cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:28-11-2015
Exécuté par franck (administrateur) sur PC-DE-FRANCK (29-11-2015 13:57:38)
Exécuté depuis c:\Users\franck\Downloads
Profils chargés: franck & (Profils disponibles: franck & elodie & Mcx1)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\UVC Video Camera\acamsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(France Telecom SA) C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Badoo) C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Yahoo! Inc) C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PCM4Everio\EverioService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Alcor Micro Corp.) C:\Program Files (x86)\UVC Video Camera\UVCSti.exe
(Alcor Micro Corp.) C:\Program Files (x86)\UVC Video Camera\EffectDir\UVCTray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Farbar) C:\Users\franck\Downloads\FRST64 (3).exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-03-31] (Bitdefender)
HKLM-x32\...\Run: [YSearchProtection] => C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe [111856 2009-02-03] (Yahoo! Inc)
HKLM-x32\...\Run: [EverioService] => C:\Program Files (x86)\CyberLink\PCM4Everio\EverioService.exe [151552 2008-04-03] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [UVCSti] => C:\Program Files (x86)\UVC Video Camera\UVCSti.exe [251152 2009-09-22] (Alcor Micro Corp.)
HKLM-x32\...\Run: [RunUVC] => C:\Program Files (x86)\UVC Video Camera\EffectDir\UVCtray.exe [7540736 2009-08-27] (Alcor Micro Corp.)
HKLM-x32\...\Run: [ORAHSSSessionManager] => C:\Program Files (x86)\OrangeHSS\SessionManager\SessionManager.exe [135920 2009-08-24] (France Telecom SA)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-11-18] (Google Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Run: [Facebook Update] => C:\Users\franck\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Run: [Badoo Desktop] => C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe [1067232 2012-12-24] (Badoo)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-02-24] (Bitdefender)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\...\MountPoints2: {b51900cb-fc18-11dd-a799-002185c3c20b} - K:\LaunchU3.exe
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [334336 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-11-18] (Google Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Facebook Update] => C:\Users\franck\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Badoo Desktop] => C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe [1067232 2012-12-24] (Badoo)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-02-24] (Bitdefender)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {b51900cb-fc18-11dd-a799-002185c3c20b} - K:\LaunchU3.exe
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [334336 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-07-03] (Hewlett-Packard)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-11-18] (Google Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Facebook Update] => C:\Users\elodie\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-11-24] (Facebook Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => "C:\Program Files (x86)\Steam\Steam.exe" -silent
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPSON Stylus Photo R800] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATI8JA.EXE [211968 2007-01-16] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-02-24] (Bitdefender)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {b51900cb-fc18-11dd-a799-002185c3c20b} - K:\LaunchU3.exe
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {ec669cba-a08a-11de-b903-002185c3c20b} - K:\LaunchU3.exe -a
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [HPADVISOR] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-07-03] (Hewlett-Packard)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-11-18] (Google Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Google Update] => "C:\Users\franck\AppData\Local\Google\Update\GoogleUpdate.exe" /c
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Facebook Update] => C:\Users\franck\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-12] (Facebook Inc.)
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => "C:\Program Files (x86)\Steam\Steam.exe" -silent
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {b51900cb-fc18-11dd-a799-002185c3c20b} - K:\LaunchU3.exe
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Winlogon: [Shell] C:\Windows\eHome\McrMgr.exe [196608 2009-04-11] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\Users\elodie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk [2009-06-18]
ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe (Pas de fichier)
GroupPolicyUsers\S-1-5-21-1412583856-1427753994-1985429354-1001\User: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{13E8F2B1-C4E6-4F68-BEFB-712821C14571}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F8E2E208-2793-42A3-B6D4-8EC062B67AC1}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.ke.voila.fr/S/voila?kw=
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=84&bd=Pavilion&pf=cndt
HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=84&bd=Pavilion&pf=cndt
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Par défaut = {17402221-9032-45e3-9662-ba98be4e08b5}
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - (Pas de nom) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - Pas de fichier
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - (Pas de nom) - {EEE6C35D-6118-11DC-9C72-001320C79847} - Pas de fichier
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - FCToolbarURLSearchHook Class - {17402221-9032-45e3-9662-ba98be4e08b5} - C:\Program Files (x86)\Is Cool\Helper.dll Pas de fichier
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - (Pas de nom) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Pas de fichier
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - YTNavAssist.YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - Pas de fichier
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - YTNavAssist.YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn4\YTNavAssist.dll (Yahoo! Inc.)
