cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:07-02-2016
Exécuté par djé (administrateur) sur DJÉ-PC (13-02-2016 10:15:41)
Exécuté depuis C:\Users\djé\Downloads
Profils chargés: djé (Profils disponibles: djé)
Platform: Windows 7 Professional (X64) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(Scarlet.Crush Productions) C:\Users\djé\Desktop\ScpServer\bin\ScpService.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
() C:\Windows\System32\PnkBstrA.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(TomTom) C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIKAE.EXE
(Spotify Ltd) C:\Users\djé\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(CMedia) C:\Program Files\ASUS Xonar Essence ST Audio\Customapp\AsusAudioCenter.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Spotify Ltd) C:\Users\djé\AppData\Roaming\Spotify\Spotify.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(Dropbox, Inc.) C:\Users\djé\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
(Spotify Ltd) C:\Users\djé\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\djé\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\djé\AppData\Roaming\Spotify\Spotify.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_306.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_306.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9996320 2010-01-19] (Realtek Semiconductor)
HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech, Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4859592 2015-11-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-10-21] (NEC Electronics Corporation)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [642664 2013-10-18] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863848 2013-10-18] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1852264 2014-05-23] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694048 2014-10-23] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-07-20] (Western Digital Technologies, Inc.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe [473496 2013-11-29] (TomTom)
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIKAE.EXE [298560 2013-09-12] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Run: [Spotify Web Helper] => C:\Users\djé\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1959992 2015-03-11] (Spotify Ltd)
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-02] (Skype Technologies S.A.)
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Run: [Dropbox Update] => C:\Users\djé\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.)
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Run: [Spotify] => C:\Users\djé\AppData\Roaming\Spotify\Spotify.exe [6611512 2015-03-11] (Spotify Ltd)
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: D - D:\Run.exe
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: {054b0940-3aed-11e2-8905-806e6f6e6963} - I:\setup.exe
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: {5f3d4ef7-6d63-11e4-a5a1-6cf049e6135e} - J:\Startme.exe
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: {9aa1954f-9af2-11e4-ab58-6cf049e6135e} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL L:\start.exe
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: {d77cbc2b-37b9-11e3-a833-6cf049e6135e} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL L:\start.exe
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: {e34ef9be-318d-11e3-a57e-6cf049e6135e} - J:\Startme.exe
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: {f4e31824-c0ab-11e2-b6bf-6cf049e6135e} - J:\ICM_Manager.exe
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\MountPoints2: {f7d9516c-0651-11e5-9c78-6cf049e6135e} - "N:\WD Drive Unlock.exe" autoplay=true
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt64.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\djé\AppData\Roaming\Dropbox\bin\DropboxExt.31.dll [2016-02-09] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Serveur réseau.lnk [2015-06-10]
ShortcutTarget: Serveur réseau.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG)
Startup: C:\Users\djé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-02-12]
ShortcutTarget: Dropbox.lnk -> C:\Users\djé\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{2DA70C19-40CF-45B3-8B74-24044159328D}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{35097750-2B6C-42B9-BD42-7AAC955A659A}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{B7D1E9D3-8120-4E57-BD04-4111C4544B97}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://www.google.fr
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\Software\Microsoft\Internet Explorer\Main,Default_page_url = hxxps://safesearch.avira.com/#web/result?source=art&q=
HKU\S-1-5-21-789348113-2919787306-2538890384-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=art&q=
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKU\S-1-5-21-789348113-2919787306-2538890384-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-789348113-2919787306-2538890384-1000 -> {3A4F5CF3-F1F6-4A24-A5D7-9A7AA399399A} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=fr_FR&apn_ptnrs=^U3&apn_dtid=^OSJ000^YY^FR&apn_uid=D7A6BEDC-4F7C-4F82-96EF-7489CCF7A1AB&apn_sauid=C8576508-31EB-4CA0-A945-7E1E7C85E236
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2014-05-19] (Logitech, Inc.)
BHO-x32: Pas de nom -> {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} -> Pas de fichier
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-27] (Oracle Corporation)
BHO-x32: Programme d’aide de l’Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2014-05-19] (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-27] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-789348113-2919787306-2538890384-1000 -> Pas de nom - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - Pas de fichier
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/FR/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\djé\AppData\Roaming\Mozilla\Firefox\Profiles\64gif5n5.default-1449424969275
FF Homepage: google.fr
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll [2016-02-10] ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [Pas de fichier]
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-10] ()
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [Pas de fichier]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [Pas de fichier]
FF Plugin-x32: @esn/esnlaunch,version=1.132.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll [Pas de fichier]
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll [Pas de fichier]
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll [Pas de fichier]
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [Pas de fichier]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-09-12] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-09-12] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-06-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-06-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-06-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-06-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-06-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\djé\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Extension: Google Translator for Firefox - C:\Users\djé\AppData\Roaming\Mozilla\Firefox\Profiles\64gif5n5.default-1449424969275\extensions\translator@zoli.bod.xpi [2015-12-09]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2016-02-12] [non signé]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2016-02-12] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2014-04-17] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-12-19] [non signé]
FF HKU\S-1-5-21-789348113-2919787306-2538890384-1000\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files (x86)\DAP\DAPFireFox => non trouvé(e)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] -

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Ds3Service; C:\Users\djé\Desktop\ScpServer\bin\ScpService.exe [381952 2014-03-13] (Scarlet.Crush Productions) [Fichier non signé]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON CORPORATION)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2010-12-23] (Nalpeiron Ltd.) [Fichier non signé]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-02] (Electronic Arts)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-08-01] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-29] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2015-07-20] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [306552 2015-07-20] (Western Digital Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [29288 2010-12-24] (Wondershare)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [20520 2010-03-01] ()
S3 BrSerIf; C:\Windows\System32\DRIVERS\BrSerIf.sys [97280 2006-12-12] (Brother Industries Ltd.)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2725376 2011-03-10] (C-Media Inc)
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20552 2010-07-30] (Devguru Co., Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 FlyUsb; C:\Windows\System32\DRIVERS\FlyUsb.sys [24576 2013-09-27] (LeapFrog) [Fichier non signé]
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19936 2010-08-16] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [13280 2010-08-16] ()
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-11-30] (Duplex Secure Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [51712 2010-09-28] (Apple, Inc.) [Fichier non signé]
R2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey64.sys [106760 2013-12-18] (WIBU-SYSTEMS AG)
S3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [29288 2011-11-17] (Wondershare)
S3 catchme; \??\C:\Users\DJB527~1\AppData\Local\Temp\catchme.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011\WNt500x64\Sandra.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-13 10:15 - 2016-02-13 10:15 - 00029691 _____ C:\Users\djé\Downloads\FRST.txt
2016-02-13 10:15 - 2016-02-13 10:15 - 00000000 ____D C:\FRST
2016-02-13 10:14 - 2016-02-13 10:15 - 02370560 _____ (Farbar) C:\Users\djé\Downloads\FRST64.exe
2016-02-13 10:02 - 2016-02-13 10:03 - 00008192 _____ C:\Windows\SysWOW64\WDPABKP.dat
2016-02-13 09:34 - 2016-02-13 09:34 - 00000000 ____D C:\Program Files\Microsoft Games
2016-02-12 16:56 - 2016-02-12 16:56 - 00000132 _____ C:\Users\djé\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-02-12 16:31 - 2016-02-12 16:31 - 00541621 _____ C:\Users\djé\Desktop\BAIL.pdf
2016-02-12 15:21 - 2016-02-12 15:21 - 00000000 ____D C:\Users\djé\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-02-12 09:57 - 2016-02-13 09:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-10 10:47 - 2016-02-10 10:48 - 09397183 _____ C:\Users\djé\Desktop\IGESA hiver ADULTES_2016-web.pdf
2016-02-10 10:43 - 2016-02-10 10:45 - 37344765 _____ C:\Users\djé\Desktop\IGESA ADULTES_2016-web.pdf
2016-02-08 13:36 - 2016-02-08 13:37 - 834029024 _____ C:\Users\djé\Desktop\ralenti pluie.avi
2016-02-08 13:26 - 2016-02-08 13:25 - 21004288 _____ C:\Users\djé\Desktop\SJCM0010.mp4
2016-01-30 21:10 - 2016-01-30 21:10 - 00000000 ____D C:\Users\djé\AppData\Roaming\dvdcss
2016-01-29 17:14 - 2016-01-29 17:14 - 00000000 ____D C:\Users\djé\Documents\Sony PMB
2016-01-29 17:13 - 2016-01-29 17:13 - 00000000 ____D C:\Users\djé\AppData\Roaming\Sony Corporation
2016-01-29 17:09 - 2016-01-30 10:13 - 00000000 ____D C:\ProgramData\Sony Corporation
2016-01-29 17:06 - 2016-01-29 17:44 - 00000558 _____ C:\Users\djé\Documents\untitled_AutoSave.gcs
2016-01-29 16:56 - 2016-01-29 17:06 - 00000000 ____D C:\Users\Public\CineForm
2016-01-29 16:56 - 2016-01-29 17:06 - 00000000 ____D C:\Users\djé\AppData\Roaming\GoPro
2016-01-29 16:56 - 2016-01-29 16:56 - 00000000 ____D C:\Users\djé\AppData\Local\GoPro
2016-01-29 15:41 - 2016-01-29 15:41 - 00000968 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2016-01-29 15:41 - 2016-01-29 15:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-01-28 22:58 - 2016-01-28 22:58 - 00000000 ____D C:\Users\djé\Documents\FlashIntegro
2016-01-28 22:58 - 2016-01-28 22:58 - 00000000 ____D C:\Users\djé\AppData\Roaming\VideoEditor
2016-01-28 22:58 - 2016-01-28 22:58 - 00000000 ____D C:\Users\djé\AppData\Roaming\FlashIntegro
2016-01-28 22:58 - 2015-12-09 15:13 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax
2016-01-28 22:58 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll
2016-01-28 22:58 - 2005-08-01 18:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax
2016-01-28 22:58 - 2004-12-10 09:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2016-01-28 22:58 - 2004-07-03 20:08 - 00139264 _____ C:\Windows\SysWOW64\xvidvfw.dll
2016-01-28 22:58 - 2004-07-03 19:59 - 00524288 _____ C:\Windows\SysWOW64\xvidcore.dll
2016-01-28 22:58 - 2004-02-04 20:11 - 00081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm
2016-01-28 22:58 - 2003-05-22 11:26 - 00638976 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divx.dll
2016-01-28 22:58 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax
2016-01-28 22:58 - 2003-05-21 22:50 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-01-28 22:58 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll
2016-01-28 22:58 - 2003-05-21 22:50 - 00156910 _____ C:\Windows\WMSysPr8.prx
2016-01-28 22:58 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm
2016-01-28 22:58 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm
2016-01-28 22:58 - 2003-05-21 22:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2016-01-28 22:58 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX
2016-01-28 22:58 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll
2016-01-28 22:58 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm
2016-01-28 22:37 - 2016-01-28 22:37 - 00000000 ____D C:\Users\djé\AppData\Local\VideoEditor
2016-01-28 22:37 - 2016-01-28 22:37 - 00000000 ____D C:\Users\djé\AppData\Local\Suite
2016-01-28 22:33 - 2016-01-28 22:33 - 00000000 ____D C:\ProgramData\Movavi Video Suite 15
2016-01-25 18:37 - 2016-01-25 18:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2016
2016-01-25 18:36 - 2016-01-25 18:36 - 00000000 ____D C:\Program Files\SketchUp
2016-01-25 14:04 - 2016-01-25 14:04 - 00000000 ____D C:\Users\djé\AppData\Roaming\SketchUp
2016-01-25 14:03 - 2016-01-25 14:03 - 00000000 ____D C:\ProgramData\SketchUp
2016-01-25 14:03 - 2016-01-25 14:03 - 00000000 ____D C:\ProgramData\Reprise
2016-01-17 10:28 - 2016-01-17 10:28 - 00000000 ____D C:\Users\djé\AppData\Local\Movavi
2016-01-17 10:28 - 2016-01-17 10:28 - 00000000 ____D C:\Users\djé\AppData\Local\converter
2016-01-17 10:28 - 2016-01-17 10:28 - 00000000 ____D C:\Users\djé\.fontconfig
2016-01-17 10:27 - 2016-01-17 10:27 - 00000016 _____ C:\ProgramData\mntemp
2016-01-17 10:27 - 2016-01-17 10:27 - 00000000 ____D C:\ProgramData\Movavi Video Converter 16
2016-01-17 10:27 - 2016-01-17 10:27 - 00000000 ____D C:\ProgramData\Movavi
2016-01-16 22:22 - 2016-01-16 22:22 - 00000000 ____D C:\ProgramData\ATI

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-13 10:08 - 2014-11-13 23:31 - 00000000 ____D C:\Users\djé\AppData\Local\Spotify
2016-02-13 10:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-02-13 09:59 - 2014-09-18 14:59 - 00000913 _____ C:\Windows\Tasks\EPSON WF-7620 Series Update {986FCABA-15AF-442E-9EC8-3A737BADEB6B}.job
2016-02-13 09:59 - 2014-09-18 14:59 - 00000727 _____ C:\Windows\Tasks\EPSON WF-7620 Series Invitation {986FCABA-15AF-442E-9EC8-3A737BADEB6B}.job
2016-02-13 09:49 - 2010-12-23 18:26 - 00000000 ____D C:\Users\djé\AppData\Roaming\Skype
2016-02-13 09:47 - 2009-07-14 05:45 - 00024144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-13 09:47 - 2009-07-14 05:45 - 00024144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-13 09:46 - 2009-07-14 16:24 - 00749212 _____ C:\Windows\system32\perfh00C.dat
2016-02-13 09:46 - 2009-07-14 16:24 - 00150386 _____ C:\Windows\system32\perfc00C.dat
2016-02-13 09:46 - 2009-07-14 06:13 - 01673820 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-13 09:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-02-13 09:41 - 2015-08-08 15:47 - 00000000 ___RD C:\Users\djé\Dropbox
2016-02-13 09:40 - 2014-11-13 23:30 - 00000000 ____D C:\Users\djé\AppData\Roaming\Spotify
2016-02-13 09:40 - 2013-03-08 14:51 - 00000000 ____D C:\Program Files (x86)\Avira
2016-02-13 09:40 - 2012-11-13 16:08 - 00000000 ____D C:\Users\djé\AppData\Roaming\Dropbox
2016-02-13 09:40 - 2010-12-22 21:51 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-13 09:40 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-13 09:39 - 2013-03-08 14:51 - 00000000 ____D C:\ProgramData\Avira
2016-02-13 09:38 - 2013-10-06 13:17 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-13 09:28 - 2015-06-16 07:17 - 00001188 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-789348113-2919787306-2538890384-1000UA.job
2016-02-13 09:28 - 2015-06-16 07:17 - 00001136 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-789348113-2919787306-2538890384-1000Core.job
2016-02-13 09:23 - 2012-09-13 11:35 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-02-13 09:15 - 2013-03-08 14:59 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-02-13 08:21 - 2011-07-03 21:27 - 00000000 ____D C:\Users\djé\AppData\Roaming\vlc
2016-02-13 08:03 - 2012-07-09 08:55 - 00003920 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7C1DEEE6-A6A5-4727-AC7C-B5760586D230}
2016-02-13 02:00 - 2010-12-22 22:33 - 00000000 ____D C:\Users\djé\AppData\Local\Adobe
2016-02-12 22:18 - 2015-11-23 15:42 - 00000000 ____D C:\Users\djé\AppData\Roaming\Twinmotion3-Pro
2016-02-12 22:17 - 2012-08-11 09:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-12 22:04 - 2010-12-23 00:05 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2016-02-12 18:13 - 2010-12-23 14:04 - 00000000 ____D C:\Users\djé\Graphisoft
2016-02-12 12:57 - 2010-12-25 15:25 - 00000000 ____D C:\Users\djé\AppData\Roaming\Abvent_Artlantis3
2016-02-11 23:55 - 2015-11-19 23:52 - 05855151 ____H C:\Users\djé\AppData\Local\IconCache.db.backup
2016-02-11 18:46 - 2014-05-17 15:57 - 00000718 _____ C:\Users\djé\AppData\Local\CastleLinkProps.dat
2016-02-11 15:43 - 2011-01-01 15:55 - 00000000 ____D C:\Users\djé\AppData\Local\CutePDF Writer
2016-02-10 17:23 - 2012-09-13 11:35 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-10 17:23 - 2012-09-13 11:35 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-02-10 17:23 - 2011-11-12 13:53 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-02-09 22:26 - 2011-10-29 19:39 - 00000000 ____D C:\ProgramData\Origin
2016-02-09 21:19 - 2012-08-11 22:01 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-02-09 17:57 - 2010-12-25 20:21 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-02-07 09:05 - 2013-05-12 20:28 - 00000000 ____D C:\ProgramData\Skype
2016-02-02 18:42 - 2013-10-29 08:37 - 00000000 ____D C:\Program Files (x86)\Origin
2016-01-31 23:10 - 2015-10-04 08:18 - 00000021 _____ C:\Windows\SurCode.INI
2016-01-31 23:10 - 2010-12-22 22:34 - 00000000 ____D C:\Users\djé\AppData\Roaming\Adobe
2016-01-31 23:10 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-01-30 10:15 - 2011-11-25 13:21 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-01-30 10:15 - 2010-12-25 21:37 - 00000000 ____D C:\Program Files (x86)\NCH Software
2016-01-30 10:15 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-30 10:13 - 2014-11-16 21:12 - 00000000 ____D C:\Program Files (x86)\Sony
2016-01-29 17:14 - 2010-12-23 02:41 - 00000000 ____D C:\Users\djé
2016-01-29 15:41 - 2013-10-14 16:15 - 00000000 ____D C:\Program Files\CPUID
2016-01-25 10:16 - 2015-11-23 18:00 - 00000000 ____D C:\Users\djé\AppData\Roaming\Twinmotion2016
2016-01-24 10:39 - 2015-07-14 22:58 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2016-01-21 18:40 - 2015-10-05 22:04 - 00000080 _____ C:\Users\djé\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2016-01-17 17:04 - 2011-10-29 21:47 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2016-01-17 15:59 - 2011-10-29 19:39 - 00000000 ____D C:\Users\djé\AppData\Roaming\Origin
2016-01-16 22:24 - 2010-12-22 23:58 - 00000000 ____D C:\Users\djé\AppData\Local\Windows Live

==================== Fichiers à la racine de certains dossiers =======

2011-02-14 00:11 - 2011-02-16 23:20 - 0025354 _____ () C:\Users\djé\AppData\Roaming\33AA.3D6
2011-01-24 11:21 - 2011-01-24 11:21 - 0000132 _____ () C:\Users\djé\AppData\Roaming\Adobe BMP Format CS5 Prefs
2016-02-12 16:56 - 2016-02-12 16:56 - 0000132 _____ () C:\Users\djé\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-07-20 11:13 - 2015-07-20 11:13 - 0000674 _____ () C:\Users\djé\AppData\Roaming\DriveCalculator Preferences
2011-11-25 09:26 - 2011-11-25 09:26 - 0017472 ____T (Un4seen Developments) C:\Users\djé\AppData\Roaming\Microsoft\1eaadjc.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 0018724 ____T () C:\Users\djé\AppData\Roaming\Microsoft\bass.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 1758720 ____T () C:\Users\djé\AppData\Roaming\Microsoft\engine_vx.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 0016448 ____T (Un4seen Developments) C:\Users\djé\AppData\Roaming\Microsoft\kfgresk.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 0014456 ____T () C:\Users\djé\AppData\Roaming\Microsoft\mjcriu.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 0012352 ____T (Un4seen Developments) C:\Users\djé\AppData\Roaming\Microsoft\peaadje.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 0029784 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\djé\AppData\Roaming\Microsoft\qwadjb.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 0017472 ____T (Un4seen Developments) C:\Users\djé\AppData\Roaming\Microsoft\rsaadjd.dll
2011-11-25 09:26 - 2011-11-25 09:26 - 0099896 ____T (Un4seen Developments) C:\Users\djé\AppData\Roaming\Microsoft\~DFK5071d6.tmp
2013-11-15 20:33 - 2013-11-16 16:28 - 0000129 _____ () C:\Users\djé\AppData\Local\92ad357b7fdf07bbf0fa7754b171e373
2012-01-03 23:04 - 2012-01-03 23:20 - 0012012 ___SH () C:\Users\djé\AppData\Local\bsc7o1i0dbmi
2014-05-17 15:57 - 2016-02-11 18:46 - 0000718 _____ () C:\Users\djé\AppData\Local\CastleLinkProps.dat
2010-12-22 22:46 - 2011-02-16 12:02 - 0004608 _____ () C:\Users\djé\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-12-26 00:00 - 2010-12-26 00:00 - 0000112 _____ () C:\Users\djé\AppData\Local\GLF11A6.tmp
2010-12-26 10:23 - 2010-12-26 10:23 - 0000060 _____ () C:\Users\djé\AppData\Local\GLF12DA.tmp
2013-03-01 22:25 - 2013-03-01 22:25 - 0000600 _____ () C:\Users\djé\AppData\Local\PUTTY.RND
2014-01-01 17:44 - 2014-01-01 17:44 - 0005435 _____ () C:\Users\djé\AppData\Local\recently-used.xbel
2012-01-03 23:04 - 2012-01-03 23:20 - 0012012 ___SH () C:\ProgramData\bsc7o1i0dbmi
2010-12-25 15:11 - 2010-12-25 15:12 - 0000301 _____ () C:\ProgramData\hpzinstall.log
2012-12-09 10:43 - 2012-12-13 23:01 - 0000000 _____ () C:\ProgramData\LauncherAccess.dt
2016-01-17 10:27 - 2016-01-17 10:27 - 0000016 _____ () C:\ProgramData\mntemp
2014-09-30 22:01 - 2014-09-30 22:01 - 0002594 _____ () C:\ProgramData\regid.2014-02.com.twinmotion_3600821C-3E65-459B-93C7-244ACC7C789E.swidtag
2012-02-02 10:04 - 2012-02-02 10:04 - 0006868 _____ () C:\ProgramData\xmlC7C4.tmp
2012-02-02 10:04 - 2012-02-02 10:04 - 0013363 _____ () C:\ProgramData\xmlCA45.tmp
2012-02-02 10:04 - 2012-02-02 10:04 - 0000000 _____ () C:\ProgramData\xmlCAA3.tmp
2012-02-02 10:04 - 2012-02-02 10:04 - 0000000 _____ () C:\ProgramData\xmlCAE3.tmp

Certains fichiers dans TEMP:
====================
C:\Users\djé\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-02-08 08:32

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité