cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Exécuté par fchdh (administrateur) sur JULIEN-PC (09-04-2016 16:15:14)
Exécuté depuis C:\Users\fchdh\Downloads
Profils chargés: fchdh & (Profils disponibles: fchdh)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Tempo Semiconductor Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(ROCCAT GmbH Co., Ltd.) C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitor.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitorW.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2014-03-28] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1712656 2015-09-23] (Tempo Semiconductor Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [RoccatTyon] => C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitor.EXE [557056 2015-01-13] (ROCCAT GmbH)
HKLM-x32\...\Run: [RoccatTyonW] => C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitorW.EXE [557056 2015-01-13] (ROCCAT GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3074128 2016-03-10] (Valve Corporation)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILRE.EXE [297024 2015-01-19] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [45296 2016-04-05] (Overwolf LTD)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [Spotify Web Helper] => C:\Users\fchdh\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524848 2016-03-10] (Spotify Ltd)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [Spotify] => C:\Users\fchdh\AppData\Roaming\Spotify\Spotify.exe [6754928 2016-03-10] (Spotify Ltd)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [GoogleChromeAutoLaunch_C0DE371F93ABB0E3FD4F8666A37DFBA0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874136 2016-03-27] (Google Inc.)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3074128 2016-03-10] (Valve Corporation)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILRE.EXE [297024 2015-01-19] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [45296 2016-04-05] (Overwolf LTD)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\fchdh\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524848 2016-03-10] (Spotify Ltd)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\fchdh\AppData\Roaming\Spotify\Spotify.exe [6754928 2016-03-10] (Spotify Ltd)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_C0DE371F93ABB0E3FD4F8666A37DFBA0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874136 2016-03-27] (Google Inc.)
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Roccat Talk.lnk [2015-12-24]
ShortcutTarget: Roccat Talk.lnk -> C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe (ROCCAT GmbH Co., Ltd.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{0d9127bf-82a3-4ffc-8ec5-7cd83d6017af}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{db5b3bdd-db87-41e0-8a37-472fc4f3d490}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{f5022111-e859-4f2f-9c26-0a207cf563d1}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK14/3
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/3
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK14/3
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/3
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK14/3
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/3
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK14/3
HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/3
SearchScopes: HKLM -> {D2C08187-83BB-4B34-BC48-A1A09539FE43} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D2C08187-83BB-4B34-BC48-A1A09539FE43} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3924806976-3148663661-3551550918-1001 -> {D2C08187-83BB-4B34-BC48-A1A09539FE43} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {D2C08187-83BB-4B34-BC48-A1A09539FE43} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-26] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-26] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-02-25] (HP)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-04-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-02-25] (HP)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\fchdh\AppData\Roaming\Mozilla\Firefox\Profiles\xQpXo7Di.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-27] ()
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-27] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin HKU\S-1-5-21-3924806976-3148663661-3551550918-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\fchdh\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-04-27] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3924806976-3148663661-3551550918-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\fchdh\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-04-27] (Unity Technologies ApS)
FF Extension: Avira Browser Safety - C:\Users\fchdh\AppData\Roaming\Mozilla\Firefox\Profiles\xQpXo7Di.default\Extensions\abs@avira.com [2015-02-21] [non signé]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Profile: C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-21]
CHR Extension: (BetterTTV) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-08-04]
CHR Extension: (Google Docs) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-21]
CHR Extension: (Google Drive) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Turn Off the Lights) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2016-03-26]
CHR Extension: (YouTube) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09]
CHR Extension: (Steam inventory helper) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-03-22]
CHR Extension: (Recherche Google) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (ZeratoR) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddjkdjlmooeobhagmmadigadffijpoio [2015-11-22]
CHR Extension: (Google Sheets) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-21]
CHR Extension: (Protection Web Avira) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-03-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (agar.io server browser) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-06-18]
CHR Extension: (Auto Refresh) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifooldnmmcmlbdennkpdnlnbgbmfalko [2015-09-18]
CHR Extension: (MrElvilia - AlerteLive) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifplimnnelkgnoodgklmebileploekmf [2015-08-04]
CHR Extension: (Bing2Google) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl [2015-08-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Twitch Buffering Fix) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnahmgokconolakhpdmgnmgaokhjcncb [2016-03-30]
CHR Extension: (Vulcun loot autoclicker (free)) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\oaooalmfoddecdjejbmdpbnlemelbdff [2016-01-26]
CHR Extension: (Proxy List - Free Proxies for everyone) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\omihnninlhneakfglooiofgdbpmnhjgn [2016-03-28]
CHR Extension: (Gmail) - C:\Users\fchdh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-09] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1345056 2016-02-12] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26680 2016-02-18] (Hewlett-Packard Company)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [Fichier non signé]
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1286896 2016-04-05] (Overwolf LTD)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [2987520 2014-10-29] (Microsoft Corporation) [Fichier non signé]
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [340480 2014-03-28] (IDT, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [128664 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [137952 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [68936 2016-03-09] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [65808 2015-12-02] (Multi Theft Auto)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-09] (REALiX(tm))
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185600 2016-03-09] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [935168 2015-12-23] (Realtek )
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [407768 2015-12-02] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [4829952 2016-04-09] (Realtek Semiconductor Corporation )
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42600 2016-04-09] (Synaptics Incorporated)
R3 STHDA; C:\Windows\system32\DRIVERS\stwrt64.sys [561672 2015-09-23] (Tempo Semiconductor Inc.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 VHidXInput; C:\Windows\System32\drivers\VXInput.sys [7424 2014-08-13] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 RSUSBSTOR; \SystemRoot\System32\Drivers\RtsUStor.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-04-09 16:11 - 2016-04-09 16:15 - 00028384 _____ C:\Users\fchdh\Downloads\FRST.txt
2016-04-09 16:11 - 2016-04-09 16:15 - 00000000 ____D C:\FRST
2016-04-09 16:10 - 2016-04-09 16:11 - 02374144 _____ (Farbar) C:\Users\fchdh\Downloads\FRST64.exe
2016-04-09 15:58 - 2016-04-09 15:58 - 00001265 _____ C:\Users\fchdh\Desktop\mbam.txt
2016-04-09 15:24 - 2016-04-09 15:26 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-09 15:24 - 2016-04-09 15:24 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-04-09 15:24 - 2016-04-09 15:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-04-09 15:24 - 2016-04-09 15:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-04-09 15:24 - 2016-04-09 15:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-04-09 15:24 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-04-09 15:24 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-04-09 15:24 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-04-09 15:22 - 2016-04-09 15:23 - 22851472 _____ (Malwarebytes ) C:\Users\fchdh\Downloads\mbam-setup-2.2.1.1043.exe
2016-04-09 15:18 - 2016-04-09 15:18 - 03521617 _____ (Nicolas Coolman ) C:\Users\fchdh\Downloads\ZHPFix (1).exe
2016-04-09 15:18 - 2016-04-09 15:18 - 00001929 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-04-09 15:18 - 2016-04-09 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-04-09 15:16 - 2016-04-09 15:16 - 00002053 _____ C:\Users\fchdh\Desktop\ZHPFixReport.txt
2016-04-09 15:14 - 2016-04-09 15:18 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-04-09 15:13 - 2016-04-09 15:13 - 03521617 _____ (Nicolas Coolman ) C:\Users\fchdh\Downloads\ZHPFix.exe
2016-04-09 14:24 - 2016-04-09 14:24 - 00134299 _____ C:\Users\fchdh\Desktop\ZHPDiag.txt
2016-04-09 14:17 - 2016-04-09 15:16 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\ZHP
2016-04-09 14:17 - 2016-04-09 14:18 - 00000872 _____ C:\Users\fchdh\Desktop\ZHPDiag.lnk
2016-04-09 14:17 - 2016-04-09 14:17 - 02179584 _____ C:\Users\fchdh\Downloads\ZHPDiag3.exe
2016-04-09 14:01 - 2016-04-09 14:01 - 00000085 _____ C:\WINDOWS\wininit.ini
2016-04-09 13:58 - 2016-04-09 13:58 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2016-04-09 13:57 - 2016-04-09 14:01 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-04-09 13:56 - 2016-04-09 13:56 - 00002858 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-04-09 13:56 - 2016-04-09 13:56 - 00000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-09 13:56 - 2016-04-09 13:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-04-09 13:56 - 2016-04-09 13:56 - 00000000 ____D C:\Program Files\CCleaner
2016-04-09 13:55 - 2016-04-09 13:55 - 06868672 _____ (Piriform Ltd) C:\Users\fchdh\Downloads\ccsetup516.exe
2016-04-09 09:04 - 2016-04-09 09:04 - 00016148 _____ C:\WINDOWS\system32\JULIEN-PC_fchdh_HistoryPrediction.bin
2016-04-09 09:00 - 2016-04-09 09:00 - 22971960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 21322480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 20863920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 18906048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 17732960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 17368424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 17325400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 14226864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 10547128 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 08657936 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 02613696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 02257344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436451.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436451.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00955328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00885184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00750016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00692160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00678704 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00632152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00601752 _____ C:\WINDOWS\system32\nvmcumd.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00571912 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00448824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00423360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00379296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00377792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00346560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00317656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00175552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00153208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00151184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-04-09 09:00 - 2016-04-09 09:00 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-04-09 08:59 - 2016-04-09 08:59 - 42968120 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-04-09 08:59 - 2016-04-09 08:59 - 37609528 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-04-09 08:59 - 2016-04-09 08:59 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-04-09 08:59 - 2016-04-09 08:59 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-04-09 08:57 - 2016-04-09 09:01 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-04-09 08:54 - 2016-04-09 08:58 - 00000000 ___HD C:\$WINDOWS.~BT
2016-04-02 12:28 - 2015-12-09 05:39 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-03-30 20:49 - 2016-03-30 20:49 - 00006795 _____ C:\Users\fchdh\Downloads\extension_1_0_5.crx
2016-03-26 13:24 - 2016-04-02 10:49 - 00000000 ____D C:\Users\fchdh\Documents\ManiaPlanet
2016-03-26 13:24 - 2016-03-27 11:18 - 00000000 ____D C:\ProgramData\ManiaPlanet
2016-03-26 13:24 - 2016-03-26 13:30 - 00000000 ____D C:\Program Files (x86)\ManiaPlanet
2016-03-26 13:24 - 2016-03-26 13:24 - 00001211 _____ C:\Users\Public\Desktop\TMStadium.lnk
2016-03-26 13:24 - 2016-03-26 13:24 - 00001163 _____ C:\Users\Public\Desktop\ManiaPlanet.lnk
2016-03-26 13:24 - 2016-03-26 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManiaPlanet
2016-03-26 13:16 - 2016-03-26 13:24 - 127307464 _____ (Nadeo ) C:\Users\fchdh\Downloads\Maniaplanet_Setup_TMStadium.exe
2016-03-26 13:12 - 2016-03-26 13:12 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-03-25 19:03 - 2016-03-25 19:03 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\TubeTycoon
2016-03-25 19:02 - 2016-03-25 19:03 - 00000000 ____D C:\Users\fchdh\Desktop\traduction fr
2016-03-25 19:02 - 2016-03-25 19:02 - 00000000 ____D C:\Users\fchdh\Desktop\traduction originale
2016-03-25 18:14 - 2016-03-25 19:05 - 00000000 ____D C:\Users\fchdh\Desktop\TubeTycoon
2016-03-25 18:13 - 2016-03-25 18:13 - 08491361 _____ C:\Users\fchdh\Downloads\TubeTycoon B1.2.3.zip
2016-03-21 18:03 - 2016-04-09 11:03 - 00003244 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForfchdh
2016-03-21 18:03 - 2016-04-09 11:03 - 00000352 _____ C:\WINDOWS\Tasks\HPCeeScheduleForfchdh.job
2016-03-14 19:02 - 2016-03-14 19:02 - 00746400 _____ C:\Users\fchdh\Downloads\icons_ts3.zip
2016-03-13 18:24 - 2016-03-13 18:24 - 01117142 _____ C:\Users\fchdh\Downloads\TS3WCP_V2.2.0.rar
2016-03-10 21:22 - 2016-03-10 21:28 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\Equalify
2016-03-10 21:22 - 2016-03-10 21:22 - 01401856 _____ C:\Users\fchdh\Downloads\EqualifySetup-2.5.3.msi

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-04-09 16:05 - 2015-02-23 13:05 - 00000951 _____ C:\WINDOWS\Tasks\EPSON XP-510 Series Update {80F76296-3968-48D3-89CA-75D116ACE72C}.job
2016-04-09 16:05 - 2015-02-23 13:05 - 00000765 _____ C:\WINDOWS\Tasks\EPSON XP-510 Series Invitation {80F76296-3968-48D3-89CA-75D116ACE72C}.job
2016-04-09 15:26 - 2015-09-10 21:26 - 00000939 _____ C:\WINDOWS\Tasks\EPSON XP-510 Series Update {4A0666C8-C253-4835-88FF-FAEF982E4094}.job
2016-04-09 15:26 - 2015-09-10 21:26 - 00000753 _____ C:\WINDOWS\Tasks\EPSON XP-510 Series Invitation {4A0666C8-C253-4835-88FF-FAEF982E4094}.job
2016-04-09 15:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-04-09 15:20 - 2015-02-21 20:45 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-09 14:25 - 2015-03-03 22:21 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\TS3Client
2016-04-09 10:23 - 2015-03-03 22:23 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-04-09 09:19 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-09 09:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-09 09:18 - 2015-08-07 19:45 - 00000000 ___DC C:\WINDOWS\Panther
2016-04-09 09:11 - 2015-08-07 18:51 - 02040260 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-09 09:11 - 2015-07-10 18:24 - 00893648 _____ C:\WINDOWS\system32\perfh00C.dat
2016-04-09 09:11 - 2015-07-10 18:24 - 00186642 _____ C:\WINDOWS\system32\perfc00C.dat
2016-04-09 09:11 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-04-09 09:08 - 2016-02-09 18:07 - 00000000 ____D C:\Users\fchdh\AppData\Local\CrashDumps
2016-04-09 09:05 - 2015-02-21 20:45 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-09 09:04 - 2015-10-26 15:23 - 00000439 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-04-09 09:04 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-09 09:04 - 2015-07-10 11:05 - 08126464 ___SH C:\WINDOWS\system32\config\BBI
2016-04-09 09:03 - 2016-03-09 13:31 - 00002248 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2016-04-09 09:02 - 2015-08-07 18:49 - 00000000 ____D C:\ProgramData\NVIDIA
2016-04-09 09:02 - 2015-08-07 18:49 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-04-09 09:00 - 2016-02-07 11:57 - 00545632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-04-09 09:00 - 2015-06-17 09:22 - 20061152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-04-09 09:00 - 2015-06-17 09:22 - 17320280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-04-09 09:00 - 2015-06-17 09:22 - 12653504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-04-09 09:00 - 2015-06-17 09:22 - 00037702 _____ C:\WINDOWS\system32\nvinfo.pb
2016-04-09 08:59 - 2015-06-17 09:22 - 03681672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-04-09 08:59 - 2015-06-17 09:22 - 03259176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-04-09 08:59 - 2015-04-21 06:19 - 04829952 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlane.sys
2016-04-09 08:59 - 2014-10-16 01:54 - 01148160 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\Rtlihvs.dll
2016-04-09 08:57 - 2016-02-07 11:09 - 00042600 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel.sys
2016-04-03 11:01 - 2015-02-21 20:44 - 00004166 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2FF9B415-523F-46FC-84E4-FB1E9BEA9C75}
2016-04-02 17:22 - 2015-02-21 20:46 - 00002277 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-02 12:22 - 2015-02-21 20:41 - 00000000 ____D C:\Users\fchdh\AppData\Local\NVIDIA
2016-04-02 12:21 - 2015-08-07 18:51 - 00000000 ____D C:\Users\fchdh
2016-04-02 12:21 - 2015-02-21 20:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-02 12:19 - 2015-07-10 14:20 - 00297160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-02 12:14 - 2015-07-10 18:28 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-02 12:14 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-04-02 12:14 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-04-02 12:14 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-04-02 12:14 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-04-02 11:04 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-04-02 11:04 - 2014-10-16 01:50 - 00000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2016-04-02 11:03 - 2015-09-09 16:15 - 00000000 ____D C:\ProgramData\ProductData
2016-04-02 11:03 - 2015-08-07 18:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-04-02 11:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2016-04-02 11:03 - 2015-05-19 21:04 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\Spotify
2016-04-02 11:03 - 2015-04-23 20:12 - 00000000 ____D C:\Users\fchdh\Documents\AdobePhotoshopCS6Portable
2016-04-02 11:03 - 2015-04-13 16:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-04-02 11:03 - 2015-03-03 22:07 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-04-02 11:03 - 2015-03-03 22:07 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\Skype
2016-04-02 11:03 - 2015-02-21 20:56 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-02 10:52 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\registration
2016-04-02 10:49 - 2015-02-21 20:41 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\Adobe
2016-04-02 10:48 - 2015-08-07 18:49 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-04-02 10:48 - 2015-03-03 22:07 - 00000000 ____D C:\ProgramData\Skype
2016-04-02 10:34 - 2015-05-19 21:06 - 00000000 ____D C:\Users\fchdh\AppData\Local\Spotify
2016-03-30 16:18 - 2015-04-13 16:37 - 00000000 ____D C:\Users\fchdh\AppData\Local\NVIDIA Corporation
2016-03-26 23:14 - 2015-04-23 20:13 - 00000000 ____D C:\Users\fchdh\AppData\Local\Adobe
2016-03-26 21:19 - 2015-06-17 20:20 - 00000132 _____ C:\Users\fchdh\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-03-26 13:18 - 2016-02-11 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-03-26 13:18 - 2015-03-03 22:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-26 13:18 - 2015-03-03 22:31 - 00000000 ____D C:\Program Files\Java
2016-03-26 13:18 - 2015-02-21 23:33 - 00000000 ____D C:\ProgramData\Oracle
2016-03-26 13:16 - 2016-02-11 20:17 - 00000000 ____D C:\Users\fchdh\.oracle_jre_usage
2016-03-26 13:16 - 2015-03-03 22:31 - 00315456 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2016-03-26 13:16 - 2015-03-03 22:31 - 00206912 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2016-03-26 13:16 - 2015-03-03 22:31 - 00206912 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2016-03-26 13:16 - 2015-03-03 22:31 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-03-25 17:26 - 2015-06-12 23:38 - 00000080 _____ C:\Users\fchdh\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2016-03-21 17:55 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-16 21:48 - 2015-04-14 21:12 - 00000000 ____D C:\Program Files\Rockstar Games
2016-03-16 21:48 - 2015-04-14 21:12 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-03-11 19:11 - 2015-02-26 18:33 - 00000000 ____D C:\Users\fchdh\AppData\Roaming\Audacity
2016-03-11 19:03 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports

==================== Fichiers à la racine de certains dossiers =======

2015-07-11 21:13 - 2015-12-11 22:36 - 0000035 _____ () C:\Users\fchdh\AppData\Roaming\.senacraft;bind.txt
2015-06-17 20:20 - 2016-03-26 21:19 - 0000132 _____ () C:\Users\fchdh\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-09-09 16:18 - 2015-09-09 16:18 - 0000052 _____ () C:\Users\fchdh\AppData\Roaming\altisrpfr.txt
2015-09-09 16:18 - 2015-09-09 16:40 - 0000001 _____ () C:\Users\fchdh\AppData\Roaming\altisrpfrJSRS.txt
2015-09-09 16:38 - 2015-09-09 16:38 - 0000048 _____ () C:\Users\fchdh\AppData\Roaming\altisrpfrts.txt
2015-06-17 20:04 - 2015-06-17 20:04 - 0001456 _____ () C:\Users\fchdh\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2015-04-25 19:59 - 2015-04-25 19:59 - 0000000 ___SH () C:\Users\fchdh\AppData\Local\LumaEmu

Certains fichiers dans TEMP:
====================
C:\Users\fchdh\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-04-03 14:54

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité