cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:07-02-2016
Exécuté par ghknani (administrateur) sur GHK (13-02-2016 13:37:46)
Exécuté depuis C:\Users\ghknani\Downloads
Profils chargés: ghknani (Profils disponibles: ghknani)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcfgex.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573208 2014-04-22] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-05-01] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945656 2015-09-05] (Synaptics Incorporated)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-04-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [506680 2014-06-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2015-04-06] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [179624 2016-01-12] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3873704 2016-02-01] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\...\Run: [C] => C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol [750 2016-02-12] ()
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\...\RunOnce: [Uninstall C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\...\RunOnce: [Uninstall C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\...\RunOnce: [Uninstall C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\...\RunOnce: [Uninstall C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\...\RunOnce: [Uninstall C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ghknani\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\...\Policies\Explorer: []
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE64.dll [119616 2014-05-23] (Amazon Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-08-26]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\Users\ghknani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2015-04-18]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicy-x32: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{e4b682dc-eaee-4226-a056-941e315036f9}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPNOT14/3
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
HKU\S-1-5-21-1089293020-501076261-3189542911-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: [S-1-5-21-1089293020-501076261-3189542911-1001] ATTENTION => URLSearchHook par défaut est absent
URLSearchHook: HKU\S-1-5-21-1089293020-501076261-3189542911-1001 - (Pas de nom) - {0633EE93-D776-472f-A0FF-E1416B8B2E3D} - Pas de fichier
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {52FE628E-9726-4D39-B469-C7B0741FF276} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1089293020-501076261-3189542911-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-1089293020-501076261-3189542911-1001 -> {52FE628E-9726-4D39-B469-C7B0741FF276} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1089293020-501076261-3189542911-1001 -> {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-04-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @unisys.com/npornap -> C:\Program Files (x86)\Orange\CAP Nap Plugin ActiveX [2015-03-01] ()
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR Profile: C:\Users\ghknani\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\ghknani\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-28]
CHR Extension: (YouTube) - C:\Users\ghknani\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-28]
CHR Extension: (Recherche Google) - C:\Users\ghknani\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ghknani\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-02]
CHR Extension: (Gmail) - C:\Users\ghknani\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-07]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2015-04-18] (Adobe Systems) [Fichier non signé]
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [604144 2016-02-01] (AVG Technologies CZ, s.r.o.)
R2 avgfws; C:\Program Files (x86)\AVG\Av\avgfws.exe [1580352 2016-02-01] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3881184 2016-02-01] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1048488 2016-01-12] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [561104 2016-02-01] (AVG Technologies CZ, s.r.o.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [94936 2014-07-04] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-06-03] (Hewlett-Packard Company) [Fichier non signé]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [475960 2014-06-19] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-08] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-08-25] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [Fichier non signé]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-05-01] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-05-01] (NVIDIA Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [Fichier non signé]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 BrYNSvc; "C:\Program Files (x86)\Browny02\BrYNSvc.exe" [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [184240 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [97208 2015-08-29] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [315312 2016-01-05] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-08] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [398256 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [260528 2016-01-22] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 Avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [23472 2016-01-08] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [315840 2015-12-16] (AVG Technologies CZ, s.r.o.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-12] ()
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-05-01] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-04-01] (NVIDIA Corporation)
S3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [476888 2014-03-21] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [4629744 2015-09-25] (Realtek Semiconductor Corporation )
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-06-17] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44216 2015-09-05] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
S1 {915cb94b-b4d8-4c0e-83b4-61409471b1c3}Gw64; system32\drivers\{915cb94b-b4d8-4c0e-83b4-61409471b1c3}Gw64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-13 13:37 - 2016-02-13 13:37 - 00028674 _____ C:\Users\ghknani\Downloads\FRST.txt
2016-02-13 13:35 - 2016-02-13 13:37 - 00000000 ____D C:\FRST
2016-02-13 13:35 - 2016-02-13 13:35 - 02370560 _____ (Farbar) C:\Users\ghknani\Downloads\FRST64.exe
2016-02-13 12:58 - 2016-02-13 12:58 - 00016148 _____ C:\WINDOWS\system32\GHK_ghknani_HistoryPrediction.bin
2016-02-13 12:06 - 2016-02-13 12:06 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\AVG
2016-02-13 12:02 - 2016-02-13 12:02 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\TuneUp Software
2016-02-13 12:02 - 2016-02-13 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-02-13 12:00 - 2016-02-13 12:00 - 00000000 ___HD C:\$AVG
2016-02-13 11:54 - 2016-02-13 13:04 - 00000000 ____D C:\ProgramData\MFAData
2016-02-13 11:54 - 2016-02-13 11:54 - 00000882 _____ C:\Users\Public\Desktop\AVG.lnk
2016-02-13 11:54 - 2016-02-13 11:54 - 00000000 ____D C:\Users\ghknani\AppData\Local\MFAData
2016-02-13 11:54 - 2016-02-13 11:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-02-13 11:52 - 2016-02-13 11:53 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\ghknani\Downloads\sh-cleaner.exe
2016-02-13 11:50 - 2016-02-13 12:00 - 00000000 ____D C:\ProgramData\Avg
2016-02-13 11:50 - 2016-02-13 11:59 - 00000000 ____D C:\Program Files (x86)\AVG
2016-02-13 11:48 - 2016-02-13 12:05 - 00000000 ____D C:\Users\ghknani\AppData\Local\Avg
2016-02-13 11:48 - 2016-02-13 11:53 - 00000000 ____D C:\Users\ghknani\AppData\Local\AvgSetupLog
2016-02-13 11:47 - 2016-02-13 11:48 - 02979280 _____ (AVG Technologies CZ, s.r.o.) C:\Users\ghknani\Downloads\AVG_Protection_Free_1026.exe
2016-02-12 23:20 - 2016-02-13 00:09 - 00000000 ___RD C:\Users\ghknani\Documents\Scanned Documents
2016-02-12 23:20 - 2016-02-12 23:20 - 00000000 ____D C:\Users\ghknani\Documents\Fax
2016-02-12 18:50 - 2016-02-12 18:50 - 00032497 _____ C:\Users\ghknani\Desktop\BASE DE DEBOUESE REEL BIKILE.xlsx
2016-02-12 15:56 - 2016-02-12 15:56 - 00000000 _____ C:\autoexec.bat
2016-02-12 15:47 - 2016-02-12 15:47 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2016-02-12 15:31 - 2016-02-12 15:46 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\ghknani\Downloads\SpyHunter-Installer.exe
2016-02-12 15:09 - 2016-02-12 15:10 - 02118144 _____ C:\Users\ghknani\Downloads\ZHPDiag3.exe
2016-02-12 15:03 - 2016-02-12 15:03 - 00002349 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-12 15:03 - 2016-02-12 15:03 - 00002337 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-12 14:40 - 2016-02-12 14:41 - 01508352 _____ C:\Users\ghknani\Downloads\adwcleaner_5.033.exe
2016-02-12 14:28 - 2016-02-12 14:28 - 00987728 _____ (Google Inc.) C:\Users\ghknani\Downloads\ChromeSetup.exe
2016-02-12 14:13 - 2016-02-12 14:13 - 00000008 __RSH C:\Users\ghknani\ntuser.pol
2016-02-09 17:50 - 2016-02-09 17:50 - 00000000 ____D C:\Users\ghknani\AppData\Local\CEF
2016-02-09 17:49 - 2016-02-09 17:49 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-02-09 17:49 - 2016-02-09 17:49 - 00002131 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-02-09 11:32 - 2016-02-09 11:32 - 00000000 ____D C:\Users\ghknani\AppData\LocalLow\uTorrent
2016-02-04 14:05 - 2016-02-04 14:05 - 00002182 _____ C:\Users\Public\Desktop\AutoCAD 2016 - Français (French).lnk
2016-02-04 13:49 - 2016-02-04 13:49 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\NVIDIA
2016-02-04 13:49 - 2016-02-04 13:49 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-02-04 13:15 - 2016-02-04 13:15 - 00000000 ____D C:\NVIDIA Corporation
2016-02-04 13:15 - 2016-02-04 13:15 - 00000000 ____D C:\NVIDIA
2016-02-04 10:07 - 2016-02-04 10:07 - 00000000 ____D C:\ProgramData\FARO
2016-02-04 10:06 - 2016-02-04 10:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk ReCap 2016
2016-02-04 10:04 - 2016-02-13 13:01 - 00000000 ____D C:\Program Files (x86)\Autodesk
2016-02-04 10:02 - 2016-02-04 10:02 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2016-02-04 10:02 - 2016-02-04 10:02 - 00000000 ____D C:\Users\ghknani\Documents\Inventor Server SDK ACAD 2016
2016-02-04 10:00 - 2016-02-04 10:00 - 00000133 _____ C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2016-02-04 09:48 - 2016-02-13 13:01 - 00000000 ____D C:\Program Files\Autodesk
2016-02-04 09:46 - 2016-02-13 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2016-02-04 09:45 - 2010-06-02 03:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-02-04 09:45 - 2010-06-02 03:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-02-04 09:45 - 2010-06-02 03:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-02-04 09:45 - 2010-06-02 03:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-02-04 09:45 - 2010-06-02 03:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-02-04 09:45 - 2010-06-02 03:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-02-04 09:45 - 2010-05-26 10:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-02-04 09:45 - 2006-03-31 11:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-02-04 09:45 - 2006-03-31 11:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-02-04 09:45 - 2006-03-31 11:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-02-04 09:45 - 2006-03-31 11:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-02-04 09:45 - 2006-02-03 07:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-02-04 09:45 - 2006-02-03 07:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-02-04 09:19 - 2016-02-04 14:15 - 00000000 ____D C:\Autodesk
2016-01-28 10:44 - 2016-02-13 11:37 - 00000000 ____D C:\AdwCleaner
2016-01-28 10:13 - 2016-01-28 10:49 - 00000000 ____D C:\Users\ghknani\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-01-28 10:13 - 2016-01-28 10:13 - 00000000 ____D C:\extensions
2016-01-28 10:12 - 2016-01-28 10:12 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-01-27 16:06 - 2016-01-27 16:06 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\Foxit Software
2016-01-26 12:44 - 2016-02-02 13:46 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\HpUpdate
2016-01-26 12:44 - 2016-01-26 12:44 - 00003740 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP Deskjet 1510 series
2016-01-26 12:44 - 2016-01-26 12:44 - 00000000 ____D C:\ProgramData\Visan
2016-01-26 12:44 - 2016-01-26 12:44 - 00000000 ____D C:\ProgramData\HP Photo Creations
2016-01-26 12:44 - 2016-01-26 12:44 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2016-01-26 12:43 - 2016-01-26 12:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-01-26 12:43 - 2016-01-26 12:44 - 00000000 ____D C:\Program Files (x86)\HP
2016-01-26 12:43 - 2016-01-26 12:43 - 00000000 ____D C:\Program Files\HP
2016-01-26 12:42 - 2016-01-26 12:44 - 00000000 ____D C:\Users\ghknani\AppData\Local\HP
2016-01-26 12:42 - 2016-01-26 12:42 - 00000057 _____ C:\ProgramData\Ament.ini
2016-01-22 15:15 - 2016-01-22 15:15 - 00260528 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx64.sys
2016-01-22 13:30 - 2016-01-22 13:30 - 00000000 ____D C:\ProgramData\Brother
2016-01-22 13:24 - 2016-01-22 13:24 - 00000000 ____D C:\ProgramData\Lenovo
2016-01-21 18:11 - 2016-01-21 18:11 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-01-21 16:11 - 2016-01-21 16:11 - 00662528 ____H C:\Users\ghknani\Desktop\~WRL1849.tmp
2016-01-18 11:28 - 2016-01-18 11:28 - 08873472 _____ C:\Users\ghknani\Desktop\Presentation EGCA V1 débarcadaire.ppt
2016-01-18 11:25 - 2016-01-18 11:28 - 08873472 _____ C:\Users\ghknani\Desktop\Presentation EGCA V1.ppt
2016-01-17 22:00 - 2016-01-17 22:42 - 00804626 _____ C:\Users\ghknani\Desktop\Untitled-1.psd
2016-01-16 10:39 - 2016-01-16 10:40 - 01043008 _____ C:\WINDOWS\Minidump\011616-37234-01.dmp
2016-01-16 10:39 - 2016-01-16 10:39 - 00000000 ____D C:\WINDOWS\Minidump
2016-01-14 11:29 - 2016-02-09 11:30 - 00005282 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for GHK-ghknani GHK
2016-01-14 11:09 - 2016-01-14 11:09 - 00000000 ____D C:\Users\ghknani\Documents\Modèles Office personnalisés
2016-01-14 11:08 - 2016-01-14 11:08 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\Xerox
2016-01-14 10:15 - 2008-03-05 14:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-01-14 10:15 - 2008-03-05 14:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-01-14 10:15 - 2008-03-05 14:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-01-14 10:15 - 2008-03-05 14:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-01-14 10:15 - 2008-02-05 22:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-01-14 10:15 - 2008-02-05 22:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-01-14 10:15 - 2006-03-31 11:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-01-14 10:15 - 2006-03-31 11:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-01-14 09:02 - 2016-01-14 09:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-01-14 09:01 - 2016-01-14 09:01 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-01-14 09:00 - 2016-01-14 09:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-14 09:00 - 2016-01-14 09:00 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-01-14 08:59 - 2016-01-14 09:00 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-01-14 08:59 - 2016-01-14 08:59 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-01-14 08:57 - 2016-01-14 08:57 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-01-14 08:57 - 2016-01-14 08:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-01-14 08:56 - 2016-01-14 08:59 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-14 08:56 - 2016-01-14 08:56 - 00000000 __RHD C:\MSOCache
2016-01-14 08:55 - 2016-01-14 08:53 - 00000967 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-13 13:01 - 2015-04-07 13:31 - 00000000 ____D C:\ProgramData\Autodesk
2016-02-13 12:12 - 2015-07-10 09:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-02-13 12:02 - 2015-07-10 11:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-02-13 12:02 - 2015-07-10 11:02 - 00000000 ____D C:\WINDOWS\INF
2016-02-13 11:52 - 2015-01-23 14:37 - 00000000 ____D C:\Users\ghknani\Documents\Youcam
2016-02-13 11:47 - 2015-08-20 14:22 - 02043746 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-13 11:47 - 2015-07-10 16:24 - 00895928 _____ C:\WINDOWS\system32\perfh00C.dat
2016-02-13 11:47 - 2015-07-10 16:24 - 00187384 _____ C:\WINDOWS\system32\perfc00C.dat
2016-02-13 11:47 - 2015-01-23 14:40 - 00001084 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-13 11:46 - 2015-07-10 11:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-02-13 11:43 - 2015-01-23 14:40 - 00001080 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-13 11:40 - 2015-01-23 14:34 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-13 11:40 - 2015-01-23 14:34 - 00000000 __SHD C:\Users\ghknani\IntelGraphicsProfiles
2016-02-13 11:38 - 2015-07-10 12:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-13 11:38 - 2015-07-10 09:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-02-13 11:26 - 2015-10-30 19:24 - 00000000 ___HD C:\$WINDOWS.~BT
2016-02-13 11:23 - 2015-05-22 15:09 - 00000000 ____D C:\Users\ghknani\Documents\Fichiers Outlook
2016-02-13 11:23 - 2015-01-25 09:53 - 00000000 ____D C:\Users\ghknani\Documents\outlook
2016-02-13 11:11 - 2015-01-23 14:49 - 00000000 ____D C:\Users\ghknani\AppData\Local\Adobe
2016-02-13 10:55 - 2015-01-23 14:35 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F54568BF-8C7D-46E4-A99B-38110C8946B8}
2016-02-12 22:31 - 2015-08-20 14:13 - 00000000 ___DC C:\WINDOWS\Panther
2016-02-12 22:29 - 2015-08-20 15:12 - 00002420 _____ C:\Users\ghknani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-12 22:29 - 2015-08-20 15:12 - 00000000 ___RD C:\Users\ghknani\OneDrive
2016-02-12 18:07 - 2015-07-10 11:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-12 17:17 - 2015-01-23 14:34 - 00000000 ____D C:\Users\ghknani\AppData\Local\Packages
2016-02-12 17:16 - 2016-01-13 09:40 - 00000000 ____D C:\Users\ghknani\Desktop\Guinée
2016-02-12 15:56 - 2015-08-20 14:23 - 00000000 ____D C:\Users\ghknani
2016-02-12 15:03 - 2015-01-23 14:40 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-12 14:51 - 2015-09-03 10:37 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-02-12 14:48 - 2015-04-29 20:25 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\uTorrent
2016-02-12 14:26 - 2015-07-10 11:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-12 14:13 - 2015-07-10 11:04 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-02-12 14:13 - 2013-08-22 15:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-02-11 16:47 - 2015-01-24 06:47 - 00000000 ____D C:\Users\ghknani\AppData\Local\Microsoft Help
2016-02-09 17:50 - 2015-03-01 18:03 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-02-09 17:49 - 2015-01-26 16:29 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-02-09 17:48 - 2015-01-26 16:28 - 00000000 ____D C:\ProgramData\Adobe
2016-02-09 11:23 - 2015-03-07 20:18 - 00000000 ____D C:\Users\ghknani\AppData\Local\ElevatedDiagnostics
2016-02-04 14:30 - 2015-02-11 09:01 - 00000000 ___RD C:\Users\ghknani\Desktop\egca
2016-02-04 14:26 - 2016-01-13 14:58 - 00000000 ____D C:\Users\ghknani\Desktop\films
2016-02-04 14:20 - 2015-01-25 14:30 - 00000000 ___RD C:\Users\ghknani\Desktop\Perso
2016-02-04 14:05 - 2015-07-10 11:04 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-02-04 14:05 - 2015-04-07 13:31 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2016-02-04 13:49 - 2015-04-07 13:31 - 00000000 ____D C:\Users\ghknani\AppData\Roaming\Autodesk
2016-02-04 13:49 - 2015-04-07 13:31 - 00000000 ____D C:\Users\ghknani\AppData\Local\Autodesk
2016-02-04 13:16 - 2015-07-10 12:20 - 00435440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-04 10:09 - 2015-04-07 13:34 - 00000000 ____D C:\ProgramData\FLEXnet
2016-02-04 09:15 - 2015-07-10 11:04 - 00000000 ____D C:\WINDOWS\Help
2016-02-02 14:42 - 2015-01-23 14:40 - 00004142 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-02 14:42 - 2015-01-23 14:40 - 00003910 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-28 11:40 - 2015-01-23 14:35 - 00000000 __SHD C:\Users\ghknani\AppData\LocalLow\EmieUserList
2016-01-28 11:40 - 2015-01-23 14:35 - 00000000 __SHD C:\Users\ghknani\AppData\LocalLow\EmieSiteList
2016-01-28 11:40 - 2015-01-23 14:35 - 00000000 __SHD C:\Users\ghknani\AppData\Local\EmieUserList
2016-01-28 11:40 - 2015-01-23 14:35 - 00000000 __SHD C:\Users\ghknani\AppData\Local\EmieSiteList
2016-01-28 10:49 - 2015-01-23 17:10 - 00000000 ____D C:\Program Files (x86)\Amazon
2016-01-26 12:44 - 2014-08-26 16:07 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-01-26 12:43 - 2015-04-17 09:29 - 00000000 ____D C:\ProgramData\HP
2016-01-22 13:32 - 2014-08-26 16:10 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-21 18:11 - 2014-01-22 07:52 - 00214832 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2016-01-16 10:38 - 2015-01-26 13:34 - 691678760 _____ C:\WINDOWS\MEMORY.DMP
2016-01-14 11:55 - 2015-01-24 08:42 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-14 09:01 - 2015-07-10 16:28 - 00000000 ____D C:\WINDOWS\ShellNew
2016-01-14 09:01 - 2015-07-10 11:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-14 09:00 - 2015-07-10 11:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-01-14 08:58 - 2015-07-10 11:04 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-14 08:58 - 2013-08-22 13:25 - 00000301 _____ C:\WINDOWS\win.ini
2016-01-14 08:50 - 2014-08-26 16:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Office

==================== Fichiers à la racine de certains dossiers =======

2015-04-18 17:32 - 2015-08-02 18:48 - 0007627 _____ () C:\Users\ghknani\AppData\Local\resmon.resmoncfg
2016-01-26 12:42 - 2016-01-26 12:42 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-02-04 10:00 - 2016-02-04 10:00 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

Certains fichiers dans TEMP:
====================
C:\Users\ghknani\AppData\Local\Temp\3DBF.tmp.exe
C:\Users\ghknani\AppData\Local\Temp\8B10.tmp.exe
C:\Users\ghknani\AppData\Local\Temp\992.tmp.exe
C:\Users\ghknani\AppData\Local\Temp\9C95.tmp.exe
C:\Users\ghknani\AppData\Local\Temp\A648.tmp.exe
C:\Users\ghknani\AppData\Local\Temp\ABD2.tmp.exe
C:\Users\ghknani\AppData\Local\Temp\AcDeltree.exe
C:\Users\ghknani\AppData\Local\Temp\COMAP.EXE
C:\Users\ghknani\AppData\Local\Temp\ICReinstall_81AD.tmp.exe
C:\Users\ghknani\AppData\Local\Temp\sqlite3.dll
C:\Users\ghknani\AppData\Local\Temp\_is37FA.exe
C:\Users\ghknani\AppData\Local\Temp\{DD2D11AE-51C3-4744-B7F4-008363E98CDC}-47.0.2526.111_47.0.2526.106_chrome_updater_3stage.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-02-12 15:35

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité