cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:06-09-2015 01
Exécuté par ambre1908 (administrateur) sur AMBRE-PC (06-09-2015 18:38:09)
Exécuté depuis C:\Users\ambre1908\Desktop
Profils chargés: ambre1908 (Profils disponibles: UpdatusUser & ambre1908 & Invité)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(TODO: <公司名>) C:\Program Files (x86)\SFK\SSFK.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Orange) C:\Program Files (x86)\Orange\Assistance Livebox\AssistanceLivebox.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Akamai Technologies, Inc.) C:\Users\ambre1908\AppData\Local\Akamai\netsession_win.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ASUS) C:\Windows\AsScrPro.exe
(Akamai Technologies, Inc.) C:\Users\ambre1908\AppData\Local\Akamai\netsession_win.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
() C:\Program Files (x86)\SFK\SFKEX64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(ASUS) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Orange) C:\Program Files (x86)\Orange\Assistance Livebox\dist\ST2.exe
() C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLiveUpdate.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2213992 2011-05-12] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Setwallpaper] => c:\programdata\SetWallpaper.cmd
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-03] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2018032 2011-04-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-13] (Intel Corporation)
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2255360 2011-06-10] (ASUS)
HKLM-x32\...\Run: [USBChargerPlusTray] => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [496560 2011-04-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [avast] => C:\Program Files\AVAST Software\Avast\avastUI.exe [3744552 2011-11-28] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [Speech Recognition] => C:\Windows\Speech\Common\sapisvr.exe [44544 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [Facebook Update] => "C:\Users\ambre1908\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [Google Update] => "C:\Users\ambre1908\AppData\Local\Google\Update\GoogleUpdate.exe" /c
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [msnmsgr] => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-05-23] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [KiesPDLR] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [Akamai NetSession Interface] => C:\Users\ambre1908\AppData\Local\Akamai\netsession_win.exe [4691384 2015-07-23] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-05-23] (Samsung)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [Orange Installer] => "C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe"
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2551656 2012-01-31] (Hewlett-Packard Co.)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Run: [GoogleChromeAutoLaunch_D74B394178A9AF19021CC05110D2544A] => C:\Users\ambre1908\AppData\Local\Google\Chrome\Application\chrome.exe [813896 2015-08-18] (Google Inc.)
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\RunOnce: [Uninstall C:\Users\ambre1908\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ambre1908\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64"
HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\RunOnce: [Uninstall C:\Users\ambre1908\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ambre1908\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [247144 2012-10-08] (NVIDIA Corporation)
AppInit_DLLs: , C:\Windows\Jaksta\AC\x64\jaudcap.dll => C:\Windows\Jaksta\AC\x64\jaudcap.dll [312096 2015-02-21] (Jaksta Technologies Pty Ltd)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [202600 2012-10-08] (NVIDIA Corporation)
AppInit_DLLs-x32: , c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [202600 2012-10-08] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [202600 2012-10-08] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\Jaksta\AC\x86\jaudcap.dll => C:\Windows\Jaksta\AC\x86\jaudcap.dll [264992 2015-02-21] (Jaksta Technologies Pty Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2011-11-28] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AsusVibeLauncher.lnk [2011-04-13]
ShortcutTarget: AsusVibeLauncher.lnk -> C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2011-10-08]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe ()
Startup: C:\Users\ambre1908\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Photosmart 5520 series (réseau).lnk [2013-09-08]
ShortcutTarget: Alertes de surveillance de l'encre - HP Photosmart 5520 series (réseau).lnk -> (Pas de fichier)
Startup: C:\Users\ambre1908\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk [2012-02-03]
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0D047B15-326A-4A5E-A132-B5615C465CEC}: [DhcpNameServer] 10.11.0.1
Tcpip\..\Interfaces\{AC355BB2-432D-4725-BBAA-E76820C19D9E}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1037735796-1459874005-2169763421-1001 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-1037735796-1459874005-2169763421-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1037735796-1459874005-2169763421-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: avast! WebRep -> {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-07-16] (Oracle Corporation)
BHO-x32: avast! WebRep -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28] (AVAST Software)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll Pas de fichier
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-07-16] (Oracle Corporation)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28] (AVAST Software)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28] (AVAST Software)
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll Pas de fichier
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll Pas de fichier
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2013-12-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.5.0 -> C:\Windows\SysWOW64\npDeployJava1.dll [2012-07-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.0 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2012-07-16] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2012-10-02] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2012-10-02] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-12-08] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation)
FF Plugin HKU\S-1-5-21-1037735796-1459874005-2169763421-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ambre1908\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll Pas de fichier
FF Plugin HKU\S-1-5-21-1037735796-1459874005-2169763421-1001: @tools.google.com/Google Update;version=3 -> C:\Users\ambre1908\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll Pas de fichier
FF Plugin HKU\S-1-5-21-1037735796-1459874005-2169763421-1001: @tools.google.com/Google Update;version=9 -> C:\Users\ambre1908\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll Pas de fichier
FF Plugin HKU\S-1-5-21-1037735796-1459874005-2169763421-1001: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-12-08] (Pando Networks)
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: HP Smart Print - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2013-09-08]
FF HKU\S-1-5-21-1037735796-1459874005-2169763421-1001\...\Firefox\Extensions: [m1988@m1988.ae] - C:\Program Files (x86)\m1988\ff

Chrome:
=======
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-31]
CHR Extension: (HTTPS Everywhere) - C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2015-08-31]
CHR Extension: (AdBlock) - C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-08-31]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\ambre1908\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-30]
CHR HKLM-x32\...\Chrome\Extension: [gfkbfjcbkhnmiignagpkiijohkcdkffb] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\PROGRA~1\AVASTS~1\Avast\WebRep\Chrome\aswWebRepChrome.crx [2012-01-29]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44768 2011-11-28] (AVAST Software)
S2 FsUsbExService; C:\Windows\SysWOW64\FsUsbExService.Exe [233472 2013-02-05] (Teruten) [Fichier non signé]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1903472 2015-01-11] (Electronic Arts)
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [448000 2015-08-31] (TODO: <公司名>) [Fichier non signé]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 otshot; C:\program files\otshot\ZalmanUpdateService.exe [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [24408 2011-11-28] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66904 2011-11-28] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [42328 2011-11-28] (AVAST Software)
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [591192 2011-11-28] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [304472 2011-11-28] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [58712 2011-11-28] (AVAST Software)
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20552 2010-07-30] (Devguru Co., Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] () [Fichier non signé]
R3 jakstaVA; C:\Windows\System32\DRIVERS\jaksta_va.sys [103816 2014-12-09] (e2eSoft)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [284008 2012-10-08] (NVIDIA Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 ssm_bus; C:\Windows\System32\DRIVERS\ssm_bus.sys [136192 2010-12-21] (MCCI Corporation)
S3 ssm_mdfl; C:\Windows\System32\DRIVERS\ssm_mdfl.sys [18944 2010-12-21] (MCCI Corporation)
S3 ssm_mdm; C:\Windows\System32\DRIVERS\ssm_mdm.sys [172032 2010-12-21] (MCCI Corporation)
S3 ss_bserd; C:\Windows\System32\DRIVERS\ss_bserd.sys [128000 2010-12-21] (MCCI Corporation)
S3 cleanhlp; \??\C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-09-06 18:38 - 2015-09-06 18:39 - 00025325 _____ C:\Users\ambre1908\Desktop\FRST.txt
2015-09-06 18:37 - 2015-09-06 18:38 - 00000000 ____D C:\FRST
2015-09-06 18:37 - 2015-09-06 18:37 - 02190336 _____ (Farbar) C:\Users\ambre1908\Desktop\FRST64.exe
2015-09-05 18:52 - 2015-09-05 18:52 - 00000000 ____D C:\Users\ambre1908\AppData\Local\Apple
2015-09-01 20:49 - 2015-09-01 20:49 - 00029180 _____ C:\Users\ambre1908\AppData\Local\recently-used.xbel
2015-08-31 18:51 - 2015-09-05 16:00 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-31 18:48 - 2015-08-31 18:48 - 00000000 ____D C:\Users\ambre1908\AppData\Local\Deployment
2015-08-31 18:48 - 2015-08-31 18:48 - 00000000 ____D C:\Users\ambre1908\AppData\Local\Apps\2.0
2015-08-31 17:34 - 2015-09-01 19:46 - 00001302 _____ C:\Users\ambre1908\Desktop\malwarebytes 2 .txt
2015-08-31 11:50 - 2015-08-31 11:50 - 00003442 _____ C:\Windows\System32\Tasks\Lumojsaejeu
2015-08-31 11:35 - 2015-08-31 17:34 - 00000000 ____D C:\ProgramData\1WdsManPro1
2015-08-31 11:11 - 2015-08-31 11:11 - 00044441 _____ C:\Users\ambre1908\Desktop\malwarebytes.txt
2015-08-31 10:33 - 2015-08-31 18:54 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-08-31 10:32 - 2015-08-31 17:35 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-08-31 10:32 - 2015-08-31 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-08-31 10:32 - 2015-08-31 10:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-08-31 10:32 - 2015-08-31 10:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-31 10:32 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-08-31 10:32 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-08-31 10:32 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-08-31 10:26 - 2015-08-31 10:31 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\ambre1908\Desktop\mbam-setup-2.1.8.1057.exe
2015-08-30 12:35 - 2015-08-30 12:35 - 00000000 ____D C:\Users\ambre1908\AppData\Local\CrashDumps
2015-08-30 12:33 - 2015-08-30 12:33 - 00000000 ____D C:\Program Files (x86)\predm
2015-08-30 11:37 - 2015-08-31 18:22 - 00000000 ____D C:\Program Files (x86)\SFK
2015-08-30 11:37 - 2015-08-31 18:10 - 00000000 ____D C:\ProgramData\nWdsManPron
2015-08-30 11:37 - 2015-08-31 17:34 - 00000000 ____D C:\Users\ambre1908\AppData\Local\SmartWeb
2015-08-30 11:22 - 2015-08-30 11:22 - 00119192 _____ C:\Users\ambre1908\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-30 11:22 - 2015-08-30 11:22 - 00000000 ____D C:\Users\ambre1908\AppData\Local\gegl-0.2
2015-08-30 11:19 - 2015-09-06 18:19 - 00001034 _____ C:\Windows\Tasks\ImO6OFrXUHgA6MEKc0DICRv.job
2015-08-30 11:19 - 2015-08-30 11:19 - 00004068 _____ C:\Windows\System32\Tasks\ImO6OFrXUHgA6MEKc0DICRv
2015-08-30 11:16 - 2015-09-06 18:19 - 00001006 _____ C:\Windows\Tasks\4FhXsuGiy.job
2015-08-30 11:16 - 2015-08-30 11:16 - 00004040 _____ C:\Windows\System32\Tasks\4FhXsuGiy
2015-08-30 11:15 - 2015-08-30 11:23 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-08-30 11:09 - 2015-08-30 11:09 - 00018574 _____ C:\Users\ambre1908\Desktop\AdwCleaner[C12].txt
2015-08-30 10:29 - 2015-08-30 10:30 - 01618432 _____ C:\Users\ambre1908\Desktop\adwcleaner_5.004.exe
2015-08-29 21:48 - 2015-08-29 21:48 - 00004776 _____ C:\Windows\SysWOW64\Ooteeotoor.ini
2015-08-29 21:48 - 2015-08-29 21:48 - 00002488 _____ C:\Windows\SysWOW64\OoteeotoorOff.ini
2015-08-29 21:48 - 2015-08-29 21:48 - 00002488 _____ C:\Windows\system32\OoteeotoorOff.ini
2015-08-29 21:46 - 2015-08-29 21:46 - 00000000 ____D C:\Windows\system32\abis
2015-08-29 19:03 - 2015-08-29 19:03 - 06220854 _____ C:\Users\ambre1908\Documents\Sans titre 1.bmp
2015-08-29 18:51 - 2015-08-29 18:53 - 01937920 _____ C:\Users\ambre1908\Desktop\ZHPCleaner.exe
2015-08-29 18:24 - 2015-09-06 18:24 - 00001002 _____ C:\Windows\Tasks\HwI0ROk.job
2015-08-29 18:24 - 2015-08-29 18:24 - 00004036 _____ C:\Windows\System32\Tasks\HwI0ROk
2015-08-28 21:47 - 2015-08-29 18:06 - 00003442 _____ C:\Windows\System32\Tasks\Geifilacroh
2015-08-28 20:31 - 2015-08-28 20:31 - 00116230 _____ C:\Users\ambre1908\Desktop\Extras.Txt
2015-08-28 20:29 - 2015-08-28 20:29 - 00249432 _____ C:\Users\ambre1908\Desktop\OTL.Txt
2015-08-28 19:55 - 2015-08-28 19:55 - 00000512 _____ C:\PhysicalMBR.bin
2015-08-28 19:46 - 2015-08-28 19:46 - 00602112 _____ (OldTimer Tools) C:\Users\ambre1908\Desktop\OTL.exe
2015-08-28 11:47 - 2015-08-31 17:35 - 00000828 _____ C:\Users\ambre1908\Desktop\ZHPDiag.lnk
2015-08-28 11:47 - 2015-08-29 18:58 - 00000000 ____D C:\Users\ambre1908\AppData\Roaming\ZHP
2015-08-27 22:22 - 2015-08-27 22:22 - 00000000 ____D C:\Users\ambre1908\AppData\Roaming\Opera Software
2015-08-27 22:20 - 2015-08-27 22:27 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-27 21:53 - 2015-09-06 18:19 - 00001006 _____ C:\Windows\Tasks\74k28EQCS.job
2015-08-27 21:53 - 2015-08-27 21:53 - 00004040 _____ C:\Windows\System32\Tasks\74k28EQCS
2015-08-27 21:52 - 2015-08-30 11:18 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-08-27 21:45 - 2015-08-27 21:45 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-27 21:41 - 2015-08-30 11:37 - 00001018 _____ C:\task.vbs
2015-08-27 21:40 - 2015-08-27 21:40 - 00000000 _____ C:\dummy.htm
2015-08-27 21:39 - 2015-08-31 14:46 - 00000000 ____D C:\ProgramData\update
2015-08-27 21:39 - 2015-08-31 11:35 - 00000102 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-08-26 21:38 - 2015-08-26 21:42 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-08-26 21:29 - 2015-08-26 21:29 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2015-08-26 21:29 - 2015-08-26 21:29 - 00000000 ____D C:\Users\ambre1908\Documents\samsung

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-09-06 18:31 - 2011-10-08 14:05 - 01686441 _____ C:\Windows\WindowsUpdate.log
2015-09-06 18:30 - 2012-01-21 18:36 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1037735796-1459874005-2169763421-1001UA.job
2015-09-06 18:24 - 2011-02-19 06:29 - 00759322 _____ C:\Windows\system32\perfh00C.dat
2015-09-06 18:24 - 2011-02-19 06:29 - 00154154 _____ C:\Windows\system32\perfc00C.dat
2015-09-06 18:24 - 2009-07-14 07:13 - 01700416 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-06 18:20 - 2011-04-13 04:33 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-06 18:19 - 2012-01-21 18:36 - 00001042 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1037735796-1459874005-2169763421-1001Core.job
2015-09-06 18:19 - 2012-01-04 14:13 - 00000944 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1037735796-1459874005-2169763421-1001UA.job
2015-09-06 18:19 - 2012-01-04 14:13 - 00000922 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1037735796-1459874005-2169763421-1001Core.job
2015-09-05 18:53 - 2011-04-13 04:33 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-05 18:48 - 2012-06-03 14:51 - 00000000 ____D C:\Users\ambre1908\.gimp-2.8
2015-09-05 18:46 - 2009-07-14 06:51 - 00146833 _____ C:\Windows\setupact.log
2015-09-05 16:02 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-05 16:02 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-31 18:51 - 2011-04-13 04:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-31 18:48 - 2011-04-13 04:33 - 00004070 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-31 18:48 - 2011-04-13 04:33 - 00003818 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-31 18:35 - 2011-04-13 04:49 - 00000000 ____D C:\AsusVibeData
2015-08-31 18:32 - 2013-07-27 13:15 - 00003020 _____ C:\Windows\System32\Tasks\AssistanceLivebox
2015-08-31 18:31 - 2012-04-26 20:21 - 00000000 ____D C:\Users\ambre1908\AppData\Local\Akamai
2015-08-31 18:31 - 2011-12-24 23:10 - 00000000 ___HD C:\ASUS.DAT
2015-08-31 18:21 - 2011-10-08 14:12 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-31 18:21 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-31 18:20 - 2011-04-13 03:39 - 00856360 _____ C:\Windows\PFRO.log
2015-08-31 18:19 - 2011-12-24 23:10 - 00001355 _____ C:\Users\ambre1908\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-31 18:19 - 2011-10-08 14:26 - 00045056 _____ C:\Windows\system32\acovcnt.exe
2015-08-31 18:19 - 2011-10-08 14:25 - 00001819 _____ C:\Windows\system32\ServiceFilter.ini
2015-08-31 18:19 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-31 18:10 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup
2015-08-31 17:36 - 2014-05-20 23:46 - 00001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2015-08-31 17:36 - 2012-06-02 16:22 - 00000926 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2015-08-31 17:36 - 2011-12-27 21:09 - 00002507 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-08-31 17:36 - 2011-04-13 04:43 - 00001364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2015-08-31 17:36 - 2011-04-13 04:43 - 00001295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2015-08-31 17:36 - 2011-04-13 04:41 - 00001468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-08-31 17:36 - 2011-04-13 04:25 - 00002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
2015-08-31 17:36 - 2009-07-29 07:08 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-08-31 17:36 - 2009-07-29 07:08 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-08-31 17:36 - 2009-07-14 06:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2015-08-31 17:36 - 2009-07-14 06:57 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2015-08-31 17:36 - 2009-07-14 06:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2015-08-31 17:36 - 2009-07-14 06:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2015-08-31 17:35 - 2015-04-28 16:05 - 00000911 _____ C:\Users\ambre1908\Desktop\SecurityKISS Tunnel.lnk
2015-08-31 17:35 - 2014-05-30 09:52 - 00000852 _____ C:\Users\ambre1908\Desktop\Movies2iPhone.lnk
2015-08-31 17:35 - 2014-05-20 23:46 - 00001007 _____ C:\Users\Public\Desktop\Audacity.lnk
2015-08-31 17:35 - 2014-05-08 13:09 - 00002238 _____ C:\Users\ambre1908\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2015-08-31 17:35 - 2014-03-09 22:11 - 00001380 _____ C:\Users\Public\Desktop\Xcas.lnk
2015-08-31 17:35 - 2014-01-23 19:28 - 00001779 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-08-31 17:35 - 2014-01-23 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-31 17:35 - 2013-11-13 17:05 - 00000989 _____ C:\Users\ambre1908\Desktop\Algobox.lnk
2015-08-31 17:35 - 2013-09-08 19:06 - 00002202 _____ C:\Users\Public\Desktop\HP Photosmart 5520 series.lnk
2015-08-31 17:35 - 2013-06-08 08:57 - 00001052 _____ C:\Users\ambre1908\Desktop\VirtualDJ Home FREE.lnk
2015-08-31 17:35 - 2013-02-03 16:34 - 00000835 _____ C:\Users\ambre1908\Desktop\GeoGebra 4.2.lnk
2015-08-31 17:35 - 2012-12-20 19:42 - 00001204 _____ C:\Users\ambre1908\Desktop\Format Factory.lnk
2015-08-31 17:35 - 2012-08-02 18:02 - 00001098 _____ C:\Users\Public\Desktop\Sims 3 UIC.lnk
2015-08-31 17:35 - 2012-07-16 15:57 - 00001016 _____ C:\Users\Public\Desktop\LifeFrame.lnk
2015-08-31 17:35 - 2012-06-20 10:38 - 00000979 _____ C:\Users\Public\Desktop\Origin.lnk
2015-08-31 17:35 - 2012-06-02 18:04 - 00000926 _____ C:\Users\ambre1908\Desktop\GIMP 2.lnk
2015-08-31 17:35 - 2012-02-03 19:45 - 00001146 _____ C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
2015-08-31 17:35 - 2011-04-13 04:33 - 00001868 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk
2015-08-31 17:35 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-31 17:35 - 2009-07-14 07:01 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2015-08-31 17:35 - 2009-07-14 06:49 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2015-08-31 17:34 - 2011-12-28 10:21 - 00000000 ____D C:\temp
2015-08-31 17:34 - 2011-12-27 19:44 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-08-30 11:25 - 2011-12-24 23:12 - 00000000 ____D C:\Users\ambre1908\AppData\Local\Google
2015-08-30 11:19 - 2014-09-14 13:28 - 00000000 ____D C:\Users\ambre1908\AppData\Local\Ankama
2015-08-30 11:19 - 2013-11-13 17:05 - 00000000 ____D C:\Program Files (x86)\Algobox
2015-08-30 11:07 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-08-30 11:02 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-30 11:01 - 2013-11-18 19:07 - 00000000 ____D C:\AdwCleaner
2015-08-29 21:46 - 2011-05-04 15:44 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-08-29 21:45 - 2012-01-08 11:24 - 00000045 _____ C:\user.js
2015-08-28 21:55 - 2009-07-14 05:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-08-28 21:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-08-28 11:25 - 2012-01-21 18:36 - 00004072 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1037735796-1459874005-2169763421-1001UA
2015-08-28 11:25 - 2012-01-21 18:36 - 00003676 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1037735796-1459874005-2169763421-1001Core
2015-08-27 23:12 - 2012-10-28 19:53 - 00000000 ____D C:\Users\ambre1908\Documents\Truc machin chose
2015-08-27 19:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-08-26 21:19 - 2011-04-13 04:38 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-08-26 21:14 - 2012-02-04 12:15 - 00000000 ____D C:\Users\ambre1908\Tracing
2015-08-26 21:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions

==================== Fichiers à la racine de certains dossiers =======

2012-01-27 21:50 - 2012-01-27 21:54 - 0000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\ambre1908\AppData\Roaming\4FhXsuGiy
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\ambre1908\AppData\Roaming\74k28EQCS
2011-12-28 00:22 - 2015-06-17 12:58 - 0000121 _____ () C:\Users\ambre1908\AppData\Roaming\D2Info0
2012-12-02 13:03 - 2012-12-09 12:16 - 0000129 _____ () C:\Users\ambre1908\AppData\Roaming\D2Info1
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\ambre1908\AppData\Roaming\HwI0ROk
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\ambre1908\AppData\Roaming\ImO6OFrXUHgA6MEKc0DICRv
2014-05-30 09:52 - 2014-05-30 09:52 - 0000102 _____ () C:\Users\ambre1908\AppData\Roaming\Movies2iPhone.ini
2014-01-19 21:25 - 2014-01-19 21:25 - 0000600 _____ () C:\Users\ambre1908\AppData\Roaming\winscp.rnd
2015-09-01 20:49 - 2015-09-01 20:49 - 0029180 _____ () C:\Users\ambre1908\AppData\Local\recently-used.xbel
2013-10-23 15:44 - 2013-10-23 15:44 - 0000000 _____ () C:\ProgramData\292431262a5f292b_c
2013-09-08 19:05 - 2013-09-08 19:05 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-04-13 04:48 - 2010-07-07 01:10 - 0131472 _____ () C:\ProgramData\FullRemove.exe
2015-08-27 21:39 - 2015-08-31 11:35 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2011-10-08 14:29 - 2011-10-08 14:30 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-10-08 14:29 - 2011-10-08 14:29 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Fichiers à déplacer ou supprimer:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Certains fichiers dans TEMP:
====================
C:\Users\ambre1908\AppData\Local\Temp\fsd5772.exe
C:\Users\ambre1908\AppData\Local\Temp\fsd9F27.exe
C:\Users\ambre1908\AppData\Local\Temp\Uninstall.exe
C:\Users\ambre1908\AppData\Local\Temp\y5nhqqu1.dll


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll
[2011-05-04 15:44] - [2015-08-29 21:46] - 0357888 ____A (Microsoft Corporation) 0E4E27DDEC7F5282C284799613F814FC

C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-08-27 18:55

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité