cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:29-12-2015
Exécuté par Chouchou (administrateur) sur PC-DE-CHOUCHOU (29-12-2015 19:19:27)
Exécuté depuis C:\Users\Chouchou\Downloads
Profils chargés: Chouchou (Profils disponibles: Chouchou)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c92065b9\stacsv.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Hewlett-Packard Corporation) C:\Windows\System32\hpservice.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(SFR) C:\Program Files\SFR\Kit\9props.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c92065b9\AEstSrv.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files\SMINST\BLService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(TomTom) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-08-29] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1410344 2008-12-04] (Synaptics, Inc.)
HKLM\...\Run: [DVDAgent] => C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2008-11-28] (CyberLink Corp.)
HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [914224 2008-11-18] (Hewlett-Packard)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [206128 2008-10-10] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Health Check Scheduler] => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-29] (Microsoft Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\...\Run: [Connexion SFR 9props.exe] => C:\Program Files\SFR\Kit\9props.exe [959880 2011-06-10] (SFR)
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\...\Run: [GoogleChromeAutoLaunch_6339F5E43ECD861746A0FDE5CCDD9280] => C:\Program Files\Google\Chrome\Application\chrome.exe [741704 2015-12-11] (Google Inc.)
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\...\Run: [TomTomHOME.exe] => C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50509440 2015-11-30] (Skype Technologies S.A.)
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
Startup: C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series (réseau).lnk [2015-12-29]
ShortcutTarget: Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series (réseau).lnk -> C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\how_recover+ybh.html [2015-12-22] ()
Startup: C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\how_recover+ybh.txt [2015-12-22] ()

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{0C33F3F1-7BD1-4595-9976-EB6F69D7B10C}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{7DFB5BF5-4684-494A-BBFF-AB193178754D}: [DhcpNameServer] 192.168.0.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=91&bd=Pavilion&pf=cnnb
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.securery.com?265A664CEA414B3FA83BE6A47BEC2ECA=%09%07%05Z%07%1b%0d%1fOH%40%18%0e%18%5b%0a%1c%01W%0c%1a%0a%40P%09%0cH*%3c%3c%3cI%18%03%1cRJ%5b%11R%5e_%40_X__%0bIBA_YXTVDP%5dB%1c%5bETW%0eLW%40VY%0e
HKU\S-1-5-21-2078889320-2302299958-695770034-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=91&bd=Pavilion&pf=cnnb
SearchScopes: HKLM -> DefaultScope {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM -> {2292CCD5-25C3-42FE-8A3C-7B608EABDFA0} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_10_IE&cd=2XzuyEtN2Y1L1QzutDtDtBtAzz0B0BtCyBzyyEyC0AtC0ByEtN0D0Tzu0SyBzyyCtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAtCyByEtBzzyCyCtG0AyCzy0AtG0AtBtAzztG0AtCtA0CtGtCyE0B0EzyyCzz0Czz0ByB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StByEtDzy0AzzyByEtGtAyDyCzytG0C0A0EtCtGyDtB0CyDtGyDtD0DyCzztC0FtB0A0DzytB2Q&cr=72288151&ir=
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKLM -> {EE717421-3EA4-40FF-8162-FA4BCFA306B5} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKU\S-1-5-21-2078889320-2302299958-695770034-1000 -> DefaultScope {4b85fe58-9d55-435b-bdbc-35156b02edac} URL = hxxp://www.securery.com/web?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2078889320-2302299958-695770034-1000 -> {2292CCD5-25C3-42FE-8A3C-7B608EABDFA0} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKU\S-1-5-21-2078889320-2302299958-695770034-1000 -> {4b85fe58-9d55-435b-bdbc-35156b02edac} URL = hxxp://www.securery.com/web?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2078889320-2302299958-695770034-1000 -> {646C7B5D-E7B1-428C-BEF3-32DA14866BC9} URL = hxxp://www.securery.com/web?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2078889320-2302299958-695770034-1000 -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_10_IE&cd=2XzuyEtN2Y1L1QzutDtDtBtAzz0B0BtCyBzyyEyC0AtC0ByEtN0D0Tzu0SyBzyyCtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAtCyByEtBzzyCyCtG0AyCzy0AtG0AtBtAzztG0AtCtA0CtGtCyE0B0EzyyCzz0Czz0ByB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StByEtDzy0AzzyByEtGtAyDyCzytG0C0A0EtCtGyDtB0CyDtGyDtD0DyCzztC0FtB0A0DzytB2Q&cr=72288151&ir=
SearchScopes: HKU\S-1-5-21-2078889320-2302299958-695770034-1000 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL =
SearchScopes: HKU\S-1-5-21-2078889320-2302299958-695770034-1000 -> {EE717421-3EA4-40FF-8162-FA4BCFA306B5} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
BHO: Objet d'aide à la navigation SFR -> {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} -> C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll [2011-06-10] (SFR)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Pas de nom -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Pas de fichier
Toolbar: HKLM - Securery Toolbar - {22EF15F8-F721-4FBF-B36C-568E1BDEB5EC} - C:\Program Files\Securery\Toolbar\Securery.dll [2015-10-14] (DM73)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-22] (Google Inc.)

FireFox:
========
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2008-08-06] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-07] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-07] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-09] (VideoLAN)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-03-07] [non signé]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.securery.com
CHR StartupUrls: Default -> "hxxps://fr.yahoo.com/","hxxp://info.sfr.fr/","hxxps://mail.google.com/mail/u/0/?tab=Xm#contacts"
CHR NewTab: Default -> "chrome-extension://jnnbmiailafajdkboegcjcdklooomfic/stubby.html"
CHR DefaultSearchURL: Default -> hxxp://dts.search.ask.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Ask Search
CHR DefaultSuggestURL: Default -> hxxp://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\Chouchou\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Ask Search) - C:\Users\Chouchou\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaafeopjhkcolncjbedbhofpocmdbn [2015-12-22]
CHR Extension: (WeatherBlink) - C:\Users\Chouchou\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnnbmiailafajdkboegcjcdklooomfic [2015-12-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Chouchou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-22]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c92065b9\aestsrv.exe [77824 2009-01-13] (Andrea Electronics Corporation)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [Fichier non signé]
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard) [Fichier non signé]
R3 hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [223232 2008-10-23] (Hewlett-Packard Development Company, L.P.) [Fichier non signé]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2008-06-09] (Hewlett-Packard Company) [Fichier non signé]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [365952 2008-12-17] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734 2008-09-15] () [Fichier non signé]
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c92065b9\STacSV.exe [237661 2009-01-08] (IDT, Inc.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [87536 2008-11-28] (CyberLink Corp.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S1 SRTSP; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SRTSP.SYS [X]
S1 SRTSPX; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SRTSPX.SYS [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-12-29 19:19 - 2015-12-29 19:20 - 00018148 _____ C:\Users\Chouchou\Downloads\FRST.txt
2015-12-29 19:19 - 2015-12-29 19:19 - 00000000 ____D C:\FRST
2015-12-29 19:18 - 2015-12-29 19:18 - 01721856 _____ (Farbar) C:\Users\Chouchou\Downloads\FRST.exe
2015-12-29 16:39 - 2015-12-29 16:39 - 00326132 _____ C:\Users\Chouchou\Documents\cc_20151229_163914.reg
2015-12-29 09:25 - 2015-12-29 09:25 - 06189568 _____ C:\Users\Chouchou\Downloads\Humourbreton1.pps
2015-12-29 09:23 - 2015-12-29 09:23 - 00078848 _____ C:\Users\Chouchou\Downloads\Dessiner_un_chien.pps
2015-12-29 09:07 - 2015-12-29 09:07 - 06544809 _____ C:\Users\Chouchou\Downloads\F E M M E.MP4
2015-12-28 10:46 - 2015-12-28 10:46 - 02310656 _____ C:\Users\Chouchou\Downloads\Aux amis de mon ordinateur.pps
2015-12-28 09:06 - 2015-12-28 09:06 - 04051456 _____ C:\Users\Chouchou\Downloads\La_Bouille.pps
2015-12-22 11:24 - 2015-12-22 11:24 - 00010608 _____ C:\Users\Public\how_recover+ybh.html
2015-12-22 11:24 - 2015-12-22 11:24 - 00010608 _____ C:\Users\Public\Downloads\how_recover+ybh.html
2015-12-22 11:24 - 2015-12-22 11:24 - 00010608 _____ C:\Users\Chouchou\how_recover+ybh.html
2015-12-22 11:24 - 2015-12-22 11:24 - 00002385 _____ C:\Users\Public\how_recover+ybh.txt
2015-12-22 11:24 - 2015-12-22 11:24 - 00002385 _____ C:\Users\Public\Downloads\how_recover+ybh.txt
2015-12-22 11:24 - 2015-12-22 11:24 - 00002385 _____ C:\Users\Chouchou\how_recover+ybh.txt
2015-12-22 11:20 - 2015-12-22 11:21 - 00010608 _____ C:\Users\Chouchou\Documents\how_recover+ybh.html
2015-12-22 11:20 - 2015-12-22 11:21 - 00002385 _____ C:\Users\Chouchou\Documents\how_recover+ybh.txt
2015-12-22 11:20 - 2015-12-22 11:20 - 00010608 _____ C:\Users\Chouchou\AppData\Roaming\how_recover+ybh.html
2015-12-22 11:20 - 2015-12-22 11:20 - 00010608 _____ C:\Users\Chouchou\AppData\how_recover+ybh.html
2015-12-22 11:20 - 2015-12-22 11:20 - 00002385 _____ C:\Users\Chouchou\AppData\Roaming\how_recover+ybh.txt
2015-12-22 11:20 - 2015-12-22 11:20 - 00002385 _____ C:\Users\Chouchou\AppData\how_recover+ybh.txt
2015-12-22 11:14 - 2015-12-22 11:21 - 00010608 _____ C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\how_recover+ybh.html
2015-12-22 11:14 - 2015-12-22 11:21 - 00002385 _____ C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\how_recover+ybh.txt
2015-12-22 11:14 - 2015-12-22 11:14 - 00010608 _____ C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\how_recover+ybh.html
2015-12-22 11:14 - 2015-12-22 11:14 - 00002385 _____ C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\how_recover+ybh.txt
2015-12-22 11:12 - 2015-12-22 11:12 - 00010608 _____ C:\Users\Chouchou\AppData\LocalLow\how_recover+ybh.html
2015-12-22 11:12 - 2015-12-22 11:12 - 00002385 _____ C:\Users\Chouchou\AppData\LocalLow\how_recover+ybh.txt
2015-12-22 11:00 - 2015-12-22 11:24 - 00010608 _____ C:\Users\Public\Documents\how_recover+ybh.html
2015-12-22 11:00 - 2015-12-22 11:24 - 00002385 _____ C:\Users\Public\Documents\how_recover+ybh.txt
2015-12-22 11:00 - 2015-12-22 11:21 - 00010608 _____ C:\Users\Chouchou\AppData\Local\how_recover+ybh.html
2015-12-22 11:00 - 2015-12-22 11:21 - 00002385 _____ C:\Users\Chouchou\AppData\Local\how_recover+ybh.txt
2015-12-22 11:00 - 2015-12-22 11:00 - 00353280 _____ C:\Users\Chouchou\AppData\Roaming\fpdqkskhf2.exe
2015-12-22 11:00 - 2015-12-22 11:00 - 00010608 _____ C:\Users\Chouchou\AppData\Local\Apps\how_recover+ybh.html
2015-12-22 11:00 - 2015-12-22 11:00 - 00010608 _____ C:\ProgramData\how_recover+ybh.html
2015-12-22 11:00 - 2015-12-22 11:00 - 00002385 _____ C:\Users\Chouchou\AppData\Local\Apps\how_recover+ybh.txt
2015-12-22 11:00 - 2015-12-22 11:00 - 00002385 _____ C:\ProgramData\how_recover+ybh.txt
2015-12-22 10:56 - 2015-12-22 10:56 - 00000252 _____ C:\Users\Chouchou\Documents\recover_file_oekrrjpei.txt
2015-12-10 09:01 - 2015-12-10 09:01 - 00000000 ____D C:\398023fc29ed756648c6
2015-12-10 08:54 - 2015-11-06 18:05 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-10 08:54 - 2015-11-06 17:32 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-12-10 08:54 - 2015-11-06 17:32 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-12-10 08:54 - 2015-11-06 17:32 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-12-10 08:54 - 2015-11-06 17:32 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-12-10 08:54 - 2015-11-06 16:27 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-12-10 08:54 - 2015-11-06 16:26 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-12-10 08:54 - 2015-11-06 16:24 - 02068480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-10 08:54 - 2015-11-06 16:20 - 01073152 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-10 08:54 - 2015-11-06 16:20 - 00682496 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-12-10 08:54 - 2015-11-06 16:19 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-10 08:52 - 2015-11-02 18:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-12-10 08:48 - 2015-11-05 08:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-12-10 08:47 - 2015-11-10 18:03 - 01208832 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-10 08:47 - 2015-11-10 18:03 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-10 08:46 - 2015-11-05 08:34 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-09 18:02 - 2015-11-12 21:39 - 01814528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-09 18:02 - 2015-11-12 21:37 - 12389376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-09 18:02 - 2015-11-12 21:36 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-12-09 18:02 - 2015-11-12 21:34 - 09753088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-09 18:02 - 2015-11-12 21:34 - 01140224 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-12-09 18:02 - 2015-11-12 21:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-09 18:02 - 2015-11-12 21:32 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-12-09 18:02 - 2015-11-12 21:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-12-09 18:02 - 2015-11-12 21:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-12-09 18:02 - 2015-11-12 21:31 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-12-09 18:02 - 2015-11-12 21:31 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-12-09 18:02 - 2015-11-12 21:31 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-09 18:02 - 2015-11-12 21:31 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-09 18:02 - 2015-11-12 21:31 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-12-09 18:02 - 2015-11-12 21:31 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-12-29 19:19 - 2006-11-02 12:18 - 00000000 ____D C:\Windows
2015-12-29 19:18 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-29 19:18 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-29 19:11 - 2014-10-06 15:08 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Skype
2015-12-29 19:10 - 2014-10-06 13:57 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-29 19:10 - 2013-04-07 14:51 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-29 16:46 - 2013-04-07 14:51 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-29 16:46 - 2013-03-06 15:42 - 00092880 _____ C:\Users\Chouchou\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-29 16:45 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-29 16:45 - 2006-11-02 13:47 - 00351112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-29 16:44 - 2006-11-02 14:01 - 00032562 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-29 16:37 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\inf
2015-12-29 14:43 - 2014-10-06 13:57 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-12-29 14:43 - 2014-10-06 13:57 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-12-29 09:11 - 2013-12-26 19:31 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\vlc
2015-12-24 08:57 - 2013-03-06 16:11 - 00002633 _____ C:\Users\Chouchou\Desktop\Microsoft Word 2010.lnk
2015-12-22 11:24 - 2013-12-26 19:34 - 00000000 ____D C:\Users\Public\CyberLink
2015-12-22 11:24 - 2013-12-26 19:14 - 00000000 ____D C:\Users\Chouchou\video
2015-12-22 11:24 - 2013-03-06 15:37 - 00000000 ____D C:\Users\Chouchou
2015-12-22 11:24 - 2006-11-02 13:37 - 00000000 ____D C:\Users\Public\Recorded TV
2015-12-22 11:21 - 2015-09-17 07:57 - 01464734 _____ C:\Users\Chouchou\Downloads\IMG_0117.JPG.vvv
2015-12-22 11:21 - 2015-09-17 07:57 - 01315518 _____ C:\Users\Chouchou\Downloads\IMG_0123.JPG.vvv
2015-12-22 11:21 - 2015-06-22 08:30 - 00157550 _____ C:\Users\Chouchou\Downloads\IMG_20150604_110804 (1).jpg.vvv
2015-12-22 11:21 - 2015-06-14 07:48 - 02982494 _____ C:\Users\Chouchou\Downloads\IMG_0651.JPG.vvv
2015-12-22 11:21 - 2015-06-14 07:47 - 02706334 _____ C:\Users\Chouchou\Downloads\IMG_0617.JPG.vvv
2015-12-22 11:21 - 2015-06-14 07:47 - 02666238 _____ C:\Users\Chouchou\Downloads\IMG_0620.JPG.vvv
2015-12-22 11:21 - 2015-06-14 07:42 - 02725470 _____ C:\Users\Chouchou\Downloads\IMG_0663.JPG.vvv
2015-12-22 11:21 - 2015-06-14 07:41 - 02997294 _____ C:\Users\Chouchou\Downloads\IMG_0655.JPG.vvv
2015-12-22 11:21 - 2015-06-14 07:40 - 02842014 _____ C:\Users\Chouchou\Downloads\IMG_0660.JPG.vvv
2015-12-22 11:20 - 2015-09-24 08:23 - 01384510 _____ C:\Users\Chouchou\Downloads\IMG_0030.JPG.vvv
2015-12-22 11:20 - 2015-09-17 07:57 - 02052734 _____ C:\Users\Chouchou\Downloads\IMG_0064.JPG.vvv
2015-12-22 11:20 - 2015-09-17 07:56 - 01922958 _____ C:\Users\Chouchou\Downloads\IMG_0016.JPG.vvv
2015-12-22 11:20 - 2015-05-29 08:11 - 00062078 _____ C:\Users\Chouchou\Downloads\20150525_141704-0-.jpg.vvv
2015-12-22 11:20 - 2015-04-14 08:10 - 00008654 ___SH C:\Users\Chouchou\Downloads\AlbumArt_{A94DD898-0365-4D52-98AB-E1F77DC70CA0}_Large.jpg.vvv
2015-12-22 11:20 - 2015-04-14 08:10 - 00002862 ___SH C:\Users\Chouchou\Downloads\AlbumArt_{A94DD898-0365-4D52-98AB-E1F77DC70CA0}_Small.jpg.vvv
2015-12-22 11:20 - 2015-04-14 08:08 - 00008654 ___SH C:\Users\Chouchou\Downloads\Folder.jpg.vvv
2015-12-22 11:20 - 2015-04-14 08:08 - 00002862 ___SH C:\Users\Chouchou\Downloads\AlbumArtSmall.jpg.vvv
2015-12-22 11:20 - 2015-04-11 15:18 - 02372638 _____ C:\Users\Chouchou\Downloads\20150307_195525.jpg.vvv
2015-12-22 11:20 - 2015-03-01 08:50 - 00887422 _____ C:\Users\Chouchou\Downloads\100_6558.JPG.vvv
2015-12-22 11:20 - 2015-03-01 08:49 - 00797662 _____ C:\Users\Chouchou\Downloads\100_6556.JPG.vvv
2015-12-22 11:20 - 2015-03-01 08:49 - 00740686 _____ C:\Users\Chouchou\Downloads\100_6548.JPG.vvv
2015-12-22 11:20 - 2015-03-01 08:48 - 00786398 _____ C:\Users\Chouchou\Downloads\100_6550.JPG.vvv
2015-12-22 11:20 - 2015-03-01 08:48 - 00617166 _____ C:\Users\Chouchou\Downloads\100_6546.JPG.vvv
2015-12-22 11:20 - 2015-02-27 09:13 - 01055486 _____ C:\Users\Chouchou\Downloads\100_6513.JPG.vvv
2015-12-22 11:20 - 2015-02-26 14:52 - 01030638 _____ C:\Users\Chouchou\Downloads\100_6514.JPG.vvv
2015-12-22 11:20 - 2014-10-01 16:26 - 00000000 ____D C:\Users\Chouchou\Documents\My Received Files
2015-12-22 11:20 - 2014-03-06 13:46 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\systweak
2015-12-22 11:20 - 2014-01-06 13:02 - 00000000 ____D C:\Users\Chouchou\Documents\Nouveau dossier
2015-12-22 11:20 - 2013-04-07 15:10 - 00000000 ____D C:\Users\Chouchou\Documents\TomTom
2015-12-22 11:20 - 2013-04-07 15:10 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\TomTom
2015-12-22 11:14 - 2014-10-01 16:27 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\MusicNet
2015-12-22 11:14 - 2013-12-26 11:29 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Nokia
2015-12-22 11:14 - 2013-12-26 11:24 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\PC Suite
2015-12-22 11:14 - 2013-04-07 15:10 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Mozilla
2015-12-22 11:14 - 2013-03-06 15:38 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2015-12-22 11:14 - 2013-03-06 15:38 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2015-12-22 11:12 - 2015-01-19 10:23 - 00000000 ____D C:\Users\Chouchou\AppData\LocalLow\Hewlett-Packard
2015-12-22 11:12 - 2015-01-19 10:21 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\HpUpdate
2015-12-22 11:12 - 2014-10-06 15:08 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Skype
2015-12-22 11:12 - 2014-10-06 14:48 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Canneverbe Limited
2015-12-22 11:12 - 2014-03-06 13:50 - 00000000 ____D C:\Users\Chouchou\AppData\LocalLow\MySearchDial
2015-12-22 11:12 - 2014-03-06 13:47 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\0V1L2Z2Z1T1I1L1T
2015-12-22 11:12 - 2013-12-26 19:34 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\CyberLink
2015-12-22 11:12 - 2013-12-26 19:12 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\BitTorrent
2015-12-22 11:12 - 2013-11-24 10:57 - 00000000 ____D C:\Users\Chouchou\AppData\LocalLow\Adobe
2015-12-22 11:12 - 2013-04-07 15:10 - 00000000 ____D C:\Users\Chouchou\AppData\Local\TomTom
2015-12-22 11:12 - 2013-03-06 16:23 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Macromedia
2015-12-22 11:12 - 2013-03-06 16:23 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Adobe
2015-12-22 11:12 - 2013-03-06 15:46 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Hewlett-Packard
2015-12-22 11:12 - 2013-03-06 15:46 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\ATI
2015-12-22 11:12 - 2013-03-06 15:43 - 00000000 ____D C:\Users\Chouchou\AppData\Local\VirtualStore
2015-12-22 11:12 - 2013-03-06 15:41 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\HP TCS
2015-12-22 11:12 - 2013-03-06 15:38 - 00000000 ____D C:\Users\Chouchou\AppData\Roaming\Media Center Programs
2015-12-22 11:11 - 2013-12-26 11:25 - 00000000 ____D C:\Users\Chouchou\AppData\Local\NokiaAccount
2015-12-22 11:11 - 2013-12-26 11:24 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Nokia
2015-12-22 11:11 - 2013-04-07 16:38 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Microsoft Games
2015-12-22 11:11 - 2013-03-06 16:06 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Microsoft Help
2015-12-22 11:01 - 2015-01-19 10:17 - 00000000 ____D C:\Users\Chouchou\AppData\Local\HP
2015-12-22 11:01 - 2014-10-01 16:26 - 00000000 ____D C:\Users\Chouchou\AppData\Local\iMesh
2015-12-22 11:01 - 2013-04-07 14:51 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Google
2015-12-22 11:01 - 2013-03-06 15:46 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Hewlett-Packard
2015-12-22 11:00 - 2015-01-19 10:22 - 00000000 ____D C:\ProgramData\Visan
2015-12-22 11:00 - 2015-01-19 10:22 - 00000000 ____D C:\ProgramData\HP Photo Creations
2015-12-22 11:00 - 2015-01-19 10:18 - 00000000 ____D C:\ProgramData\HP
2015-12-22 11:00 - 2014-10-29 08:50 - 00000000 ____D C:\ProgramData\Google
2015-12-22 11:00 - 2014-10-06 15:07 - 00000000 ____D C:\ProgramData\Skype
2015-12-22 11:00 - 2014-10-06 14:48 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2015-12-22 11:00 - 2013-12-26 11:24 - 00000000 ____D C:\ProgramData\PC Suite
2015-12-22 11:00 - 2013-12-26 11:17 - 00000000 ____D C:\ProgramData\NokiaInstallerCache
2015-12-22 11:00 - 2013-04-07 15:10 - 00000000 ____D C:\ProgramData\TomTom
2015-12-22 11:00 - 2013-04-07 15:07 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Downloaded Installations
2015-12-22 11:00 - 2013-04-07 14:50 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Deployment
2015-12-22 11:00 - 2013-04-07 14:50 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Apps\2.0
2015-12-22 11:00 - 2013-03-07 14:03 - 00000000 ____D C:\Users\Chouchou\AppData\Local\Adobe
2015-12-22 11:00 - 2013-03-06 15:46 - 00011774 _____ C:\ProgramData\HPWALog.txt.vvv
2015-12-22 11:00 - 2013-03-06 15:46 - 00000000 ____D C:\Users\Chouchou\AppData\Local\ATI
2015-12-22 11:00 - 2013-03-06 15:33 - 00000000 ____D C:\ProgramData\ATI
2015-12-22 11:00 - 2013-03-06 15:03 - 00000000 ____D C:\ProgramData\Atheros
2015-12-22 11:00 - 2009-02-26 10:12 - 00000000 ____D C:\ProgramData\Temp
2015-12-22 11:00 - 2009-02-26 10:12 - 00000000 ____D C:\ProgramData\CyberLink
2015-12-22 11:00 - 2009-02-26 10:12 - 00000000 ____D C:\ProgramData\Adobe
2015-12-22 11:00 - 2009-02-26 10:08 - 00000000 ____D C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
2015-12-22 11:00 - 2009-02-26 09:36 - 00000000 ____D C:\ProgramData\WildTangent
2015-12-22 11:00 - 2009-02-26 09:10 - 00000000 ____D C:\ProgramData\Symantec
2015-12-22 11:00 - 2009-02-26 09:09 - 00000000 ____D C:\ProgramData\NortonInstaller
2015-12-22 11:00 - 2009-02-26 09:09 - 00000000 ____D C:\ProgramData\Norton
2015-12-22 11:00 - 2009-02-26 09:07 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-12-22 11:00 - 2008-06-09 15:34 - 00000000 ____D C:\SWSetup
2015-12-22 11:00 - 1999-03-30 19:17 - 00000000 ___HD C:\System.sav
2015-12-22 10:58 - 2009-02-26 16:34 - 00000000 ___HD C:\HP
2015-12-22 10:56 - 2013-03-06 16:53 - 00000000 ____D C:\8d7a9377da353f3c42c224d343f5
2015-12-21 08:52 - 2009-02-26 16:48 - 00722148 _____ C:\Windows\system32\perfh00C.dat
2015-12-21 08:52 - 2009-02-26 16:48 - 00145950 _____ C:\Windows\system32\perfc00C.dat
2015-12-21 08:52 - 2006-11-02 11:33 - 01591650 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-16 10:26 - 2013-10-25 15:58 - 00018944 _____ C:\Users\Chouchou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-14 11:56 - 2013-03-08 13:40 - 00006836 _____ C:\Users\Chouchou\AppData\Local\d3d9caps.dat
2015-12-11 16:00 - 2013-03-06 16:11 - 00002563 _____ C:\Users\Chouchou\Desktop\Microsoft PowerPoint 2010.lnk
2015-12-10 09:51 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2015-12-10 09:01 - 2006-11-02 13:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2015-12-10 08:56 - 2009-02-26 10:05 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-09 04:39 - 2013-03-06 16:43 - 00247976 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-12-07 08:40 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool
2015-12-07 08:40 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc
2015-12-07 08:40 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration
2015-12-07 08:40 - 2006-11-02 11:22 - 49545216 _____ C:\Windows\system32\config\software_previous
2015-12-07 08:40 - 2006-11-02 11:22 - 18612224 _____ C:\Windows\system32\config\system_previous
2015-12-07 08:35 - 2006-11-02 11:22 - 45350912 _____ C:\Windows\system32\config\components_previous
2015-12-07 08:35 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\sam_previous
2015-12-06 08:29 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\security_previous
2015-12-06 08:29 - 2006-11-02 11:22 - 00262144 _____ C:\Windows\system32\config\default_previous

==================== Fichiers à la racine de certains dossiers =======

2015-12-22 11:00 - 2015-12-22 11:00 - 0353280 _____ () C:\Users\Chouchou\AppData\Roaming\fpdqkskhf2.exe
2015-12-22 11:20 - 2015-12-22 11:20 - 0010608 _____ () C:\Users\Chouchou\AppData\Roaming\how_recover+ybh.html
2015-12-22 11:20 - 2015-12-22 11:20 - 0002385 _____ () C:\Users\Chouchou\AppData\Roaming\how_recover+ybh.txt
2014-03-06 13:46 - 2014-03-06 13:46 - 0000044 _____ () C:\Users\Chouchou\AppData\Roaming\WB.CFG
2015-12-22 11:14 - 2015-12-22 11:14 - 0010608 _____ () C:\Users\Chouchou\AppData\Roaming\Microsoft\how_recover+ybh.html
2015-12-22 11:14 - 2015-12-22 11:14 - 0002385 _____ () C:\Users\Chouchou\AppData\Roaming\Microsoft\how_recover+ybh.txt
2013-03-06 15:46 - 2013-03-06 15:46 - 0000000 _____ () C:\Users\Chouchou\AppData\Local\AtStart.txt
2013-03-08 13:40 - 2015-12-14 11:56 - 0006836 _____ () C:\Users\Chouchou\AppData\Local\d3d9caps.dat
2013-10-25 15:58 - 2015-12-16 10:26 - 0018944 _____ () C:\Users\Chouchou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-03-06 15:46 - 2013-03-06 15:46 - 0000000 _____ () C:\Users\Chouchou\AppData\Local\DSwitch.txt
2015-12-22 11:00 - 2015-12-22 11:21 - 0010608 _____ () C:\Users\Chouchou\AppData\Local\how_recover+ybh.html
2015-12-22 11:00 - 2015-12-22 11:21 - 0002385 _____ () C:\Users\Chouchou\AppData\Local\how_recover+ybh.txt
2013-03-06 15:46 - 2013-03-06 15:46 - 0000000 _____ () C:\Users\Chouchou\AppData\Local\QSwitch.txt
2015-01-19 10:17 - 2015-01-19 10:17 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-12-22 11:00 - 2015-12-22 11:00 - 0010608 _____ () C:\ProgramData\how_recover+ybh.html
2015-12-22 11:00 - 2015-12-22 11:00 - 0002385 _____ () C:\ProgramData\how_recover+ybh.txt
2013-03-06 15:46 - 2015-12-22 11:00 - 0011774 _____ () C:\ProgramData\HPWALog.txt.vvv
2013-03-06 15:28 - 2013-03-06 15:28 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2009-02-26 10:21 - 2009-02-26 10:21 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-03-06 15:27 - 2013-03-06 15:27 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2009-02-26 10:14 - 2009-02-26 10:15 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2013-03-06 15:25 - 2013-03-06 15:25 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2013-03-06 15:28 - 2013-03-06 15:28 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2009-02-26 10:12 - 2009-02-26 10:13 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-02-26 10:16 - 2009-02-26 10:21 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2013-03-06 15:29 - 2013-03-06 15:29 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-12-29 16:51

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité