Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14.03.2018
Exécuté par Léa (administrateur) sur PC-LÉA (15-04-2018 10:00:24)
Exécuté depuis C:\Users\Léa\Desktop
Profils chargés: Léa (Profils disponibles: Léa)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
( ) C:\Windows\System32\lxdncoms.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(BitTorrent Inc.) C:\Users\Léa\AppData\Roaming\uTorrent\uTorrent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Spotify Ltd) C:\Users\Léa\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TDUSrv64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(BitTorrent Inc.) C:\Users\Léa\AppData\Roaming\uTorrent\updates\3.5.3_44396\utorrentie.exe
(BitTorrent Inc.) C:\Users\Léa\AppData\Roaming\uTorrent\updates\3.5.3_44396\utorrentie.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-10-09] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [179288 2014-04-17] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296008 2013-10-22] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2810608 2014-02-21] (Synaptics Incorporated)
HKLM-x32\...\Run: [KeNotify] => C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2013-08-06] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-03-11] (CANON INC.)
HKLM-x32\...\Run: [win_en_77] => [X]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3642688 2018-04-09] (Dropbox, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46139776 2018-03-15] ()
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\...\Run: [GoogleChromeAutoLaunch_1A82949172A44F7A68804C4B388735CC] => "C:\Users\Léa\AppData\Local\Vosteran\Application\vosteran.exe" --auto-launch-at-startup --profile-directory="Default"
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\...\Run: [uTorrent] => C:\Users\Léa\AppData\Roaming\uTorrent\uTorrent.exe [1983672 2018-04-14] (BitTorrent Inc.)
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\...\Run: [Spotify] => C:\Users\Léa\AppData\Roaming\Spotify\Spotify.exe [21093488 2017-10-26] (Spotify Ltd)
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\...\Run: [Spotify Web Helper] => C:\Users\Léa\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-10-26] (Spotify Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-09-13]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\Léa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP DeskJet 2130 series.lnk [2017-10-19]
ShortcutTarget: Alertes de surveillance de l'encre - HP DeskJet 2130 series.lnk -> C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPStatusBL.dll (Hewlett-Packard Development Company, LP)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

AutoConfigURL: [S-1-5-21-2078305155-2812541733-3609955693-1004] => hxxp://nonblock.net/wpad.dat?f0fdd585ffd4a62328554f98be74fe0a15097884
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.188.0.1
Tcpip\..\Interfaces\{31DAF420-E60B-4E75-AC27-7A16F217ECB9}: [DhcpNameServer] 8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220 217.15.81.150 212.99.120.141
Tcpip\..\Interfaces\{679713A4-D7F0-4AB8-8CEE-7FA834A78D70}: [DhcpNameServer] 10.188.0.1
ManualProxies: 0hxxp://nonblock.net/wpad.dat?f0fdd585ffd4a62328554f98be74fe0a15097884

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131186668043625003&GUID=ED288805-7AB5-2BCF-461F-17CAD1962731
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131186668043723529&GUID=ED288805-7AB5-2BCF-461F-17CAD1962731
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nuesearch.com/search/?type=ds&ts=1473246613&z=fb93bbd838b1ef906f7b985g0z1m4caodzcq5w6bez&from=che0812&uid=HGSTXHTS541010A9E680_141005JD1009CHJMA9AKX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nuesearch.com/search/?type=ds&ts=1473246613&z=fb93bbd838b1ef906f7b985g0z1m4caodzcq5w6bez&from=che0812&uid=HGSTXHTS541010A9E680_141005JD1009CHJMA9AKX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1473246613&z=fb93bbd838b1ef906f7b985g0z1m4caodzcq5w6bez&from=che0812&uid=HGSTXHTS541010A9E680_141005JD1009CHJMA9AKX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1473246613&z=fb93bbd838b1ef906f7b985g0z1m4caodzcq5w6bez&from=che0812&uid=HGSTXHTS541010A9E680_141005JD1009CHJMA9AKX
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1473246613&z=fb93bbd838b1ef906f7b985g0z1m4caodzcq5w6bez&from=che0812&uid=HGSTXHTS541010A9E680_141005JD1009CHJMA9AKX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nuesearch.com/search/?type=ds&ts=1473246613&z=fb93bbd838b1ef906f7b985g0z1m4caodzcq5w6bez&from=che0812&uid=HGSTXHTS541010A9E680_141005JD1009CHJMA9AKX&q={searchTerms}
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131186668043733860&GUID=ED288805-7AB5-2BCF-461F-17CAD1962731
HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1473246613&z=fb93bbd838b1ef906f7b985g0z1m4caodzcq5w6bez&from=che0812&uid=HGSTXHTS541010A9E680_141005JD1009CHJMA9AKX
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-05-13] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-2078305155-2812541733-3609955693-1004 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 1yu64l3z.default-1472154315952
FF ProfilePath: C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952 [2018-04-15]
FF Homepage: Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952 -> hxxps://www.google.fr/
FF Extension: (AdBlock) - C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2018-03-11]
FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\marcoagpinto@mail.telepac.pt [2018-03-27] [Legacy]
FF Extension: (Squeezie) - C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\squeezie-ext@shytoos.fr.xpi [2018-03-18]
FF Extension: (Adblock Plus) - C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-12]
FF Extension: (Block Site) - C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc}.xpi [2018-04-05]
FF Extension: (wanteeed) - C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2018-01-25]
FF Extension: (TLS 1.3 gradual roll-out) - C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\features\{fdaff1da-6e42-467d-a0d0-c005dbd54afd}\tls13-rollout-bug1442042@mozilla.org.xpi [2018-04-04] [Legacy]
FF SearchPlugin: C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\1yu64l3z.default-1472154315952\searchplugins\nice.xml [2016-09-12]
FF ProfilePath: C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\xycsv1ei.default-1472160764440 [2018-04-14]
FF user.js: detected! => C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\xycsv1ei.default-1472160764440\user.js [2016-09-12]
FF Homepage: Mozilla\Firefox\Profiles\xycsv1ei.default-1472160764440 -> hxxp://www.google.fr/
FF SearchPlugin: C:\Users\Léa\AppData\Roaming\Mozilla\Firefox\Profiles\xycsv1ei.default-1472160764440\searchplugins\nice.xml [2016-09-12]
FF ProfilePath: C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952 [2016-09-23] <==== ATTENTION
FF Homepage: Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952 -> hxxps://www.google.fr/
FF Extension: (SimilarWeb) - C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2016-09-12] [Legacy] [non signé]
FF Extension: (FF Adr) - C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2016-09-12] [non signé]
FF Extension: (Firefox Hotfix) - C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30] [Legacy]
FF Extension: (Dictionnaire français) - C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org [2016-09-13] [Legacy]
FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\marcoagpinto@mail.telepac.pt [2016-09-12] [Legacy]
FF Extension: (Adblock Plus) - C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-08-26] [Legacy]
FF SearchPlugin: C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\1yu64l3z.default-1472154315952\searchplugins\nuesearch.xml [2016-09-07]
FF ProfilePath: C:\Users\Léa\AppData\Roaming\Firefox\Firefox\Profiles\xycsv1ei.default-1472160764440 [2016-09-12] <==== ATTENTION
FF Homepage: Firefox\Firefox\Profiles\xycsv1ei.default-1472160764440 -> hxxp://www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_140.dll [2018-04-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_140.dll [2018-04-10] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-12] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default [2018-04-13]
CHR Extension: (Slides) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-30]
CHR Extension: (Docs) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-30]
CHR Extension: (Google Drive) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-26]
CHR Extension: (YouTube) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-26]
CHR Extension: (Sheets) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-12]
CHR Extension: (Gmail) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-26]
CHR Extension: (Chrome Media Router) - C:\Users\Léa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-12]
CHR HKU\S-1-5-21-2078305155-2812541733-3609955693-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-03-19] (Windows (R) Win 7 DDK provider) [Fichier non signé]
S3 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [254520 2017-05-11] (Connectify)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-12] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-12] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-04-09] (Dropbox, Inc.)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [21840 2014-03-03] ()
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
R2 lxdn_device; C:\Windows\system32\lxdncoms.exe [1039872 2007-11-28] ( )
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2820424 2014-10-15] (CybelSoft)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [120392 2015-11-17] (Toshiba Europe GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3901952 2014-06-05] (Qualcomm Atheros Communications, Inc.)
R1 cfywlan1; C:\Windows\system32\DRIVERS\cfywlan1.sys [36736 2016-12-15] (Connectify)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [43872 2016-12-15] (Connectify)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-08-25] ()
S3 ma-config_amd64; C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [17568 2014-02-24] (CybelSoft)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-03] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-02-21] (Synaptics Incorporated)
R3 sshid; C:\Windows\System32\drivers\sshid.sys [45936 2017-08-15] (SteelSeries ApS)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [33168 2013-10-11] (Windows (R) Win 7 DDK provider)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 cpuz138; \??\C:\Users\LAB9CF~1\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X] <==== ATTENTION
S3 dbx; system32\DRIVERS\dbx.sys [X]
S1 MpKslf6d16e04; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{31BC9060-02E2-42FC-8F42-76AE2401640D}\MpKslf6d16e04.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-04-15 09:55 - 2018-04-15 09:58 - 000068496 _____ C:\Users\Léa\Desktop\Addition.txt
2018-04-15 09:50 - 2018-04-15 10:00 - 000024120 _____ C:\Users\Léa\Desktop\FRST.txt
2018-04-15 09:50 - 2018-04-15 10:00 - 000000000 ____D C:\FRST
2018-04-15 09:48 - 2018-04-15 09:48 - 002403328 _____ (Farbar) C:\Users\Léa\Desktop\FRST64.exe
2018-04-14 20:53 - 2018-04-14 21:18 - 737734768 ____R C:\Users\Léa\Downloads\[ www.Cpasbien.pw ] The.Imitation.Game.2014.FRENCH.BRRip.XviD-SVR.avi
2018-04-14 18:06 - 2018-04-14 18:06 - 000002820 _____ C:\Users\Léa\Downloads\avis_echeance(9).pdf
2018-04-14 14:40 - 2018-04-15 09:26 - 000000000 ____D C:\Users\Léa\AppData\LocalLow\uTorrent
2018-04-13 22:47 - 2018-04-13 22:47 - 000000017 _____ C:\Users\Léa\AppData\Local\resmon.resmoncfg
2018-04-13 21:01 - 2018-04-13 21:57 - 000000000 ____D C:\Users\Léa\Downloads\[ Torrent9.red ] Santa.&.Cie.2017.FRENCH.BDRip.XviD-EXTREME
2018-04-13 09:45 - 2018-04-13 09:45 - 000000000 ____D C:\Users\Léa\AppData\Roaming\WinBatch
2018-04-12 23:47 - 2018-04-12 23:47 - 001624440 _____ (Tous Les Drivers) C:\Users\Léa\Downloads\Mes_Drivers_3.0.4.exe
2018-04-12 14:45 - 2018-04-13 09:40 - 179202450 _____ C:\Users\Léa\Downloads\tpdrv-20140523115702.zip
2018-04-12 14:34 - 2018-04-12 14:45 - 100005549 _____ C:\Users\Léa\Downloads\tpdrv-20140523112616.zip.part
2018-04-12 14:34 - 2018-04-12 14:34 - 000000000 _____ C:\Users\Léa\Downloads\tpdrv-20140523112616.zip
2018-04-12 10:32 - 2018-03-16 20:51 - 000144000 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-04-12 10:32 - 2018-03-14 15:23 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-04-12 10:32 - 2018-03-14 15:23 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-04-12 10:32 - 2018-03-14 15:23 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-04-12 10:32 - 2018-03-14 15:23 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-04-12 10:32 - 2018-03-14 15:23 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-04-12 10:32 - 2018-03-14 15:23 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-04-12 10:32 - 2018-03-14 15:23 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-04-12 10:32 - 2018-03-14 15:23 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-04-12 10:32 - 2018-03-14 15:23 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-04-11 22:39 - 2018-03-23 15:50 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-04-11 22:39 - 2018-03-23 01:00 - 025742336 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-04-11 22:39 - 2018-03-22 23:26 - 020287488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-04-11 22:39 - 2018-03-22 23:17 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-04-11 22:39 - 2018-03-22 23:15 - 005780480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-04-11 22:39 - 2018-03-22 23:06 - 000794112 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-04-11 22:39 - 2018-03-22 22:52 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-04-11 22:39 - 2018-03-22 22:42 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-04-11 22:39 - 2018-03-22 22:37 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-04-11 22:39 - 2018-03-22 22:29 - 015282688 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-04-11 22:39 - 2018-03-22 22:29 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-04-11 22:39 - 2018-03-22 22:29 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-04-11 22:39 - 2018-03-22 22:29 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-04-11 22:39 - 2018-03-22 22:27 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-04-11 22:39 - 2018-03-22 22:21 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-04-11 22:39 - 2018-03-22 22:20 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-04-11 22:39 - 2018-03-22 22:20 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-04-11 22:39 - 2018-03-22 22:15 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-04-11 22:39 - 2018-03-22 22:15 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-04-11 22:39 - 2018-03-22 22:15 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-04-11 22:39 - 2018-03-22 22:14 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-04-11 22:39 - 2018-03-22 22:04 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-04-11 22:39 - 2018-03-22 21:55 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-04-11 22:39 - 2018-03-22 21:53 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-04-11 22:39 - 2018-03-22 21:52 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-04-11 22:39 - 2018-03-22 21:51 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-04-11 22:39 - 2018-03-10 19:50 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-04-11 22:39 - 2018-03-10 02:16 - 001549136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-04-11 22:39 - 2018-03-10 02:16 - 000388440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-04-11 22:39 - 2018-03-09 23:20 - 007405392 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-04-11 22:39 - 2018-03-09 23:20 - 001737592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-04-11 22:39 - 2018-03-09 23:20 - 001676056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-04-11 22:39 - 2018-03-09 23:20 - 001536112 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-04-11 22:39 - 2018-03-09 23:20 - 001500424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-04-11 22:39 - 2018-03-09 23:20 - 001371344 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-04-11 22:39 - 2018-03-09 23:20 - 000418640 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-04-11 22:39 - 2018-03-09 21:59 - 000121168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2018-04-11 22:39 - 2018-03-09 16:52 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-04-11 22:39 - 2018-03-09 16:52 - 000113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-04-11 22:39 - 2018-03-09 16:52 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-04-11 22:39 - 2018-03-09 16:52 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-04-11 22:39 - 2018-03-08 20:15 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-04-11 22:39 - 2018-03-08 20:14 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-04-11 22:39 - 2018-03-08 16:21 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2018-04-11 22:39 - 2018-03-08 01:46 - 000202576 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2018-04-11 22:39 - 2018-03-08 01:42 - 000174928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2018-04-11 22:39 - 2018-03-07 21:28 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2018-04-11 22:39 - 2018-03-07 20:26 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2018-04-11 22:39 - 2018-03-03 19:44 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2018-04-11 22:39 - 2018-03-03 19:04 - 000252416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2018-04-11 22:39 - 2018-02-10 03:29 - 000531632 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2018-04-11 22:39 - 2018-02-10 03:25 - 001137872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-04-11 22:39 - 2018-02-09 19:44 - 000276304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2018-04-11 22:39 - 2018-02-09 19:21 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-04-11 22:39 - 2018-02-08 20:53 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2018-04-11 22:39 - 2018-02-08 20:22 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2018-04-11 22:39 - 2018-02-08 20:18 - 000221184 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2018-04-11 22:39 - 2018-02-08 20:03 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2018-04-11 22:39 - 2018-02-08 19:49 - 000289280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2018-04-11 22:39 - 2018-02-08 19:42 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2018-04-11 22:39 - 2018-02-08 19:42 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2018-04-11 22:39 - 2018-02-08 19:40 - 001096192 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2018-04-11 22:39 - 2018-02-08 19:38 - 000866304 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2018-04-11 22:39 - 2018-02-08 19:27 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2018-04-11 22:39 - 2018-02-08 19:24 - 000199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnntfy.dll
2018-04-11 22:39 - 2018-02-08 19:03 - 000664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll
2018-04-11 22:39 - 2018-02-08 19:03 - 000167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2018-04-11 22:39 - 2018-01-25 16:19 - 000995272 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2018-04-11 22:39 - 2018-01-25 16:14 - 000922944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2018-04-11 20:51 - 2018-04-11 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-04-09 12:17 - 2018-04-09 12:17 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-04-09 12:17 - 2018-04-09 12:17 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-04-09 12:17 - 2018-04-09 12:17 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2018-04-09 12:17 - 2018-04-09 12:17 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2018-04-08 18:20 - 2018-04-13 20:51 - 000000000 ____D C:\Users\Léa\Downloads\[ Torrent9.red ] Call.Me.by.Your.Name.2017.FRENCH.BDRip.XviD-FuN
2018-04-08 18:15 - 2018-04-13 21:09 - 000000000 ____D C:\Users\Léa\Downloads\Hidden Figures 2016 FRENCH BDRip XviD-EXTREME
2018-04-08 18:14 - 2018-04-08 19:36 - 1471311668 ____R C:\Users\Léa\Downloads\[ Torrent9.red ] Phantom.Thread.2017.FRENCH.BDRip.XviD-FuN.avi
2018-03-28 11:34 - 2018-03-28 11:36 - 000000000 ____D C:\Users\Léa\Desktop\FAC LR
2018-03-25 20:37 - 2018-03-25 20:37 - 000000000 ____D C:\Program Files\Google
2018-03-19 17:44 - 2018-03-19 17:44 - 000647684 _____ C:\Users\Léa\Downloads\Création de compte eCandidat.pdf
2018-03-19 17:44 - 2018-03-19 17:44 - 000306322 _____ C:\Users\Léa\Downloads\Calendrier M1.pdf
2018-03-19 17:40 - 2018-04-15 09:39 - 000050299 _____ C:\Users\Léa\Desktop\Motiv LH master commerce.odt
2018-03-19 17:16 - 2018-04-15 09:36 - 000041077 _____ C:\Users\Léa\Desktop\Motiv LH master tourisme.odt
2018-03-19 10:28 - 2018-03-19 10:28 - 000002820 _____ C:\Users\Léa\Downloads\avis_echeance(8).pdf
2018-03-17 22:45 - 2018-04-03 03:01 - 000835064 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-03-17 22:45 - 2018-04-03 03:01 - 000179704 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-03-17 12:57 - 2018-03-17 12:57 - 000280827 _____ C:\Users\Léa\Downloads\French_français.pdf

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-04-15 09:56 - 2014-12-30 20:53 - 000000000 ____D C:\Users\Léa\AppData\Roaming\uTorrent
2018-04-15 09:50 - 2016-11-18 16:47 - 000000000 ____D C:\Users\Léa\AppData\LocalLow\Mozilla
2018-04-15 09:47 - 2015-01-26 17:40 - 003884544 ___SH C:\Users\Léa\Downloads\Thumbs.db
2018-04-15 09:39 - 2014-12-31 18:43 - 001144320 ___SH C:\Users\Léa\Desktop\Thumbs.db
2018-04-15 09:31 - 2014-12-30 20:24 - 000003920 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{925935E0-0E70-4CBA-A895-77A48DCD8B34}
2018-04-15 09:30 - 2014-12-30 20:07 - 000000000 ___RD C:\Users\Léa\Google Drive
2018-04-15 09:25 - 2016-09-12 18:42 - 000001190 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-04-15 00:06 - 2016-09-12 18:42 - 000001194 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-04-14 23:58 - 2014-12-30 21:04 - 000000000 ____D C:\Users\Léa\AppData\Roaming\vlc
2018-04-14 17:24 - 2016-07-23 17:08 - 000000000 ____D C:\ProgramData\CanonIJPLM
2018-04-13 21:14 - 2016-08-13 15:53 - 000000000 ____D C:\Users\Léa\Desktop\TV SHOWS
2018-04-13 21:10 - 2018-02-03 10:25 - 000000000 ____D C:\Users\Léa\Downloads\Greys.Anatomy.S14E10.SUBFRENCH.WEB-DL.XviD-ZT.WwW.Torrent9.pe
2018-04-13 15:04 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2018-04-13 12:35 - 2014-12-30 19:35 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2078305155-2812541733-3609955693-1004
2018-04-13 09:52 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-04-13 00:04 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2018-04-12 23:59 - 2014-12-30 20:22 - 000000000 ____D C:\Users\Léa\AppData\Roaming\Spotify
2018-04-12 23:40 - 2014-05-06 16:37 - 000806842 _____ C:\Windows\system32\perfh00C.dat
2018-04-12 23:40 - 2014-05-06 16:37 - 000156662 _____ C:\Windows\system32\perfc00C.dat
2018-04-12 23:40 - 2014-03-18 11:53 - 001817064 _____ C:\Windows\system32\PerfStringBackup.INI
2018-04-12 23:10 - 2013-08-22 16:44 - 000408424 _____ C:\Windows\system32\FNTCACHE.DAT
2018-04-12 15:03 - 2015-01-08 18:55 - 000000000 ____D C:\Windows\system32\appraiser
2018-04-12 15:03 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
2018-04-12 12:02 - 2015-01-08 18:52 - 000000000 ____D C:\Windows\system32\MRT
2018-04-12 11:53 - 2017-10-11 23:05 - 136971704 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-04-12 11:53 - 2015-01-08 18:52 - 136971704 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-04-12 11:53 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2018-04-11 23:52 - 2013-08-22 15:25 - 000524288 ___SH C:\Windows\system32\config\BBI
2018-04-11 20:52 - 2016-09-12 18:42 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-04-11 20:09 - 2014-12-30 19:29 - 000000000 ____D C:\Users\Léa
2018-04-10 21:04 - 2018-03-13 14:18 - 000004626 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-04-10 21:04 - 2015-01-14 18:08 - 000004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-04-10 21:03 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-04-10 21:03 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-04-04 11:43 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-04-04 11:43 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2018-03-30 16:18 - 2016-09-12 18:42 - 000000000 ____D C:\Users\Léa\AppData\Local\Dropbox
2018-03-30 13:18 - 2016-11-18 11:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-03-30 13:18 - 2014-12-30 20:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-28 11:36 - 2016-10-03 21:30 - 000000000 ____D C:\Users\Léa\Desktop\léa
2018-03-28 11:34 - 2017-10-03 12:34 - 000000000 ____D C:\Users\Léa\Desktop\MASTER ETUDES CULTURELLES
2018-03-28 09:20 - 2014-12-30 20:44 - 000001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-03-25 20:37 - 2017-09-22 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-03-25 20:37 - 2014-09-08 20:06 - 000000000 ____D C:\Program Files (x86)\Google
2018-03-22 23:48 - 2016-09-18 19:54 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-22 23:48 - 2016-09-18 19:54 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Fichiers à la racine de certains dossiers =======

2014-12-30 21:53 - 2016-08-24 11:53 - 000000352 _____ () C:\Users\Léa\AppData\Roaming\WB.CFG
2015-01-01 14:55 - 2015-01-01 14:55 - 000000010 _____ () C:\Users\Léa\AppData\Local\DSI.DAT
2015-01-01 14:55 - 2015-01-01 14:55 - 000022528 _____ () C:\Users\Léa\AppData\Local\dsisetup977897962.exe
2018-04-13 22:47 - 2018-04-13 22:47 - 000000017 _____ () C:\Users\Léa\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2018-04-08 20:15

==================== Fin de FRST.txt ============================