cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:18-10-2015
Exécuté par Bryan (administrateur) sur LEGUERN (19-10-2015 19:07:31)
Exécuté depuis D:\Users\Bryan\Desktop\Anti virus
Profils chargés: Bryan (Profils disponibles: Bryan)
Platform: Windows 8.1 Pro Student (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Nico Mak Computing) C:\Program Files\WinZip\FAH\FAHWindow64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(WinZip Computing, S.L.) C:\Program Files\WinZip\WzPreloader.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Mega Limited) D:\Users\Bryan\AppData\Local\MEGAsync\MEGAsync.exe
(Kingsoft Corporation) C:\Program Files (x86)\cmcm\Clean Master\cmtray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510896 2014-01-14] (Realtek Semiconductor)
HKLM\...\Run: [LoRdiStartOnce] => C:\Windows\LoRdi\LoRdiAccueil\LoRdiStartOnce.bat [159 2015-05-20] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2014-01-07] (Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-09-23] (Apple Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1125800 2015-09-22] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3812264 2015-10-12] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [cmsc] => c:\program files (x86)\cmcm\Clean Master\cmtray.exe [771912 2015-10-18] (Kingsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-682487850-1341855315-2669799507-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8461224 2015-09-16] (Piriform Ltd)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Pas de fichier
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk [2015-10-17]
ShortcutTarget: FAH.lnk -> C:\Program Files\WinZip\FAH\FAHConsole.exe (Nico Mak Computing)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2015-04-28]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SuiteLoRdi.lnk [2015-05-11]
ShortcutTarget: SuiteLoRdi.lnk -> C:\ProgramData\SuiteLoRdi\SuiteLoRdi.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Préchargeur.lnk [2015-10-17]
ShortcutTarget: WinZip Préchargeur.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing, S.L.)
Startup: D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2015-10-17]
ShortcutTarget: MEGAsync.lnk -> D:\Users\Bryan\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{0191D580-4F04-4AED-A21F-C56521648726}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{5E979B01-4BD9-4B69-84CD-93C91E0F00C7}: [DhcpNameServer] 212.27.40.240 212.27.40.241

Internet Explorer:
==================
HKU\S-1-5-21-682487850-1341855315-2669799507-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp
SearchScopes: HKU\S-1-5-21-682487850-1341855315-2669799507-1002 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-10-18] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-18] (Oracle Corporation)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab

FireFox:
========
FF ProfilePath: D:\Users\Bryan\AppData\Roaming\Mozilla\Firefox\Profiles\x4clr3lq.default
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-05-11] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-05-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll [2015-04-27] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-19]
CHR Extension: (Google Docs) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-19]
CHR Extension: (Google Drive) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-19]
CHR Extension: (YouTube) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-19]
CHR Extension: (Recherche Google) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-19]
CHR Extension: (Google Sheets) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-19]
CHR Extension: (Google Docs hors connexion) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-19]
CHR Extension: (Paiements via le Chrome Web Store) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-19]
CHR Extension: (Gmail) - D:\Users\Bryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-19]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [604712 2015-10-12] (AVG Technologies CZ, s.r.o.)
R2 avgfws; C:\Program Files (x86)\AVG\Av\avgfws.exe [1568848 2015-10-12] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3792880 2015-10-12] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1042344 2015-09-22] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [596344 2015-10-12] (AVG Technologies CZ, s.r.o.)
S2 cmcore; c:\program files (x86)\cmcm\Clean Master\cmcore.exe [315208 2015-10-18] (Kingsoft Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [35616 2015-02-27] (Microsoft)
S2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-09] (Realtek Semiconductor)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-07-02] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2014-07-01] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [23152 2015-09-09] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [197040 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [97208 2015-08-29] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [312752 2015-09-11] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [298416 2015-08-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [293296 2015-08-10] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [398256 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [251312 2015-08-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [314800 2015-08-31] (AVG Technologies CZ, s.r.o.)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-12] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-12] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
S3 ksapi64; C:\windows\system32\drivers\ksapi64.sys [56680 2015-10-18] (Kingsoft Corporation)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-10-18] (Malwarebytes)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-11] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [445656 2013-11-09] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [3068120 2014-01-13] (Realtek Semiconductor Corporation )
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29936 2014-01-07] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-01-07] (Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [87568 2013-07-01] (Intel Corporation)
R3 VirtualButtons; C:\Windows\System32\drivers\VirtualButtons.sys [32024 2013-10-05] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20288 2012-08-03] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-10-19 00:49 - 2015-10-19 18:54 - 00001092 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-19 00:49 - 2015-10-19 18:53 - 00001088 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-19 00:49 - 2015-10-19 00:49 - 00004064 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-19 00:49 - 2015-10-19 00:49 - 00003828 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-19 00:49 - 2015-10-19 00:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-19 00:46 - 2015-10-19 19:07 - 00000000 ____D C:\FRST
2015-10-19 00:32 - 2015-10-19 00:32 - 00570513 _____ D:\Users\Bryan\Downloads\GTA4.zip
2015-10-18 23:16 - 2015-10-18 23:16 - 00077829 _____ D:\Users\Bryan\Desktop\ZHPDiag.txt
2015-10-18 23:13 - 2015-10-18 23:14 - 00000873 _____ D:\Users\Bryan\Desktop\ZHPDiag.lnk
2015-10-18 23:12 - 2015-10-18 23:12 - 00001791 _____ D:\Users\Bryan\Desktop\JRT.txt
2015-10-18 23:03 - 2015-10-18 23:03 - 01801288 _____ (Malwarebytes) D:\Users\Bryan\Downloads\JRT (1).exe
2015-10-18 23:01 - 2015-10-18 23:01 - 00002186 _____ D:\Users\Bryan\Desktop\AdwCleaner[C2].txt
2015-10-18 22:55 - 2015-10-18 22:55 - 01691648 _____ D:\Users\Bryan\Downloads\adwcleaner_5.014.exe
2015-10-18 22:50 - 2015-10-18 22:50 - 00001630 _____ D:\Users\Bryan\Desktop\ZHPCleaner.txt
2015-10-18 22:41 - 2015-10-18 22:42 - 00000885 _____ D:\Users\Bryan\Desktop\ZHPCleaner.lnk
2015-10-18 22:37 - 2015-10-18 22:37 - 01801288 _____ (Malwarebytes) D:\Users\Bryan\Downloads\JRT.exe
2015-10-18 22:31 - 2015-10-18 22:31 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Sun
2015-10-18 22:31 - 2015-10-18 22:31 - 00000000 ____D D:\Users\Bryan\.oracle_jre_usage
2015-10-18 22:30 - 2015-10-18 22:30 - 00000000 ____D D:\Users\Bryan\AppData\LocalLow\Oracle
2015-10-18 22:29 - 2015-10-18 22:29 - 00000000 ____D D:\Users\Bryan\AppData\LocalLow\Sun
2015-10-18 22:26 - 2015-10-18 22:26 - 02196992 _____ (Farbar) D:\Users\Bryan\Downloads\FRST64.exe
2015-10-18 22:24 - 2015-10-18 22:24 - 00001178 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-18 22:24 - 2015-10-18 22:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-18 22:24 - 2015-10-18 22:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-18 22:23 - 2015-10-19 19:07 - 00000000 ____D D:\Users\Bryan\Desktop\Anti virus
2015-10-18 22:23 - 2015-10-18 22:23 - 00448512 _____ (OldTimer Tools) D:\Users\Bryan\Downloads\TFC.exe
2015-10-18 20:16 - 2015-10-18 20:17 - 01865728 _____ D:\Users\Bryan\Downloads\ZHPCleaner.exe
2015-10-18 20:10 - 2015-10-18 20:11 - 01956352 _____ D:\Users\Bryan\Downloads\ZHPDiag3 (2).exe
2015-10-18 20:08 - 2015-10-18 20:08 - 03912704 _____ D:\Users\Bryan\ZHPDiag3.exe
2015-10-18 20:06 - 2015-10-18 20:07 - 01901056 _____ D:\Users\Bryan\Downloads\ZHPDiag3 (1).exe
2015-10-18 20:05 - 2015-10-18 23:14 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\ZHP
2015-10-18 20:04 - 2015-10-18 20:04 - 01901056 _____ D:\Users\Bryan\Downloads\ZHPDiag3.exe
2015-10-18 19:52 - 2015-10-18 19:52 - 00010829 _____ D:\Users\Bryan\Downloads\wpkey_v1.4.7.rar
2015-10-18 19:18 - 2015-10-18 20:34 - 00007790 _____ C:\windows\SysWOW64\debug.log
2015-10-18 19:18 - 2015-10-18 19:18 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2015-10-18 19:15 - 2015-10-18 23:00 - 00001799 _____ C:\windows\setupact.log
2015-10-18 19:15 - 2015-10-18 19:35 - 00007828 _____ C:\windows\PFRO.log
2015-10-18 19:15 - 2015-10-18 19:15 - 00400848 _____ C:\windows\system32\FNTCACHE.DAT
2015-10-18 19:15 - 2015-10-18 19:15 - 00000000 _____ C:\windows\setuperr.log
2015-10-18 18:57 - 2015-10-18 23:00 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-10-18 18:56 - 2015-10-18 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-18 18:56 - 2015-10-18 18:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-10-18 18:56 - 2015-10-18 18:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-18 18:56 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2015-10-18 18:56 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-10-18 18:56 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2015-10-18 18:39 - 2015-10-18 18:39 - 00002824 _____ C:\windows\System32\Tasks\AVG_SYS_TASK_0615pit
2015-10-18 18:33 - 2015-10-18 18:38 - 22908888 _____ (Malwarebytes ) D:\Users\Bryan\Downloads\mbam-setup-2.2.0.1024.exe
2015-10-18 18:27 - 2015-10-18 18:27 - 00081768 _____ (Kingsoft Corporation) C:\windows\system32\Drivers\ksapi.sys
2015-10-18 18:27 - 2015-10-18 18:27 - 00056680 _____ (Kingsoft Corporation) C:\windows\system32\Drivers\ksapi64.sys
2015-10-18 18:27 - 2015-10-18 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clean Master
2015-10-18 18:27 - 2015-10-18 18:27 - 00000000 ____D C:\ProgramData\Kingsoft
2015-10-18 18:27 - 2015-10-18 18:27 - 00000000 ____D C:\ProgramData\cmcm
2015-10-18 18:27 - 2015-10-18 18:27 - 00000000 ____D C:\Program Files (x86)\cmcm
2015-10-18 18:26 - 2015-10-18 18:26 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\AVG
2015-10-18 18:25 - 2015-10-18 18:25 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\TuneUp Software
2015-10-18 18:25 - 2015-10-18 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-10-18 18:25 - 2015-10-18 18:25 - 00000000 ____D C:\Program Files\Common Files\AV
2015-10-18 18:24 - 2015-10-18 18:24 - 00000000 ___HD C:\$AVG
2015-10-18 18:19 - 2015-10-18 18:20 - 05767600 _____ (Kingsoft Corporation) D:\Users\Bryan\Downloads\cleanmaster_12_1 (1).exe
2015-10-18 18:16 - 2015-10-18 18:16 - 05053024 _____ (AVG Technologies) D:\Users\Bryan\Downloads\avg_free_stb_all_2015_ltst_639_6140 (1).exe
2015-10-18 18:08 - 2015-10-18 18:24 - 00000000 ____D C:\ProgramData\Avg
2015-10-18 18:08 - 2015-10-18 18:24 - 00000000 ____D C:\Program Files (x86)\AVG
2015-10-18 18:03 - 2015-10-18 18:25 - 00000000 ____D D:\Users\Bryan\AppData\Local\AvgSetupLog
2015-10-18 18:02 - 2015-10-19 18:59 - 00000000 ____D C:\ProgramData\MFAData
2015-10-18 18:02 - 2015-10-18 18:25 - 00000000 ____D D:\Users\Bryan\AppData\Local\Avg
2015-10-18 18:02 - 2015-10-18 18:02 - 00000000 ____D D:\Users\Bryan\AppData\Local\MFAData
2015-10-18 18:02 - 2015-10-18 18:02 - 00000000 ____D D:\Users\Bryan\AppData\Local\Avg2015
2015-10-18 18:01 - 2015-10-18 18:01 - 05053024 _____ (AVG Technologies) D:\Users\Bryan\Downloads\avg_free_stb_all_2015_ltst_639_6140.exe
2015-10-18 17:51 - 2015-10-18 17:51 - 00000000 _____ C:\autoexec.bat
2015-10-18 17:25 - 2015-10-18 17:25 - 00002788 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2015-10-18 17:25 - 2015-10-18 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-10-18 17:24 - 2015-10-18 17:25 - 00000000 ____D C:\Program Files\CCleaner
2015-10-18 17:22 - 2015-10-18 17:23 - 05767600 _____ (Kingsoft Corporation) D:\Users\Bryan\Downloads\cleanmaster_12_1.exe
2015-10-18 17:21 - 2015-10-18 17:22 - 06677440 _____ (Piriform Ltd) D:\Users\Bryan\Downloads\ccsetup510.exe
2015-10-18 16:52 - 2015-10-18 16:52 - 00000855 _____ C:\windows\SysWOW64\${LOGFILE}
2015-10-18 16:20 - 2015-10-18 16:20 - 00003062 _____ C:\windows\System32\Tasks\Beach Web
2015-10-18 16:18 - 2015-10-18 17:05 - 00000004 _____ C:\windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-10-18 16:13 - 2015-10-18 16:13 - 00000186 _____ C:\windows\SysWOW64\L
2015-10-18 16:11 - 2015-10-19 00:47 - 00000000 ____D C:\windows\SysWOW64\GroupPolicy
2015-10-18 16:11 - 2015-10-18 16:11 - 00828416 _____ C:\windows\SysWOW64\SearchProtectService.exe
2015-10-18 16:10 - 2015-10-18 16:10 - 00015360 ___SH D:\Users\Bryan\Desktop\Thumbs.db
2015-10-18 16:09 - 2013-08-22 15:25 - 00000824 _____ C:\windows\system32\Drivers\etc\hp.bak
2015-10-18 16:08 - 2015-10-18 16:08 - 00000008 _____ C:\END
2015-10-18 16:05 - 2015-10-18 16:08 - 08611027 _____ D:\Users\Bryan\Downloads\SPECIAL 1K _ Intro Giveway _ Thanks !(1).rar
2015-10-18 15:51 - 2015-10-18 15:51 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Publish Providers
2015-10-18 15:41 - 2015-10-18 18:29 - 00007660 _____ C:\windows\system32\--traceoff
2015-10-18 15:41 - 2015-10-18 15:41 - 00000000 _____ C:\windows\system32\--debugoff
2015-10-18 15:40 - 2015-10-18 18:29 - 00000000 ____D D:\Users\Bryan\AppData\Local\Sony
2015-10-18 14:48 - 2015-10-18 18:27 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Sony
2015-10-18 14:40 - 2015-10-18 14:44 - 12561410 _____ D:\Users\Bryan\Downloads\Template.rar
2015-10-18 11:49 - 2015-10-18 11:49 - 00000000 ____D D:\Users\Bryan\AppData\Local\Intel_Corporation
2015-10-17 21:46 - 2015-10-18 16:18 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\MAXON
2015-10-17 21:37 - 2015-10-17 21:38 - 00000000 ____D D:\Users\Bryan\AppData\Local\WinZip
2015-10-17 21:37 - 2015-10-17 21:38 - 00000000 ____D C:\ProgramData\WinZip
2015-10-17 21:37 - 2015-10-17 21:37 - 00002334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinZip.lnk
2015-10-17 21:37 - 2015-10-17 21:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2015-10-17 21:37 - 2015-10-17 21:37 - 00000000 ____D C:\Program Files\WinZip
2015-10-17 21:31 - 2015-10-17 21:31 - 00714376 _____ (WinZip Computing, S.L.) D:\Users\Bryan\Downloads\winzip19-new.exe
2015-10-17 21:31 - 2015-10-17 21:31 - 00000000 ____D C:\ProgramData\UniqueId
2015-10-17 20:12 - 2015-10-17 20:12 - 00000000 ___RD D:\Users\Bryan\Documents\MEGAsync
2015-10-17 20:02 - 2015-10-18 21:38 - 00000222 _____ D:\Users\Bryan\Desktop\Nouveau document texte.txt
2015-10-17 19:37 - 2015-10-17 19:37 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync
2015-10-17 19:37 - 2015-10-17 19:37 - 00000000 ____D D:\Users\Bryan\AppData\Local\MEGAsync
2015-10-17 19:37 - 2015-10-17 19:37 - 00000000 ____D D:\Users\Bryan\AppData\Local\Mega Limited
2015-10-17 19:25 - 2015-10-18 20:55 - 00007168 ___SH D:\Users\Bryan\Downloads\Thumbs.db
2015-10-17 15:30 - 2015-10-17 15:30 - 00000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-10-17 15:17 - 2015-10-17 15:35 - 00000000 ____D D:\Users\Bryan\AppData\Local\pangu
2015-10-17 15:01 - 2015-10-17 15:05 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Apple Computer
2015-10-17 15:01 - 2015-10-17 15:01 - 00000000 ____D D:\Users\Bryan\AppData\Local\Apple Computer
2015-10-17 15:01 - 2015-10-17 15:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-10-17 15:00 - 2015-10-17 15:01 - 00000000 ____D C:\Program Files\iTunes
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\ProgramData\Apple Computer
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\iPod
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-10-17 14:59 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-17 14:59 - 2015-10-17 14:59 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-10-17 14:59 - 2015-10-17 14:59 - 00000000 ____D D:\Users\Bryan\AppData\Local\Apple
2015-10-17 14:59 - 2015-10-17 14:59 - 00000000 ____D C:\windows\System32\Tasks\Apple
2015-10-17 14:59 - 2015-10-17 14:59 - 00000000 ____D C:\ProgramData\Apple
2015-10-17 14:59 - 2015-10-17 14:59 - 00000000 ____D C:\Program Files\Bonjour
2015-10-17 14:59 - 2015-10-17 14:59 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-10-17 14:59 - 2015-10-17 14:59 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-10-17 14:37 - 2015-10-17 14:58 - 167601944 _____ (Apple Inc.) D:\Users\Bryan\Downloads\iTunes6464Setup.exe
2015-10-17 14:19 - 2015-10-18 19:52 - 00000000 ____D D:\Users\Bryan\AppData\Local\Google
2015-10-17 14:17 - 2015-10-19 00:52 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-682487850-1341855315-2669799507-1002
2015-10-17 13:15 - 2015-05-13 11:17 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\Hewlett-Packard
2015-10-17 13:15 - 2015-05-13 11:16 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\hpqLog
2015-10-17 13:15 - 2015-05-12 09:38 - 00000000 __SHD D:\Users\Administrateur\AppData\LocalLow\EmieBrowserModeList
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Administrateur\AppData\LocalLow\EmieUserList
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Administrateur\AppData\LocalLow\EmieSiteList
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ___RD D:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ___RD D:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ___RD D:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\vlc
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\Synaptics
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\Softland
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\Mozilla
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\Macromedia
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\LibreOffice
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\CyberLink
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Roaming\Adobe
2015-10-17 13:15 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\LocalLow\Adobe
2015-10-17 13:14 - 2015-10-19 18:54 - 00000000 ____D D:\Users\Bryan\Documents\Youcam
2015-10-17 13:14 - 2015-06-01 14:50 - 00000000 ____D D:\Users\Administrateur\AppData\Local\Packages
2015-10-17 13:14 - 2015-06-01 14:47 - 00000000 ___HD D:\Users\Administrateur
2015-10-17 13:14 - 2015-05-25 15:21 - 00000000 ____D D:\Users\Administrateur\AppData\Local\CrashDumps
2015-10-17 13:14 - 2015-05-12 09:37 - 00000000 __SHD D:\Users\Administrateur\AppData\Local\EmieBrowserModeList
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Administrateur\AppData\Local\EmieUserList
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Administrateur\AppData\Local\EmieSiteList
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Local\Mozilla
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Local\Microsoft_Corporation
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Local\Macromedia
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Local\CyberLink
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Local\Apps\2.0
2015-10-17 13:14 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Administrateur\AppData\Local\Adobe
2015-10-17 13:14 - 2014-07-03 22:06 - 00000000 ____D D:\Users\Administrateur\AppData\Local\Deployment
2015-10-17 13:13 - 2015-10-18 23:08 - 00000000 ____D D:\Users\Bryan
2015-10-17 13:13 - 2015-10-18 22:22 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Mozilla
2015-10-17 13:13 - 2015-10-18 19:41 - 00000000 ____D D:\Users\Bryan\AppData\Local\Deployment
2015-10-17 13:13 - 2015-10-18 19:41 - 00000000 ____D D:\Users\Bryan\AppData\Local\Apps\2.0
2015-10-17 13:13 - 2015-10-18 19:20 - 00000000 ____D D:\Users\Bryan\AppData\Local\CrashDumps
2015-10-17 13:13 - 2015-10-18 17:09 - 00000000 ____D D:\Users\Bryan\AppData\Local\Packages
2015-10-17 13:13 - 2015-10-18 15:35 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\vlc
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\Voisinage réseau
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\Voisinage d'impression
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\Modèles
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\Menu Démarrer
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\Documents\Mes vidéos
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\Documents\Mes images
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\Documents\Ma musique
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 _SHDL D:\Users\Bryan\AppData\Local\Historique
2015-10-17 13:13 - 2015-10-17 13:13 - 00000000 ____D D:\Users\Bryan\LoRdi
2015-10-17 13:13 - 2015-05-13 11:17 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Hewlett-Packard
2015-10-17 13:13 - 2015-05-13 11:16 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\hpqLog
2015-10-17 13:13 - 2015-05-12 09:38 - 00000000 __SHD D:\Users\Bryan\AppData\LocalLow\EmieBrowserModeList
2015-10-17 13:13 - 2015-05-12 09:37 - 00000000 __SHD D:\Users\Bryan\AppData\Local\EmieBrowserModeList
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Bryan\AppData\LocalLow\EmieUserList
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Bryan\AppData\LocalLow\EmieSiteList
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Bryan\AppData\Local\EmieUserList
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 __SHD D:\Users\Bryan\AppData\Local\EmieSiteList
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ___RD D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ___RD D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ___RD D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Synaptics
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Softland
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Macromedia
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\LibreOffice
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\CyberLink
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Roaming\Adobe
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\LocalLow\Adobe
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Local\Microsoft_Corporation
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Local\Macromedia
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Local\CyberLink
2015-10-17 13:13 - 2015-05-11 10:46 - 00000000 ____D D:\Users\Bryan\AppData\Local\Adobe
2015-10-17 13:13 - 2014-07-17 12:33 - 00000000 _____ D:\Users\Bryan\trace.txt
2015-10-17 13:13 - 2014-07-03 21:28 - 00000020 ___SH D:\Users\Bryan\ntuser.ini
2015-10-17 13:13 - 2014-03-18 11:55 - 00000369 _____ D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-10-17 13:13 - 2014-03-18 11:55 - 00000369 _____ D:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-10-17 13:08 - 2015-10-17 13:08 - 00000000 ____D C:\windows\CSC
2015-10-17 13:07 - 2015-10-19 19:07 - 01051629 _____ C:\windows\WindowsUpdate.log
2015-10-17 13:04 - 2015-10-17 13:04 - 00002312 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-682487850-1341855315-2669799507-500

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-10-19 19:07 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2015-10-19 19:00 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\sru
2015-10-18 23:05 - 2014-07-04 02:10 - 00879918 _____ C:\windows\system32\perfh00C.dat
2015-10-18 23:05 - 2014-07-04 02:10 - 00184592 _____ C:\windows\system32\perfc00C.dat
2015-10-18 23:05 - 2014-03-18 11:53 - 02046738 _____ C:\windows\system32\PerfStringBackup.INI
2015-10-18 23:00 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-10-18 22:38 - 2015-05-11 10:48 - 00000000 ____D C:\ProgramData\Oracle
2015-10-18 22:32 - 2015-05-11 10:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-18 22:32 - 2015-05-11 10:48 - 00000000 ____D C:\Program Files\Java
2015-10-18 22:31 - 2015-05-11 10:49 - 00110688 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge-64.dll
2015-10-18 21:24 - 2015-05-11 10:50 - 00000000 __SHD C:\ProgramData\SuiteLoRdi
2015-10-18 19:14 - 2013-08-22 17:36 - 00000000 ____D C:\windows\L2Schemas
2015-10-18 18:38 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\ELAM
2015-10-18 18:27 - 2015-05-06 18:05 - 00000000 ____D C:\ProgramData\install_clap
2015-10-18 18:27 - 2015-04-28 16:04 - 00000000 ____D C:\ProgramData\Skype
2015-10-18 18:27 - 2014-07-01 12:30 - 00000000 ____D C:\windows\Panther
2015-10-18 18:24 - 2013-08-22 17:36 - 00000000 ___HD C:\windows\ELAMBKUP
2015-10-18 18:13 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\BBI
2015-10-18 17:09 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2015-10-18 17:00 - 2013-08-22 15:25 - 00000194 _____ C:\windows\win.ini
2015-10-18 16:11 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\GroupPolicy
2015-10-17 14:59 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\restore
2015-10-17 13:13 - 2015-04-27 20:26 - 00000000 ____D C:\windows\System32\Tasks\WPD

Fichiers à déplacer ou supprimer:
====================
D:\Users\Bryan\ZHPDiag3.exe


Certains fichiers dans TEMP:
====================
D:\Users\Bryan\AppData\Local\Temp\jre-8u60-windows-au.exe
D:\Users\Bryan\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\windows\system32\wininit.exe => Le fichier est signé numériquement
C:\windows\explorer.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\windows\system32\svchost.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\windows\system32\services.exe => Le fichier est signé numériquement
C:\windows\system32\User32.dll => Le fichier est signé numériquement
C:\windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\windows\system32\userinit.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2014-07-01 11:35

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité