19:57 - 00000000 ____D C:\WINDOWS\INF
2016-10-31 18:32 - 2015-07-21 02:02 - 01851820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-31 18:26 - 2016-09-19 19:15 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-31 18:25 - 2016-09-19 19:33 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-10-31 18:14 - 2016-09-19 20:31 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Curse Client
2016-10-29 23:04 - 2016-09-19 20:38 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-29 21:19 - 2016-02-11 23:32 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\BrawlhallaReplays
2016-10-29 13:43 - 2016-09-19 19:44 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-27 19:25 - 2016-09-19 19:33 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-10-27 19:19 - 2016-09-19 19:58 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-26 22:26 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-10-26 22:26 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-24 22:56 - 2016-09-19 20:00 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-24 22:56 - 2016-09-19 20:00 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-23 20:08 - 2016-09-27 15:26 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-10-23 20:08 - 2016-09-27 15:24 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Battle.net
2016-10-23 20:08 - 2016-09-27 15:22 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-22 17:35 - 2016-09-20 19:33 - 00000000 ____D C:\ProgramData\Skype
2016-10-16 13:57 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-16 12:50 - 2016-09-19 20:07 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-10-16 12:50 - 2016-09-19 20:07 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-10-16 12:47 - 2016-09-19 19:49 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Adobe
2016-10-14 20:31 - 2016-10-01 17:18 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2016-10-14 20:31 - 2016-09-25 21:40 - 00000000 ____D C:\Program Files (x86)\SoulseekQt
2016-10-14 20:31 - 2016-09-20 19:33 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-14 20:31 - 2016-09-19 21:59 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-10-14 20:31 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-14 20:31 - 2016-09-19 19:22 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-14 20:31 - 2015-07-21 05:21 - 00000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2016-10-14 20:31 - 2015-07-21 05:20 - 00000000 ____D C:\Program Files (x86)\CyberLink
2016-10-14 20:31 - 2015-07-21 05:12 - 00000000 ____D C:\Program Files (x86)\mcafee.com
2016-10-14 20:31 - 2015-07-21 05:12 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-10-14 20:31 - 2015-07-21 05:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-10-14 20:31 - 2015-07-21 04:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-14 20:31 - 2015-07-21 04:19 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-10-14 20:31 - 2015-07-21 04:18 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-10-14 20:31 - 2015-07-21 04:06 - 00000000 ____D C:\Program Files (x86)\Intel
2016-10-14 20:29 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-10-14 20:29 - 2016-09-19 19:42 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG
2016-10-14 20:29 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-10-13 19:14 - 2015-07-21 01:58 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-13 18:34 - 2016-09-19 19:58 - 00000000 ____D C:\WINDOWS\rescache
2016-10-13 18:19 - 2016-09-19 19:14 - 00258304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-12 22:16 - 2016-09-19 19:58 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-12 22:16 - 2016-09-19 19:58 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-12 16:57 - 2016-09-20 18:07 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-10-09 22:16 - 2016-09-27 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-10-09 22:16 - 2016-09-27 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-10-09 22:05 - 2016-09-19 20:06 - 00000000 ____D C:\ProgramData\Adobe
2016-10-09 22:00 - 2015-07-21 04:07 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-09 21:59 - 2016-09-19 19:58 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-09 20:53 - 2016-03-05 23:54 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\Downloads\Films
2016-10-06 19:37 - 2016-09-19 22:00 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\vlc
2016-10-03 06:18 - 2016-05-01 15:23 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\Desktop\Travail
2016-10-03 06:17 - 2016-09-19 19:49 - 00000000 ____D C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Packages
==================== Fichiers à la racine de certains dossiers =======
2016-10-09 22:09 - 2016-10-09 22:16 - 0000033 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\AdobeWLCMCache.dat
2016-10-15 23:20 - 2016-10-15 23:20 - 7203328 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\agent.dat
2016-10-15 23:20 - 2016-10-15 23:20 - 0070704 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Config.xml
2016-10-15 23:19 - 2016-10-15 23:20 - 0015936 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\InstallationConfiguration.xml
2016-10-15 23:19 - 2016-10-15 23:19 - 0140288 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Roaming\Installer.dat
2016-10-23 20:09 - 2016-10-25 17:19 - 0000032 _____ () C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\temp.tmp
2016-09-19 19:22 - 2016-09-19 19:22 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-07-21 05:22 - 2015-07-21 05:22 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2015-07-21 05:21 - 2015-07-21 05:21 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2015-07-21 05:21 - 2015-07-21 05:22 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2015-07-21 05:20 - 2015-07-21 05:20 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2015-07-21 05:21 - 2015-07-21 05:21 - 0000110 _____ () C:\ProgramData\{E3D04529-6EDB-11D8-A372-0050BAE317E1}.log
Certains fichiers dans TEMP:
====================
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\1F97.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\1__2211028.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\360ini.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\Browser_V5.6.14087.902_r_4728_(Build1608021049).exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\Browser_V5.7.15319.5_r_4670_(Build1608291541).exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\Browser_V5.7.15319.5_r_4722_(Build1608291541).exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\CC0C.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\ContentPushSetup.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\dl741F9827-6781-8A4B-B610-B175E2F84507.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\DriverBoosterSetup.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\E3B3.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\InstallOnline_inside.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\libeay32.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\msvcr120.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\nsw231C.tmp.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\SGCalendar_setup_1.0.2.7111_b.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\sqlite3.dll
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\tu17p84.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\xzqiku_BD_FXKJ18.exe
C:\Users\rey11.DESKTOP-3JFGBNG\AppData\Local\Temp\youkuclient_setup_external_7.0.6.10141.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-10-29 13:41
==================== Fin de FRST.txt ============================