URLSearchHook: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 - (Pas de nom) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - Pas de fichier
SearchScopes: HKLM -> {6E4FE9E3-C40B-44D9-9868-C9DF1D7021A4} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1156&query={searchTerms}&invocationType=tb50hpcndtie7-fr-fr
SearchScopes: HKLM -> {802DE6CE-4711-4535-BBD4-9804F422AD2C} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKLM-x32 -> {6E4FE9E3-C40B-44D9-9868-C9DF1D7021A4} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1156&query={searchTerms}&invocationType=tb50hpcndtie7-fr-fr
SearchScopes: HKLM-x32 -> {802DE6CE-4711-4535-BBD4-9804F422AD2C} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000 -> {969A4A3E-569C-442D-ACF4-6BB74D4CC5AF} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b2ie7
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {969A4A3E-569C-442D-ACF4-6BB74D4CC5AF} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b2ie7
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL =
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {6E4FE9E3-C40B-44D9-9868-C9DF1D7021A4} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1156&query={searchTerms}&invocationType=tb50hpcndtie7-fr-fr
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {802DE6CE-4711-4535-BBD4-9804F422AD2C} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {8b358611-6da6-4f88-9af9-ca419c4270f2} URL = hxxp://www.iadah.com/web-A-3?search&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {969A4A3E-569C-442D-ACF4-6BB74D4CC5AF} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b2ie7
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {96D848D6-0304-4E71-AB74-5ADE56D5E9CF} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b2ie7
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {96ED70B1-FEDF-4E7D-85DA-88CECE33081A} URL = hxxp://www.google.fr/search?hl=fr&q={searchTerms}+&meta=
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=102&systemid=406&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&mkt=fr-FR&FORM=MIMWA2
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {b41306c6-96d0-442a-bcc4-b0f621e82ce9} URL = hxxp://www.fissa.com/fr/results/?s=b&c=1101284568&suid=EmuNHkKfj&d=5&pid=23&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb155/?search={searchTerms}&loc=IB_DS&a=6PQyDR3sbD&i=26
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {FEF4E71C-6284-4FEA-8385-15CE452766A0} URL = hxxp://search.freecause.com/search?ourmark=4&fr=freecause&ei=utf-8&type=61101&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=101&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {969A4A3E-569C-442D-ACF4-6BB74D4CC5AF} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b2ie7
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=101&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb155/?search={searchTerms}&loc=IB_DS&a=6PQyDR3sbD&i=26
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
BHO-x32: Pas de nom -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> Pas de fichier
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26] (Safer Networking Limited)
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22] (Microsoft Corporation)
BHO-x32: AOL Toolbar BHO -> {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} -> C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03] (AOL LLC)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)
BHO-x32: SingleInstance Class -> {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn4\YTSingleInstance.dll [2011-01-21] (Yahoo! Inc)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-02-24] (Bitdefender)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-02-24] (Bitdefender)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000 -> AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000 -> Pas de nom - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000 -> &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll [2015-09-12] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000 -> Pas de nom - {472734EA-242A-422B-ADF8-83D1E48CC825} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll [2015-09-12] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {472734EA-242A-422B-ADF8-83D1E48CC825} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {EEE6C35B-6118-11DC-9C72-001320C79847} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {CA127536-050A-49DF-B02A-3CE87231D790} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll [2015-09-12] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {472734EA-242A-422B-ADF8-83D1E48CC825} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll [2015-09-12] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {EEE6C35B-6118-11DC-9C72-001320C79847} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {472734EA-242A-422B-ADF8-83D1E48CC825} - Pas de fichier
Toolbar: HKU\S-1-5-21-1412583856-1427753994-1985429354-1013-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {CA127536-050A-49DF-B02A-3CE87231D790} - Pas de fichier
DPF: HKLM-x32 {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} hxxp://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
DPF: HKLM-x32 {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll
DPF: HKLM-x32 {49232000-16E4-426C-A231-62846947304B} hxxps://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab
DPF: HKLM-x32 {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} hxxp://www.extrafilm.fr/ImageUploader5.cab
DPF: HKLM-x32 {644E432F-49D3-41A1-8DD5-E099162EEEC5} hxxp://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: HKLM-x32 {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} hxxp://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
DPF: HKLM-x32 {D0C0F75C-683A-4390-A791-1ACFD5599AB8} hxxp://jeuxmultijoueurs.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-09-12] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-09-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-09-12] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-09-14] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [Pas de fichier]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-05-06] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\6\NP_wtapp.dll [Pas de fichier]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-09-04] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000: @citrixonline.com/appdetectorplugin -> C:\Users\franck\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2014-08-17] (Citrix Online)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\franck\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\franck\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2011-01-31] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000: electronicarts.com/GameFacePlugin -> C:\Users\franck\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll [2011-11-30] (Electronic Arts)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @citrixonline.com/appdetectorplugin -> C:\Users\franck\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2014-08-17] (Citrix Online)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\franck\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\franck\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2011-01-31] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: electronicarts.com/GameFacePlugin -> C:\Users\franck\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll [2011-11-30] (Electronic Arts)
FF Plugin HKU\S-1-5-21-1412583856-1427753994-1985429354-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\elodie\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-25] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [moovida@spointer.com] - C:\Program Files (x86)\Fluendo\Moovida\spointer\extensions\moovida@spointer.com => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-08-11] [non signé]

Chrome:
=======
CHR HomePage: Default -> hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_15_48¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtCzzyD0CtA0CtBtD0ByByCyEyDtN0D0Tzu0StCyEtByDtN1L2XzutAtFtCyDtFtAtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0Czy0B0EtDtDyDtGtDzzyCtBtG0CtD0EzztGyD0A0FyEtG0B0CyDzztByC0BtC0DtA0B0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0ByB0C0D0F0ByC0FtGyDyCtD0AtGyEyB0AtDtG0Bzz0FtDtGtDtBzzyC0EyC0F0FzzzyyCtC2QtN0A0LzutB%26cr%3D1822200080%26a%3Dwncy_tchfld_15_48%26os%3DWindows%2B(TM)%2BVista%2BHome%2BPremium
CHR StartupUrls: Default -> "hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_15_48¶m1=1¶m2=f%3D7%26b%3DChrome%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtCzzyD0CtA0CtBtD0ByByCyEyDtN0D0Tzu0StCyEtByDtN1L2XzutAtFtCyDtFtAtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyB0Czy0B0EtDtDyDtGtDzzyCtBtG0CtD0EzztGyD0A0FyEtG0B0CyDzztByC0BtC0DtA0B0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0ByB0C0D0F0ByC0FtGyDyCtD0AtGyEyB0AtDtG0Bzz0FtDtGtDtBzzyC0EyC0F0FzzzyyCtC2QtN0A0LzutB%26cr%3D1822200080%26a%3Dwncy_tchfld_15_48%26os%3DWindows%2B(TM)%2BVista%2BHome%2BPremium","hxxp://www.searchnu.com/406","hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-362&v=a9396-132&t=4","hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-362&v=a10781-132&t=4","hxxp://www.search.ask.com/?o=APN10645A&gct=hp&d=406-362&v=a13251-132&t=4"
CHR Profile: C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04]
CHR Extension: (Google Drive) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Recherche Google) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (GamingWonderland) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkafepclbjhlgnjggdmfiapmlidmjcki [2015-11-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (MapsGalaxy) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcpehlgijbdajfafffojllcaecaecngb [2015-11-29]
CHR Extension: (Gmail) - C:\Users\franck\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ACam Setup serivce; C:\Program Files (x86)\UVC Video Camera\ACamsvc.exe [83216 2009-10-06] ()
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [Fichier non signé]
R2 FTRTSVC; C:\Program Files (x86)\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [65536 2007-12-11] (France Telecom SA) [Fichier non signé]
S3 getPlus(R) Helper; C:\Program Files (x86)\NOS\bin\getPlus_HelperSvc.exe [33752 2008-12-01] (NOS Microsystems Ltd.)
R2 HP Health Check Service; c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-06-02] (Hewlett-Packard) [Fichier non signé]
R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2008-08-22] (Hewlett-Packard Company) [Fichier non signé]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-11-27] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-03-31] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-02-24] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-02-24] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-02-24] (BitDefender)
R1 bdftdif; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdftdif.sys [120704 2012-02-07] (BitDefender LLC)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2015-02-24] (BitDefender SRL)
S3 Cam3820; C:\Windows\System32\Drivers\cam3820a.sys [413184 2009-09-22] (CamVendor)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-03-31] (BitDefender LLC)
S3 Ltn_stk7070P_64; C:\Windows\System32\DRIVERS\Ltn_stk7070P_64.sys [543232 2007-06-14] (LITEON)
S3 Ltn_stkrc_64; C:\Windows\System32\DRIVERS\Ltn_stkrc_64.sys [16256 2007-06-13] (LITEON)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-29] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
S3 Ps2; C:\Windows\System32\DRIVERS\PS2.sys [21504 2006-09-07] ()
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2009-10-25] ()
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-11-27] (BitDefender S.R.L.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 PCAMp50a64; System32\Drivers\PCAMp50a64.sys [X]
S3 PCASp50a64; System32\Drivers\PCASp50a64.sys [X]
S3 PCD5SRVC{E2AF211B-86DA020A-05040000}; \??\C:\PROGRA~2\PC-DOC~1\PCD5SRVC_x64.pkms [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-11-29 13:29 - 2015-11-29 13:29 - 00000903 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-29 13:27 - 2015-11-29 13:28 - 22908888 _____ (Malwarebytes ) C:\Users\franck\Downloads\mbam-setup-2.2.0.1024 (1).exe
2015-11-29 13:22 - 2015-11-29 13:22 - 22908888 _____ (Malwarebytes ) C:\Users\franck\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-29 13:21 - 2015-11-29 13:21 - 02349056 _____ (Farbar) C:\Users\franck\Downloads\FRST64 (3).exe
2015-11-29 13:19 - 2015-11-29 13:19 - 02349056 _____ (Farbar) C:\Users\franck\Downloads\FRST64 (2).exe
2015-11-29 13:08 - 2015-11-29 13:08 - 02349056 _____ (Farbar) C:\Users\franck\Downloads\FRST64 (1).exe
2015-11-29 13:06 - 2015-11-29 13:07 - 02349056 _____ (Farbar) C:\Users\franck\Downloads\FRST64.exe
2015-11-28 18:50 - 2015-11-29 13:45 - 00069587 _____ C:\Users\franck\Downloads\Addition.txt
2015-11-28 18:49 - 2015-11-29 13:57 - 00042966 _____ C:\Users\franck\Downloads\FRST.txt
2015-11-28 18:47 - 2015-11-29 13:57 - 00000000 ____D C:\FRST
2015-11-28 15:34 - 2015-11-28 15:34 - 00000000 ____D C:\Users\franck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\A Vampyre Story
2015-11-27 11:03 - 2015-11-27 11:03 - 00023767 _____ C:\Users\franck\Documents\attestation emploi novembre.pdf
2015-11-26 20:07 - 2015-11-26 20:07 - 00000000 ____D C:\Users\franck\AppData\Local\Chromium
2015-11-26 20:05 - 2015-11-26 20:05 - 00000000 ____D C:\Users\franck\AppData\Local\Sparta
2015-11-26 20:05 - 2015-11-26 20:05 - 00000000 ____D C:\Users\franck\AppData\Local\{C291F4CD-E639-9875-8BA1-BD9DAFC94105}
2015-11-26 19:44 - 2015-11-28 15:44 - 00000000 ____D C:\Program Files (x86)\A Vampyre Story
2015-11-25 13:36 - 2015-11-25 13:36 - 02359205 _____ C:\Users\franck\Downloads\passeportformationdynamique1038059303639288250.pdf
2015-11-20 20:17 - 2015-11-20 20:17 - 00481134 _____ C:\Users\franck\Downloads\formulaire souhait adoption.pdf
2015-11-13 18:46 - 2015-11-13 18:46 - 00817014 _____ C:\Users\franck\Downloads\d38a133e-6eb4-42e7-9def-f4fcd324397c.pdf
2015-11-12 08:09 - 2015-11-12 08:09 - 00159554 _____ C:\Users\franck\Downloads\attestation (8).pdf
2015-11-06 08:44 - 2015-11-06 08:44 - 00023766 _____ C:\Users\franck\Documents\attestation emploi juillet.pdf
2015-11-06 08:44 - 2015-11-06 08:44 - 00023765 _____ C:\Users\franck\Documents\attestation emploi juin.pdf
2015-11-06 08:44 - 2015-11-06 08:44 - 00023765 _____ C:\Users\franck\Documents\attestation emploi aout.pdf
2015-11-04 20:46 - 2015-11-04 20:46 - 00159331 _____ C:\Users\franck\Downloads\attestation (7).pdf
2015-11-04 03:55 - 2015-11-04 03:55 - 00396759 _____ C:\Users\franck\Downloads\battlefield-hardline-manual_Microsoft XBOX One_fr.pdf
2015-11-03 08:48 - 2015-11-03 08:48 - 00023764 _____ C:\Users\franck\Documents\attestation emploi octobre.pdf
2015-10-30 08:41 - 2015-10-30 08:41 - 04529704 _____ (DevAge, Vestris Inc. & Contributors) C:\Users\franck\Downloads\GhostReconPhantoms_Setup(EU).exe
2015-10-30 07:51 - 2015-10-30 07:51 - 00000000 ____D C:\Users\franck\AppData\Local\Ubisoft
2015-10-30 07:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-10-30 07:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-10-30 07:51 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-10-30 07:51 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-10-30 07:47 - 2015-10-30 07:50 - 00085334 _____ C:\Users\franck\AppData\Local\dd_dotnetfx35install_lp.txt
2015-10-30 07:47 - 2015-10-30 07:47 - 00977684 _____ C:\Users\franck\AppData\Local\dd_NET_Framework35_LangPack_MSI461B.txt
2015-10-30 07:47 - 2015-10-30 07:47 - 00000002 _____ C:\Users\franck\AppData\Local\dd_dotnetfx35error_lp.txt
2015-10-30 07:40 - 2015-10-30 07:42 - 02829524 _____ C:\Users\franck\AppData\Local\dd_NET_Framework35_x64_MSI40F0.txt
2015-10-30 07:39 - 2015-10-30 07:50 - 00235665 _____ C:\Users\franck\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
2015-10-30 07:38 - 2015-10-30 07:50 - 00285100 _____ C:\Users\franck\AppData\Local\dd_dotnetfx35install.txt
2015-10-30 07:38 - 2015-10-30 07:38 - 00000002 _____ C:\Users\franck\AppData\Local\dd_dotnetfx35error.txt

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-11-29 21:58 - 2012-10-14 07:30 - 00000000 ____D C:\Users\Mcx1
2015-11-29 21:58 - 2009-01-08 23:51 - 00000000 ____D C:\Users\elodie
2015-11-29 21:58 - 2006-11-02 13:33 - 97255424 _____ C:\Windows\system32\config\software_previous
2015-11-29 21:57 - 2006-11-02 16:07 - 00000000 ____D C:\Windows\ShellNew
2015-11-29 21:56 - 2013-05-03 07:04 - 00000000 ____D C:\Users\elodie\AppData\LocalLow\ilividtoolbargaw
2015-11-29 21:56 - 2013-03-23 11:57 - 00000000 ____D C:\Users\franck\AppData\LocalLow\ilividtoolbargaw
2015-11-29 21:56 - 2013-02-03 19:51 - 00000000 ____D C:\Users\franck\AppData\Local\ApplicationHistory
2015-11-29 21:56 - 2009-10-28 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A Vampyre Story
2015-11-29 21:56 - 2009-03-01 21:30 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-11-29 21:56 - 2006-11-02 14:34 - 00000000 ____D C:\Windows\system32\spool
2015-11-29 21:56 - 2006-11-02 14:34 - 00000000 ____D C:\Windows\system32\Msdtc
2015-11-29 21:56 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\registration
2015-11-29 21:56 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\inf
2015-11-29 21:56 - 2006-11-02 13:33 - 109838336 _____ C:\Windows\system32\config\system_previous
2015-11-29 13:57 - 2009-02-06 21:51 - 00000420 ____H C:\Windows\Tasks\User_Feed_Synchronization-{BFDCE6F7-DAFE-4D90-9242-E59475BE8C9F}.job
2015-11-29 13:48 - 2010-01-29 09:43 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-29 13:42 - 2006-11-02 14:33 - 00000000 ____D C:\Windows
2015-11-29 13:30 - 2014-08-17 10:46 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-29 13:29 - 2014-08-17 10:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-29 13:29 - 2014-08-17 10:46 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-29 13:18 - 2013-02-28 11:34 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-29 13:14 - 2012-02-18 15:30 - 00000350 ____H C:\Windows\Tasks\C__Users_franck_AppData_Local_Temp_nspF845.tmp_fliptoast.app.13295.fliptoast-9e1f6ff0.exe.job
2015-11-29 13:14 - 2010-05-06 15:11 - 00048286 _____ C:\ProgramData\nvModes.001
2015-11-29 13:14 - 2010-05-06 15:04 - 00048286 _____ C:\ProgramData\nvModes.dat
2015-11-29 13:14 - 2010-01-29 09:43 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-29 13:13 - 2006-11-02 16:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-29 13:13 - 2006-11-02 16:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-29 13:13 - 2006-11-02 16:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-29 13:00 - 2009-01-08 19:50 - 00000000 ____D C:\Users\franck
2015-11-29 12:38 - 2010-03-21 11:58 - 00545882 _____ C:\bdlog.txt
2015-11-29 12:38 - 2006-11-02 13:33 - 67108864 _____ C:\Windows\system32\config\components_previous
2015-11-29 12:38 - 2006-11-02 13:33 - 04980736 _____ C:\Windows\system32\config\default_previous
2015-11-29 12:38 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\security_previous
2015-11-29 12:38 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\sam_previous
2015-11-28 11:49 - 2008-10-24 17:03 - 00000000 ____D C:\Windows\SMINST
2015-11-26 19:43 - 2009-02-09 21:15 - 00000000 ____D C:\Users\Public\CyberLink
2015-11-26 19:43 - 2009-02-09 21:15 - 00000000 ____D C:\Users\franck\AppData\Roaming\CyberLink
2015-11-12 06:49 - 2013-08-01 08:01 - 00000000 ____D C:\Windows\system32\MRT
2015-11-12 06:25 - 2009-01-09 10:15 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-11 21:18 - 2006-11-02 16:42 - 00032580 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-11-11 20:37 - 2012-11-24 14:33 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1412583856-1427753994-1985429354-1001UA.job
2015-11-11 20:35 - 2012-05-24 13:25 - 00001100 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1412583856-1427753994-1985429354-1000UA.job
2015-11-11 15:18 - 2013-02-28 11:34 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-11 15:18 - 2013-02-28 11:34 - 00003854 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-11 15:18 - 2012-02-18 15:30 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-08 14:38 - 2012-11-24 14:33 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1412583856-1427753994-1985429354-1001Core.job
2015-11-07 08:35 - 2012-05-24 13:25 - 00001078 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1412583856-1427753994-1985429354-1000Core.job
2015-11-05 19:30 - 2014-11-06 09:50 - 00000000 ____D C:\ProgramData\CanonIJPLM
2015-11-02 18:30 - 2009-01-08 20:18 - 00000596 _____ C:\Windows\Tasks\Norton Internet Security - Effectuer une analyse complète du système - franck.job
2015-11-02 00:16 - 2008-10-25 01:27 - 02648836 _____ C:\Windows\system32\perfh00C.dat
2015-11-02 00:16 - 2008-10-25 01:27 - 00800666 _____ C:\Windows\system32\perfc00C.dat
2015-11-02 00:16 - 2006-11-02 13:46 - 00007418 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-30 18:48 - 2013-01-21 19:15 - 00000000 ____D C:\Users\franck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-10-30 18:48 - 2009-08-26 09:37 - 00000000 ____D C:\Users\franck\AppData\Local\Deployment
2015-10-30 08:58 - 2009-08-26 09:38 - 00000000 ____D C:\Users\franck\AppData\Local\Google
2015-10-30 07:50 - 2012-01-10 07:10 - 00004070 _____ C:\Users\franck\AppData\Local\uxeventlog.txt

==================== Fichiers à la racine de certains dossiers =======

2013-12-17 09:51 - 2013-12-17 09:51 - 49940480 _____ () C:\Program Files (x86)\GUT204D.tmp
2012-01-10 07:03 - 2012-01-10 07:03 - 0000025 _____ () C:\Users\franck\AppData\Roaming\bdfvconp.ini
2009-03-14 13:27 - 2009-03-14 13:27 - 0023888 _____ () C:\Users\franck\AppData\Roaming\UserTile.png
2013-09-16 08:33 - 2015-05-28 18:08 - 0000268 _____ () C:\Users\franck\AppData\Roaming\wklnhst.dat
2009-02-11 17:28 - 2015-07-09 10:44 - 0008484 _____ () C:\Users\franck\AppData\Local\d3d9caps.dat
2009-01-12 08:50 - 2015-04-06 11:03 - 0013824 _____ () C:\Users\franck\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-01-10 07:10 - 2012-01-10 07:10 - 0028213 _____ () C:\Users\franck\AppData\Local\dd_depcheckdotnetfx30.txt
2015-10-30 07:39 - 2015-10-30 07:50 - 0235665 _____ () C:\Users\franck\AppData\Local\dd_depcheck_NETFX_EXP_35.txt
2015-10-30 07:38 - 2015-10-30 07:38 - 0000002 _____ () C:\Users\franck\AppData\Local\dd_dotnetfx35error.txt
2015-10-30 07:47 - 2015-10-30 07:47 - 0000002 _____ () C:\Users\franck\AppData\Local\dd_dotnetfx35error_lp.txt
2015-10-30 07:38 - 2015-10-30 07:50 - 0285100 _____ () C:\Users\franck\AppData\Local\dd_dotnetfx35install.txt
2015-10-30 07:47 - 2015-10-30 07:50 - 0085334 _____ () C:\Users\franck\AppData\Local\dd_dotnetfx35install_lp.txt
2012-01-10 07:10 - 2012-01-10 07:10 - 0000604 _____ () C:\Users\franck\AppData\Local\dd_dotnetfx3error.txt
2012-01-10 07:10 - 2012-01-10 07:10 - 0032002 _____ () C:\Users\franck\AppData\Local\dd_dotnetfx3install.txt
2015-10-30 07:47 - 2015-10-30 07:47 - 0977684 _____ () C:\Users\franck\AppData\Local\dd_NET_Framework35_LangPack_MSI461B.txt
2015-10-30 07:40 - 2015-10-30 07:42 - 2829524 _____ () C:\Users\franck\AppData\Local\dd_NET_Framework35_x64_MSI40F0.txt
2015-06-25 16:13 - 2015-06-25 16:13 - 0408250 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI0623.txt
2011-06-16 11:40 - 2011-06-16 11:42 - 0473372 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI0DE0.txt
2011-06-16 11:42 - 2011-06-16 11:44 - 0475716 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI0FA3.txt
2012-12-12 15:25 - 2012-12-12 15:25 - 0361896 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI1058.txt
2014-03-06 15:27 - 2014-03-06 15:27 - 0388512 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI1BA4.txt
2011-03-09 18:55 - 2011-03-09 18:56 - 0434544 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI23A9.txt
2012-12-23 11:20 - 2012-12-23 11:20 - 0361128 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI303E.txt
2013-07-09 08:58 - 2013-07-09 08:58 - 0360360 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI323F.txt
2013-07-09 08:59 - 2013-07-09 08:59 - 0361896 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI332B.txt
2013-07-09 08:59 - 2013-07-09 08:59 - 0362154 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI3341.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0360234 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI3358.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0360616 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI3376.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0360238 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI3390.txt
2010-02-08 12:18 - 2010-02-08 12:19 - 0438202 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI3397.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0361006 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI33B7.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0362158 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI33D4.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0362542 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI33E8.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0362920 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI33F5.txt
2012-12-13 03:36 - 2012-12-13 03:36 - 0361512 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI404A.txt
2012-12-12 11:10 - 2012-12-12 11:10 - 0363048 _____ () C:\Users\franck\AppData\Local\dd_vcredistMSI4DBA.txt
2015-06-25 16:13 - 2015-06-25 16:13 - 0011232 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI0623.txt
2011-06-16 11:40 - 2011-06-16 11:42 - 0216076 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI0DE0.txt
2011-06-16 11:42 - 2011-06-16 11:44 - 0216044 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI0FA3.txt
2012-12-12 15:25 - 2012-12-12 15:25 - 0011194 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI1058.txt
2014-03-06 15:27 - 2014-03-06 15:27 - 0011464 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI1BA4.txt
2011-03-09 18:55 - 2011-03-09 18:56 - 0011466 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI23A9.txt
2012-12-23 11:20 - 2012-12-23 11:20 - 0011162 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI303E.txt
2013-07-09 08:58 - 2013-07-09 08:58 - 0011130 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI323F.txt
2013-07-09 08:59 - 2013-07-09 08:59 - 0011194 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI332B.txt
2013-07-09 08:59 - 2013-07-09 08:59 - 0011210 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI3341.txt
2013-07-09 08:59 - 2013-07-09 09:00 - 0011130 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI3358.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0011146 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI3376.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0011130 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI3390.txt
2010-02-08 12:18 - 2010-02-08 12:19 - 0011482 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI3397.txt
2010-02-08 12:18 - 2010-02-08 12:18 - 0010654 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI3398.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0011162 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI33B7.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0011210 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI33D4.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0011226 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI33E8.txt
2013-07-09 09:00 - 2013-07-09 09:00 - 0011242 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI33F5.txt
2012-12-13 03:36 - 2012-12-13 03:36 - 0011178 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI404A.txt
2012-12-12 11:10 - 2012-12-12 11:10 - 0011242 _____ () C:\Users\franck\AppData\Local\dd_vcredistUI4DBA.txt
2013-02-03 19:51 - 2013-02-03 19:51 - 0000094 _____ () C:\Users\franck\AppData\Local\fusioncache.dat
2012-01-10 07:10 - 2015-10-30 07:50 - 0004070 _____ () C:\Users\franck\AppData\Local\uxeventlog.txt
2015-09-10 05:02 - 2015-09-10 05:02 - 0000000 _____ () C:\Users\franck\AppData\Local\{0AE5B1CC-6B0C-469B-AAB6-89D68874E9BE}
2015-02-18 15:58 - 2015-02-18 15:58 - 0000000 _____ () C:\Users\franck\AppData\Local\{D4EE7652-3821-49D5-BA4D-A08B90033EBD}
2015-07-14 05:33 - 2015-07-14 05:33 - 0000000 _____ () C:\Users\franck\AppData\Local\{F06F4CD4-F647-435B-AE1F-606D949E56E5}
2014-08-29 18:08 - 2014-08-29 18:08 - 0531569 _____ () C:\ProgramData\1409331540.bdinstall.bin
2008-10-24 16:46 - 2008-10-24 16:47 - 0000349 _____ () C:\ProgramData\hpzinstall.log
2011-07-07 07:31 - 2011-07-07 07:31 - 0000000 _____ () C:\ProgramData\LauncherAccess.dt
2010-05-06 15:11 - 2015-11-29 13:14 - 0048286 _____ () C:\ProgramData\nvModes.001
2010-05-06 15:04 - 2015-11-29 13:14 - 0048286 _____ () C:\ProgramData\nvModes.dat
2011-05-21 17:37 - 2011-05-21 17:39 - 0002847 _____ () C:\ProgramData\search_result.xml

Certains fichiers dans TEMP:
====================
C:\Users\franck\AppData\Local\Temp\MSETUP4.EXE


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-11-29 13:43

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité