cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:09-01-2015
Exécuté par Lise (administrateur) sur HP-PAVILION-G6 (10-01-2016 14:35:21)
Exécuté depuis C:\Users\Lise\Desktop
Profils chargés: Lise & (Profils disponibles: Lise)
Platform: Windows 7 Home Basic Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Users\Lise\Downloads\win64_152823.exe
(Intel Corporation) C:\Users\Lise\AppData\Local\Temp\pft951C~tmp\Setup.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Intel Corporation) C:\Users\Lise\AppData\Local\Temp\pft951C~tmp\x64\Drv64.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2885904 2013-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SetDefault] => C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-20] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (l'élément de données a 36 caractères en plus).
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-09-30] (IDT, Inc.)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-09-15] (EasyBits Software AS)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336 2011-03-30] (CyberLink Corp.)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904 2012-11-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-12] (AVAST Software)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [286992 2015-12-12] (RealNetworks, Inc.)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [719632 2015-11-04] ()
HKLM\...\RunOnce: [IDTstacsvApp] => %ProgramFiles%\IDT\WDM\STacSV64 -r
HKLM\...\RunOnce: [WinSat] => winsat dwm -xml results.xml
HKLM-x32\...\RunOnce: [InstallShieldSetup] => C:\Program Files (x86)\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe [376512 2013-10-01] (Macrovision Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet Agent] => "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Wallet] => "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Bitdefender Agent de l'application Wallet] => "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000\...\MountPoints2: {ad27a4a4-2d1e-11e3-95d4-08edb9ed41a8} - "F:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {ad27a4a4-2d1e-11e3-95d4-08edb9ed41a8} - "F:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-1714777674-1936541269-1689067299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\Run: [Bitdefender Wallet Agent] => "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
HKU\S-1-5-18\...\Run: [Bitdefender Wallet] => "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
HKU\S-1-5-18\...\Run: [Bitdefender Agent de l'application Wallet] => "C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe"
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2012-06-01] (EasyBits Software Corp.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-12] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2015-12-12]
ShortcutTarget: RealTimes.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicy-x32: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3FF6D6F0-FEFF-4074-9FE6-3EC7AA7020ED}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> {7F970F72-FBCC-4DD8-A760-E69147DA3904} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {7F970F72-FBCC-4DD8-A760-E69147DA3904} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1714777674-1936541269-1689067299-1000 -> {7F970F72-FBCC-4DD8-A760-E69147DA3904} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1714777674-1936541269-1689067299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {7F970F72-FBCC-4DD8-A760-E69147DA3904} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2015-11-04] (RealDownloader)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-12-12] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-12] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-12] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll => Pas de fichier
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2015-11-04] (RealDownloader)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-12] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-12] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-12] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company)
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Toolbar: HKU\S-1-5-21-1714777674-1936541269-1689067299-1000 -> Pas de nom - {65F8A3D2-4C22-4A33-9633-73167EAEEC45} - Pas de fichier
Toolbar: HKU\S-1-5-21-1714777674-1936541269-1689067299-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> Pas de nom - {65F8A3D2-4C22-4A33-9633-73167EAEEC45} - Pas de fichier

FireFox:
========
FF ProfilePath: C:\Users\Lise\AppData\Roaming\Mozilla\Firefox\Profiles\5xkprh2h.default
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-12] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-02] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-02] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-12] (Oracle Corporation)
FF Plugin-x32: @kingsfot.com/npkws -> C:\Program Files (x86)\Kingsoft\kingsoft antivirus\npkws.dll [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Pas de fichier]
FF Plugin-x32: @real.com/nppl3260;version=18.1.2.175 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2015-12-12] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.2.175 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-12-12] (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\9\NP_wtapp.dll [2015-09-15] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Extension: Video DownloadHelper - C:\Users\Lise\AppData\Roaming\Mozilla\Firefox\Profiles\5xkprh2h.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-11-10]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-12]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-12]

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://cctv.cntv.cn/favicon.ico
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll (Google Inc.)
CHR Plugin: (Shockwave Flash) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll ()
CHR Profile: C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-05]
CHR Extension: (Google Docs) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Google Drive) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Recherche Google) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-02]
CHR Extension: (Google Docs hors connexion) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Avast Online Security) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Gmail) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-07]
CHR Extension: (Troupe théatrale féminine Episode) - C:\Users\Lise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmkmoaleobmjphpcniedbljogangchpn [2015-12-10]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-12]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-12] (AVAST Software)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS) [Fichier non signé]
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-09-15] (WildTangent)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-17] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-17] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [33088 2015-11-04] ()
R2 RealTimes Desktop Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1095976 2015-12-12] (RealNetworks, Inc.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339968 2013-09-30] (IDT, Inc.) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-12] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-12] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-12] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-12] (AVAST Software)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [134696 2011-11-04] (Broadcom Corporation.)
R3 BTWDPAN; C:\Windows\System32\DRIVERS\btwdpan.sys [89640 2011-05-21] (Broadcom Corporation.)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-11] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [258664 2011-09-22] (Realtek Semiconductor Corp.)
R3 SmbDrv; C:\Windows\System32\DRIVERS\Smb_driver.sys [21264 2013-10-14] (Synaptics Incorporated)
S3 ksapi64; \??\C:\Windows\system32\drivers\ksapi64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-01-10 14:35 - 2016-01-10 14:37 - 00023894 _____ C:\Users\Lise\Desktop\FRST.txt
2016-01-10 14:35 - 2016-01-10 14:35 - 00000000 ____D C:\FRST
2016-01-10 14:34 - 2016-01-10 14:34 - 02370560 _____ (Farbar) C:\Users\Lise\Desktop\FRST64.exe
2016-01-10 14:27 - 2016-01-10 14:27 - 00003138 _____ C:\Windows\System32\Tasks\{54B326DF-1548-4D4F-A1E5-D30CAC86665C}
2016-01-10 14:21 - 2016-01-10 14:21 - 00003128 _____ C:\Windows\System32\Tasks\{D1FFCC04-C037-484A-B420-56A89B634D26}
2016-01-10 14:18 - 2016-01-10 14:25 - 00000000 ____D C:\Windows\LastGood
2016-01-10 14:17 - 2016-01-10 14:20 - 00000000 ____D C:\Program Files\IDT
2016-01-10 14:17 - 2013-09-30 08:49 - 02213376 _____ (IDT, Inc.) C:\Windows\system32\SET7635.tmp
2016-01-10 14:17 - 2013-09-30 08:49 - 00697856 ____N (IDT, Inc.) C:\Windows\system32\stapi64.dll
2016-01-10 14:17 - 2013-09-30 08:49 - 00551936 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys
2016-01-10 14:17 - 2013-09-30 08:49 - 00499200 _____ (IDT, Inc.) C:\Windows\system32\stcplx64.dll
2016-01-10 14:17 - 2013-09-30 08:49 - 00256000 _____ (IDT, Inc.) C:\Windows\system32\st646493.dll
2016-01-10 14:11 - 2014-03-06 12:51 - 00763912 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPMC211.dll
2016-01-10 13:23 - 2016-01-10 13:51 - 453302290 _____ (Hewlett-Packard ) C:\Users\Lise\Downloads\SP67010.exe
2016-01-10 13:23 - 2016-01-10 13:37 - 250893753 _____ C:\Users\Lise\Downloads\UT_USB_BT400_6516000.zip
2016-01-10 13:23 - 2016-01-10 13:32 - 131104768 _____ (Intel Corporation) C:\Users\Lise\Downloads\win64_152823.exe
2016-01-10 13:23 - 2016-01-10 13:31 - 106859936 _____ C:\Users\Lise\Downloads\DJ2540_188.exe
2016-01-10 13:23 - 2016-01-10 13:26 - 34041848 _____ (Hewlett-Packard ) C:\Users\Lise\Downloads\sp64379.exe
2016-01-10 13:23 - 2016-01-10 13:23 - 04087607 _____ C:\Users\Lise\Downloads\MS400_w7_INF.zip
2016-01-10 13:22 - 2016-01-10 13:27 - 43717359 _____ C:\Users\Lise\Downloads\teg-ecsfp_sx_txv2.0r_driverutility_(winxp-10).zip
2016-01-10 13:18 - 2016-01-10 13:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com
2016-01-10 13:16 - 2016-01-10 13:16 - 00110424 _____ C:\Users\Lise\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-10 12:15 - 2016-01-10 12:15 - 02065920 _____ C:\Users\Lise\Downloads\ZHPDiag3.exe
2016-01-10 12:13 - 2016-01-10 12:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-10 11:57 - 2015-08-05 21:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2016-01-10 11:57 - 2015-08-05 21:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2016-01-08 12:24 - 2016-01-08 12:24 - 03489280 _____ C:\Users\Lise\Downloads\1-Atacama_fleuri_j--11.pps
2016-01-08 12:19 - 2016-01-08 12:19 - 01763328 _____ C:\Users\Lise\Downloads\Innovations ingu00E9nieuses11.pps
2016-01-08 12:13 - 2016-01-08 12:13 - 04899328 _____ C:\Users\Lise\Downloads\cathédrale de MILAN mf.pps
2016-01-08 12:07 - 2016-01-08 12:07 - 04748288 _____ C:\Users\Lise\Downloads\MONTAGNE A CHEVRES.pps
2016-01-08 12:00 - 2016-01-08 12:01 - 05091328 _____ C:\Users\Lise\Downloads\Benson Park sculpture garden.pps
2016-01-08 11:53 - 2016-01-08 11:54 - 06969856 _____ C:\Users\Lise\Downloads\Miroirs_naturels-L651.PPS
2016-01-08 11:41 - 2016-01-08 11:41 - 05828211 _____ C:\Users\Lise\Downloads\e31a7a8148b4b83f96c196077d855107.mp4
2016-01-05 12:23 - 2016-01-05 12:26 - 00000000 ____D C:\Users\Lise\dwhelper
2016-01-04 07:10 - 2016-01-04 07:10 - 00588085 _____ C:\Users\Lise\Downloads\pieces jointes_04_01_2016 (1).zip
2016-01-04 07:08 - 2016-01-04 07:08 - 00550090 _____ C:\Users\Lise\Downloads\pieces jointes_04_01_2016.zip
2015-12-28 07:37 - 2015-12-28 07:37 - 00002231 _____ C:\Users\Lise\Desktop\HP Support Assistant.lnk
2015-12-26 15:11 - 2015-12-26 15:11 - 00999424 _____ C:\Users\Lise\Downloads\午夜的十二声钟响2016 (1).pps
2015-12-25 16:47 - 2015-12-25 16:47 - 00614893 _____ C:\Users\Lise\Downloads\pieces jointes_25_12_2015 (1).zip
2015-12-25 16:42 - 2015-12-25 16:42 - 00999424 _____ C:\Users\Lise\Downloads\午夜的十二声钟响2016.pps
2015-12-25 16:39 - 2015-12-25 16:40 - 04689366 _____ C:\Users\Lise\Downloads\pieces jointes_25_12_2015.zip
2015-12-23 07:14 - 2015-12-23 07:14 - 02537472 _____ C:\Users\Lise\Downloads\2011_05_11_5_Schwebebahn_al (1).pps
2015-12-23 07:11 - 2015-12-23 07:11 - 04717568 _____ C:\Users\Lise\Downloads\Yakutsk__Sibu00E9rie1 (1).pps
2015-12-23 06:49 - 2015-12-23 06:49 - 06323712 _____ C:\Users\Lise\Downloads\vliegeren (1).pps
2015-12-23 06:46 - 2015-12-23 06:47 - 06323712 _____ C:\Users\Lise\Downloads\vliegeren.pps
2015-12-20 20:42 - 2015-12-20 20:42 - 02537472 _____ C:\Users\Lise\Downloads\2011_05_11_5_Schwebebahn_al.pps
2015-12-20 20:35 - 2015-12-20 20:36 - 04717568 _____ C:\Users\Lise\Downloads\Yakutsk__Sibu00E9rie1.pps
2015-12-20 20:33 - 2015-12-20 20:34 - 03661370 _____ C:\Users\Lise\Downloads\IMG_3637.MOV
2015-12-20 20:30 - 2015-12-20 20:30 - 04649231 _____ C:\Users\Lise\Downloads\IMG_3639 (1).MOV
2015-12-20 20:29 - 2015-12-20 20:30 - 04649231 _____ C:\Users\Lise\Downloads\IMG_3639.MOV
2015-12-12 16:30 - 2015-12-12 16:29 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-12-12 16:29 - 2015-12-12 16:29 - 00000000 ____D C:\Program Files\Java
2015-12-12 16:27 - 2015-12-12 16:28 - 00000000 ____D C:\ProgramData\SUPPORTDIR
2015-12-12 16:27 - 2015-12-12 16:27 - 00000000 ____D C:\ProgramData\install_clap
2015-12-12 16:18 - 2015-12-12 16:18 - 00003434 _____ C:\Windows\System32\Tasks\RealDownloader Update Check
2015-12-12 16:17 - 2015-12-12 16:17 - 00003372 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1714777674-1936541269-1689067299-1000
2015-12-12 16:17 - 2015-12-12 16:17 - 00003236 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1714777674-1936541269-1689067299-1000
2015-12-12 16:17 - 2015-12-12 16:17 - 00000000 ____D C:\Users\Lise\AppData\Roaming\RealNetworks
2015-12-12 16:17 - 2015-12-12 16:17 - 00000000 ____D C:\ProgramData\RealNetworks
2015-12-12 16:17 - 2015-12-12 16:17 - 00000000 ____D C:\ProgramData\Package Cache
2015-12-12 16:17 - 2015-12-12 16:17 - 00000000 ____D C:\Program Files (x86)\RealNetworks
2015-12-12 16:09 - 2015-12-12 16:09 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-12 16:09 - 2015-12-12 16:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-12 16:05 - 2015-12-12 16:05 - 01934848 _____ C:\Users\Lise\Downloads\ZHPCleaner.exe
2015-12-12 16:01 - 2015-12-12 16:01 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-12-12 16:01 - 2015-12-12 16:01 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-01-10 14:36 - 2012-02-12 05:27 - 00747910 _____ C:\Windows\system32\perfh00C.dat
2016-01-10 14:36 - 2012-02-12 05:27 - 00150402 _____ C:\Windows\system32\perfc00C.dat
2016-01-10 14:36 - 2009-07-14 09:13 - 01669656 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-10 14:36 - 2009-07-14 07:20 - 00000000 ____D C:\Windows\inf
2016-01-10 14:35 - 2009-07-14 07:20 - 00000000 ____D C:\Windows
2016-01-10 14:26 - 2012-06-01 04:43 - 00000000 ____D C:\ProgramData\Intel
2016-01-10 14:26 - 2012-06-01 04:40 - 00000000 ____D C:\Program Files (x86)\Intel
2016-01-10 14:24 - 2012-02-11 21:18 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-01-10 14:23 - 2014-11-17 17:53 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0026dd177adb3.job
2016-01-10 14:16 - 2011-02-10 23:23 - 00000000 ____D C:\SWSetup
2016-01-10 14:11 - 2014-02-08 16:30 - 00003622 _____ C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 2540 series
2016-01-10 14:11 - 2014-02-08 16:07 - 00000000 ____D C:\ProgramData\HP
2016-01-10 14:10 - 2014-02-08 16:29 - 00000000 ____D C:\Program Files (x86)\HP
2016-01-10 13:54 - 2013-03-21 09:41 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-10 13:51 - 2014-06-27 09:46 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf91cb2f8839fa.job
2016-01-10 13:38 - 2014-11-09 12:33 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cffbf7c9d9a082.job
2016-01-10 13:18 - 2015-10-03 16:04 - 00000000 ____D C:\ProgramData\DriversCloud.com
2016-01-10 13:18 - 2015-10-03 16:04 - 00000000 ____D C:\Program Files\DriversCloud.com
2016-01-10 13:07 - 2014-12-18 17:19 - 00000000 ____D C:\Users\Lise\AppData\Roaming\ZHP
2016-01-10 12:38 - 2014-11-09 12:33 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cffbf7c8fea1e9.job
2016-01-10 12:33 - 2009-07-14 08:45 - 00022624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-10 12:33 - 2009-07-14 08:45 - 00022624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-10 12:13 - 2015-11-10 21:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-10 12:13 - 2014-12-31 16:47 - 01992192 _____ C:\Users\Lise\ZHPCleaner.exe
2016-01-10 12:13 - 2012-11-02 21:31 - 00000000 ____D C:\Users\Lise
2016-01-10 11:49 - 2014-12-04 12:53 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-10 11:43 - 2012-11-02 21:33 - 00000000 ____D C:\Users\Lise\AppData\Local\Hewlett-Packard
2016-01-10 11:37 - 2013-08-21 12:39 - 00000000 ____D C:\Users\Lise\AppData\Roaming\Skype
2016-01-10 11:36 - 2012-02-11 21:32 - 00000000 ____D C:\ProgramData\Skype
2016-01-10 11:34 - 2015-10-03 16:38 - 00000000 ____D C:\Users\Lise\Documents\Mes téléchargements Filehippo
2016-01-10 11:29 - 2014-09-25 23:24 - 00000366 _____ C:\Windows\Tasks\ReclaimerUpdateFiles_Lise.job
2016-01-10 11:29 - 2014-09-25 23:24 - 00000362 _____ C:\Windows\Tasks\ReclaimerUpdateXML_Lise.job
2016-01-09 18:00 - 2014-12-04 14:02 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-01-09 13:09 - 2014-11-17 17:53 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0026dd033c088.job
2016-01-07 13:14 - 2014-06-27 09:46 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf91cb2ce1d1cc.job
2016-01-07 13:14 - 2013-03-21 09:41 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-05 12:53 - 2009-07-14 07:20 - 00000000 ____D C:\Windows\system32\NDF
2016-01-04 06:45 - 2009-07-14 09:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-02 19:09 - 2012-02-11 21:18 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-01-02 19:09 - 2012-02-11 21:18 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-02 19:09 - 2012-02-11 21:18 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-01-02 15:03 - 2012-02-11 21:43 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2016-01-02 15:03 - 2012-02-11 21:32 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-12-28 07:37 - 2012-02-11 21:43 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-28 07:37 - 2012-02-11 21:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-12-28 07:37 - 2009-07-14 07:20 - 00000000 ____D C:\Windows\Help
2015-12-28 07:32 - 2012-02-11 21:12 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-12-23 06:39 - 2014-11-09 12:43 - 00003180 _____ C:\Windows\System32\Tasks\HPCeeScheduleForLise
2015-12-23 06:39 - 2014-11-09 12:43 - 00000328 _____ C:\Windows\Tasks\HPCeeScheduleForLise.job
2015-12-20 21:09 - 2015-04-07 08:59 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-12-20 21:09 - 2015-04-07 08:59 - 00000000 ___SD C:\Windows\system32\GWX
2015-12-20 20:35 - 2014-12-04 14:01 - 00451040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-12-20 20:35 - 2014-12-04 14:01 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-12-20 20:34 - 2014-02-08 16:13 - 01644724 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-12-12 19:39 - 2009-07-14 09:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-12 16:31 - 2013-02-20 07:47 - 00000000 ____D C:\Users\Lise\AppData\Local\CrashDumps
2015-12-12 16:30 - 2015-10-03 16:24 - 00000000 ____D C:\Users\Lise\.oracle_jre_usage
2015-12-12 16:30 - 2014-12-04 14:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-12 16:27 - 2012-06-01 04:58 - 00000000 ____D C:\ProgramData\CyberLink
2015-12-12 16:18 - 2013-03-21 09:42 - 00000000 ____D C:\Users\Lise\AppData\Roaming\Real
2015-12-12 16:18 - 2013-03-21 09:42 - 00000000 ____D C:\Program Files (x86)\Real
2015-12-12 16:17 - 2013-03-21 09:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
2015-12-12 16:16 - 2014-12-18 17:11 - 00000000 ____D C:\AdwCleaner
2015-12-12 16:16 - 2013-03-21 15:27 - 00200976 _____ (RealNetworks, Inc.) C:\Windows\SysWOW64\rmoc3260.dll
2015-12-12 16:15 - 2013-03-21 15:26 - 00505616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2015-12-12 16:15 - 2013-03-21 15:26 - 00354064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2015-12-12 16:15 - 2013-03-21 15:26 - 00278800 _____ (Progressive Networks) C:\Windows\SysWOW64\pncrt.dll
2015-12-12 16:15 - 2013-03-21 09:39 - 00000000 ____D C:\ProgramData\Real
2015-12-12 16:13 - 2015-10-03 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-12 16:13 - 2014-12-04 12:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-12-12 16:09 - 2014-12-31 16:42 - 00000000 ____D C:\Users\Lise\AppData\Local\Skype
2015-12-12 16:08 - 2014-12-04 14:18 - 00000000 ____D C:\ProgramData\Oracle
2015-12-12 16:07 - 2014-12-04 14:18 - 00000000 ____D C:\Program Files (x86)\Java
2015-12-12 16:04 - 2014-12-04 14:20 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-12-12 16:01 - 2014-12-04 14:01 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-12-12 16:01 - 2014-12-04 14:01 - 00155304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-12-12 16:01 - 2014-12-04 14:01 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-12-12 16:01 - 2014-12-04 14:01 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-12-12 16:01 - 2014-12-04 14:01 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-12-12 16:00 - 2014-12-04 14:01 - 01055560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-12-12 08:28 - 2009-07-14 07:20 - 00000000 ____D C:\Windows\rescache

==================== Fichiers à la racine de certains dossiers =======

2015-02-27 12:19 - 2015-02-27 12:19 - 0003584 _____ () C:\Users\Lise\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-09-06 14:41 - 2014-09-06 14:41 - 0004096 ____H () C:\Users\Lise\AppData\Local\keyfile3.drm
2014-04-18 21:38 - 2014-04-18 21:38 - 0007605 _____ () C:\Users\Lise\AppData\Local\Resmon.ResmonCfg
2014-04-19 18:25 - 2014-04-19 18:25 - 0776104 _____ () C:\ProgramData\1397909498.bdinstall.bin
2014-04-21 20:13 - 2014-04-21 20:13 - 0312674 _____ () C:\ProgramData\1398096526.bdinstall.bin
2014-04-21 20:14 - 2014-04-21 20:14 - 0063515 _____ () C:\ProgramData\1398096870.bdinstall.bin
2014-04-21 20:17 - 2014-04-22 07:31 - 0642798 _____ () C:\ProgramData\1398097041.2508.bin
2014-04-21 20:20 - 2014-04-21 20:20 - 0002247 _____ () C:\ProgramData\1398097041.3808.bin
2014-04-21 20:17 - 2014-04-22 07:31 - 0156771 _____ () C:\ProgramData\1398097041.4212.bin
2014-04-21 20:17 - 2014-04-22 07:31 - 0012358 _____ () C:\ProgramData\1398097041.4400.bin
2014-04-21 20:17 - 2014-04-21 20:21 - 0117856 _____ () C:\ProgramData\1398097041.4540.bin
2014-04-21 20:17 - 2014-04-21 20:17 - 0009350 _____ () C:\ProgramData\1398097041.4544.bin
2014-04-21 20:17 - 2014-04-21 20:18 - 0001090 _____ () C:\ProgramData\1398097041.4548.bin
2014-04-21 20:17 - 2014-04-21 20:18 - 0001090 _____ () C:\ProgramData\1398097041.4552.bin
2014-04-21 20:17 - 2014-04-21 20:21 - 0017807 _____ () C:\ProgramData\1398097041.4560.bin
2014-04-21 20:17 - 2014-04-21 20:17 - 0017891 _____ () C:\ProgramData\1398097041.4564.bin
2014-04-21 20:17 - 2014-04-21 20:17 - 0002968 _____ () C:\ProgramData\1398097041.4608.bin
2014-04-21 20:18 - 2014-04-22 07:38 - 0001545 _____ () C:\ProgramData\1398097041.5088.bin
2014-05-06 13:34 - 2014-05-06 13:34 - 0357378 _____ () C:\ProgramData\1399368198.bdinstall.bin
2014-05-06 13:54 - 2014-05-06 13:54 - 0750826 _____ () C:\ProgramData\1399368916.bdinstall.bin
2014-05-06 13:36 - 2014-05-06 13:36 - 0061981 _____ () C:\ProgramData\1399368996.bdinstall.bin
2014-12-04 13:24 - 2014-12-04 13:24 - 0248294 _____ () C:\ProgramData\1417684632.bdinstall.bin
2014-02-08 16:15 - 2014-02-08 16:15 - 0000057 _____ () C:\ProgramData\Ament.ini

Fichiers à déplacer ou supprimer:
====================
C:\Users\Lise\ZHPCleaner.exe


Certains fichiers dans TEMP:
====================
C:\Users\Lise\AppData\Local\Temp\MaConfigSetupTemp.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-01-03 09:00

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité