Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x86) Version:07-02-2016
Exécuté par F Kouyate (administrateur) sur FKOUYATE-PC (14-02-2016 12:45:19)
Exécuté depuis C:\Users\F Kouyate\Downloads
Profils chargés: F Kouyate (Profils disponibles: F Kouyate & DefaultAppPool)
Platform: Microsoft Windows 10 Professionnel Version 1511 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
(IObit) C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Zbshareware Lab) C:\Program Files\USB Disk Security\USBGuard.exe
() C:\Program Files\HTC\ModeSelection\VMMModeSelection.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(BitTorrent Inc.) C:\Users\F Kouyate\AppData\Roaming\uTorrent\uTorrent.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Facebook) C:\Users\F Kouyate\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
(BitTorrent Inc.) C:\Users\F Kouyate\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
(BitTorrent Inc.) C:\Users\F Kouyate\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.0_none_39c65e1db9443c5f\TiWorker.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [ITSecMng] => C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [80840 2011-04-01] (TOSHIBA CORPORATION)
HKLM\...\Run: [TWebCamera] => C:\Program Files\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [611672 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM\...\Run: [USB Security] => C:\Program Files\USB Disk Security\USBGuard.exe [623520 2011-01-31] (Zbshareware Lab)
HKLM\...\Run: [VMM Mode Selection] => C:\Program Files\HTC\ModeSelection\VMMModeSelection.exe [43520 2011-02-14] ()
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCui.exe [994304 2015-10-30] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [Updates] => C:\system32\SystemProtection.exe [141824 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\Run: [uTorrent] => C:\Users\F Kouyate\AppData\Roaming\uTorrent\uTorrent.exe [2065944 2016-02-05] (BitTorrent Inc.)
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\Run: [Facebook Update] => C:\Users\F Kouyate\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2015-11-27] (Facebook Inc.)
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\Run: [Ad-Aware Search Companion] => C:\Program Files\Lavasoft\Web Companion\Application\AASearchCompanion.exe
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50622080 2016-01-19] (Skype Technologies S.A.)
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\MountPoints2: {52964298-5a9a-11e4-84d3-00266c646204} - "E:\.\Setup.exe" AUTORUN=1
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\MountPoints2: {9a84a3ed-744b-11e3-b56e-00266c646204} - "E:\Data\setup.exe" 
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\MountPoints2: {9c1f52bd-2c12-11e5-81b2-00266c646204} - "E:\Autorun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.9B05 PID_0083
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\MountPoints2: {aa446ae8-ca9e-11e5-a2fe-00266c646204} - "E:\.\Setup.exe" AUTORUN=1
HKU\S-1-5-21-1883403804-3169365285-2998731734-1000\...\MountPoints2: {d38b5f6f-b00b-11e5-a2de-00266c646204} - "E:\.\Setup.exe" AUTORUN=1
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Pas de fichier
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2014-04-21] (Tonec Inc.)
Startup: C:\Users\F Kouyate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 2540 series.lnk [2016-01-21]
Startup: C:\Users\F Kouyate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk [2015-12-10]
ShortcutTarget: Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk -> C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\F Kouyate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk [2015-11-25]
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\F Kouyate\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyServer: [S-1-5-21-1883403804-3169365285-2998731734-1000] => ftp=localhost:8080;gopher=localhost:8080;http=localhost:8080;https=localhost:8080;socks=localhost:1080
AutoConfigURL: [S-1-5-21-1883403804-3169365285-2998731734-1000] => ftp=localhost:8080;gopher=localhost:8080;http=localhost:8080;https=localhost:8080;socks=localhost:1080
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{0036699d-e114-47a9-9ace-17a992ca1aaf}: [NameServer] 213.136.96.8 213.136.96.7
Tcpip\..\Interfaces\{7c278c7c-de9a-4855-b876-fc5f787e79cc}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7d221547-1584-403f-a15e-5c09c8ab3318}: [DhcpNameServer] 213.136.96.8 213.136.96.7
Tcpip\..\Interfaces\{ab8f0e93-72c2-4a83-9a82-879e77acc576}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{bcc6d0e0-53a6-4c9d-8d1c-4236f61e6b8a}: [DhcpNameServer] 213.136.96.8 213.136.96.7
Tcpip\..\Interfaces\{c303b47a-9e80-45b5-b7b9-569e3a73728e}: [NameServer] 213.136.96.8 213.136.96.7
Tcpip\..\Interfaces\{ddc27c03-4221-4423-8e45-8b6746a4cc64}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1883403804-3169365285-2998731734-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1883403804-3169365285-2998731734-1000 -> {D72F436A-6922-44BD-B0FB-D8F8510F1ED8} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll [2016-01-20] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-20] (Oracle Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12] (Adblock Plus)

FireFox:
========
FF ProfilePath: C:\Users\F Kouyate\AppData\Roaming\Mozilla\Firefox\Profiles\81rswmab.default-1431869787611
FF DefaultSearchEngine: Default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggbIwFbWVhDGRhCIQ0BTA0UEAAOeFwIAxRCEVMUJQxeUlxFFQYFIk0FA18DB0VXfWFoKB8fHHZMLkpMAFcFZ0BN
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-13] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2011-07-19] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-20] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin HKU\S-1-5-21-1883403804-3169365285-2998731734-1000: facebook.com/fbDesktopPlugin -> C:\Users\F Kouyate\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll [2013-03-07] (Facebook, Inc.)
FF SearchPlugin: C:\Users\F Kouyate\AppData\Roaming\Mozilla\Firefox\Profiles\81rswmab.default-1431869787611\searchplugins\default.xml [2016-02-13]
FF Extension: DownThemAll! - C:\Users\F Kouyate\AppData\Roaming\Mozilla\Firefox\Profiles\81rswmab.default-1431869787611\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2015-12-08]
FF Extension: WOT - C:\Users\F Kouyate\AppData\Roaming\Mozilla\Firefox\Profiles\81rswmab.default-1431869787611\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2016-02-11]
FF Extension: YouTube mp3 - C:\Users\F Kouyate\AppData\Roaming\Mozilla\Firefox\Profiles\81rswmab.default-1431869787611\Extensions\info@youtube-mp3.org.xpi [2015-05-29]
FF Extension: Constant Fun - C:\Users\F Kouyate\AppData\Roaming\Mozilla\Firefox\Profiles\81rswmab.default-1431869787611\Extensions\{4851a002-a3a1-4f04-9004-7a1453e2fc22}.xpi [2016-01-20] [non signé]
FF Extension: Adblock Plus - C:\Users\F Kouyate\AppData\Roaming\Mozilla\Firefox\Profiles\81rswmab.default-1431869787611\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-20]

Chrome: 
=======
CHR Profile: C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-04]
CHR Extension: (Google Docs) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-04]
CHR Extension: (Google Drive) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-02]
CHR Extension: (Adblock Plus) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-09]
CHR Extension: (Recherche Google) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (honnête bloqueur de pubs App (by STANDS)) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcnofaichneijfbkdkghmhjjbepjmble [2016-01-09]
CHR Extension: (Google Sheets) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-09]
CHR Extension: (Ghostery) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2016-01-09]
CHR Extension: (IDM Integration Module) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-01-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-23]
CHR Extension: (Gmail) - C:\Users\F Kouyate\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-04]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-03-03]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
S3 rpcapd; C:\Program Files\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.)
R3 TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [111960 2010-02-05] (TOSHIBA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 arcvad_ds2dhw; C:\WINDOWS\System32\drivers\ArcVad.sys [23040 2008-10-28] (ArcSoft, Inc.)
R3 athr; C:\WINDOWS\System32\drivers\athw10.sys [3313488 2015-09-21] (Qualcomm Atheros Communications, Inc.)
S3 bcm; C:\WINDOWS\System32\drivers\drxvi314.sys [340992 2011-12-30] (Beceem communications pvt ltd.) [Fichier non signé]
S3 bcmbusctr; C:\WINDOWS\System32\drivers\BcmBusCtr.sys [48768 2011-12-30] (Beceem communications pvt ltd.) [Fichier non signé]
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-10-27] (REALiX(tm))
R3 L1C; C:\WINDOWS\System32\drivers\L1C62x86.sys [110280 2015-10-27] (Qualcomm Atheros Co., Ltd.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R1 MoboroboAssDriver; C:\WINDOWS\System32\drivers\MoboroboAssDriver.sys [13984 2015-04-03] ()
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [35088 2010-06-25] (CACE Technologies, Inc.)
S3 orange_zte_cdc_acm; C:\WINDOWS\system32\DRIVERS\orange_zte_cdc_acm.sys [66432 2016-02-04] (ZTE)
S3 orange_zte_cdc_ecm; C:\WINDOWS\System32\drivers\orange_zte_cdc_ecm.sys [32768 2016-02-04] (ZTE)
S3 orange_zte_ecm_enum; C:\WINDOWS\System32\drivers\orange_zte_ecm_enum.sys [44800 2016-02-04] (ZTE)
S3 orange_zte_ecm_enum_filter; C:\WINDOWS\System32\drivers\orange_zte_ecm_enum_filter.sys [44800 2016-02-04] (ZTE)
S3 orange_zte_wcpo; C:\WINDOWS\system32\DRIVERS\orange_zte_wcpo.sys [9600 2016-02-04] (ZTE)
R3 PGEffect; C:\WINDOWS\System32\DRIVERS\pgeffect.sys [24064 2009-06-22] (TOSHIBA Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [293080 2015-10-27] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-12-15] (Synaptics Incorporated)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [23040 2014-11-05] (The OpenVPN Project)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [41576 2015-12-15] (Toshiba Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
S0 aswRvrt; pas de ImagePath
S2 aswStm; \SystemRoot\system32\drivers\aswStm.sys [X]
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; \SystemRoot\System32\drivers\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; \SystemRoot\system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; \SystemRoot\System32\drivers\ew_jucdcecm.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; \SystemRoot\System32\drivers\ew_juextctrl.sys [X]
U3 idsvc; pas de ImagePath
U3 wpcsvc; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-14 12:45 - 2016-02-14 12:49 - 00020434 _____ C:\Users\F Kouyate\Downloads\FRST.txt
2016-02-14 12:44 - 2016-02-14 12:45 - 00000000 ____D C:\FRST
2016-02-14 12:43 - 2016-02-14 12:44 - 01721344 _____ (Farbar) C:\Users\F Kouyate\Downloads\FRST.exe
2016-02-14 12:42 - 2016-02-14 12:42 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-02-14 12:35 - 2016-02-14 12:35 - 00001388 _____ C:\Users\F Kouyate\Desktop\malwarebytes.txt
2016-02-14 12:20 - 2016-02-14 12:20 - 00000000 ____D C:\Users\F Kouyate\AppData\LocalLow\uTorrent
2016-02-13 14:37 - 2016-02-14 12:31 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-02-13 14:37 - 2016-02-13 14:37 - 00001133 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-13 14:37 - 2016-02-13 14:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-02-13 14:37 - 2016-02-13 14:37 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-02-13 14:37 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-02-13 14:37 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-02-13 14:37 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-02-13 09:55 - 2016-02-13 09:55 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\NetworkTiles
2016-02-13 06:48 - 2016-02-13 06:48 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\ActiveSync
2016-02-13 06:46 - 2016-02-13 06:46 - 00000000 ____D C:\ProgramData\Zbshareware Lab
2016-02-13 06:45 - 2016-02-13 06:45 - 00048876 _____ C:\Users\F Kouyate\Desktop\zoek-results.txt
2016-02-13 06:42 - 2016-02-13 06:06 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-02-13 06:06 - 2016-02-13 06:37 - 00000000 ____D C:\zoek_backup
2016-02-13 06:06 - 2016-02-13 06:08 - 01309184 _____ C:\Users\F Kouyate\Downloads\zoek.exe
2016-02-12 23:27 - 2016-02-12 23:27 - 00004931 _____ C:\Users\F Kouyate\Desktop\AdwCleaner[C2].txt
2016-02-12 13:09 - 2016-02-12 13:09 - 00001813 _____ C:\Users\F Kouyate\Desktop\ZHPFixReport.txt
2016-02-12 10:59 - 2016-02-12 10:59 - 00231683 _____ C:\Users\F Kouyate\Desktop\ZHPDiag.txt
2016-02-12 10:49 - 2016-02-12 10:49 - 00000910 _____ C:\Users\F Kouyate\Desktop\ZHPDiag.lnk
2016-02-12 10:46 - 2016-02-12 10:48 - 02118144 _____ C:\Users\F Kouyate\Desktop\ZHPDiag3.exe
2016-02-12 10:27 - 2016-02-12 10:32 - 00150276 _____ C:\WINDOWS\Minidump\021216-41171-01.dmp
2016-02-12 10:17 - 2016-02-12 10:20 - 00150380 _____ C:\WINDOWS\Minidump\021216-37203-01.dmp
2016-02-12 10:16 - 2016-02-12 10:27 - 294691736 _____ C:\WINDOWS\MEMORY.DMP
2016-02-12 00:17 - 2016-02-12 10:16 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-02-11 23:28 - 2016-02-11 23:29 - 00000000 ____D C:\Program Files\ZHPFix
2016-02-11 23:28 - 2016-02-11 23:28 - 00001868 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-02-11 23:28 - 2016-02-11 23:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-02-11 23:25 - 2016-02-11 23:28 - 03521617 _____ (Nicolas Coolman ) C:\Users\F Kouyate\Downloads\ZHPFix.exe
2016-02-11 23:18 - 2016-02-11 23:18 - 00107075 _____ C:\Users\F Kouyate\Desktop\ZHPCleaner.txt
2016-02-11 22:57 - 2016-02-11 23:35 - 00000920 _____ C:\Users\F Kouyate\Desktop\ZHPCleaner.lnk
2016-02-11 22:54 - 2016-02-11 22:57 - 02056704 _____ C:\Users\F Kouyate\Desktop\ZHPCleaner.exe
2016-02-10 10:28 - 2016-02-10 10:29 - 00000000 ____D C:\Users\F Kouyate\Desktop\DEVIS EMT 2016
2016-02-06 11:55 - 2016-02-06 11:55 - 00000000 ____D C:\Users\F Kouyate\Documents\Alternative Flash Player Auto-Updater
2016-02-06 11:54 - 2016-02-06 11:54 - 00123196 _____ C:\Users\F Kouyate\Downloads\alternative-flash-player-auto-updater-1.0.0.2.zip
2016-02-05 19:52 - 2016-02-05 19:52 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\Opera Software
2016-02-05 19:52 - 2016-02-05 19:52 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\Opera Software
2016-02-05 19:49 - 2016-02-09 17:24 - 00000000 ____D C:\Program Files\Opera
2016-02-04 17:16 - 2016-02-04 17:51 - 00011282 _____ C:\Users\F Kouyate\Desktop\DEVIS N 044.2016 EMT.xlsx
2016-02-04 10:49 - 2016-02-05 18:19 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Your Freedom
2016-02-04 10:38 - 2016-02-04 10:36 - 01461992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01009.dll
2016-02-04 10:38 - 2016-02-04 10:36 - 01461992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdfcoinstaller01009.dll
2016-02-04 10:38 - 2016-02-04 10:36 - 00066432 _____ (ZTE) C:\WINDOWS\system32\Drivers\orange_zte_cdc_acm.sys
2016-02-04 10:38 - 2016-02-04 10:36 - 00044800 _____ (ZTE) C:\WINDOWS\system32\Drivers\orange_zte_ecm_enum_filter.sys
2016-02-04 10:38 - 2016-02-04 10:36 - 00044800 _____ (ZTE) C:\WINDOWS\system32\Drivers\orange_zte_ecm_enum.sys
2016-02-04 10:38 - 2016-02-04 10:36 - 00032768 _____ (ZTE) C:\WINDOWS\system32\Drivers\orange_zte_cdc_ecm.sys
2016-02-04 10:38 - 2016-02-04 10:36 - 00013824 _____ (ZTE) C:\WINDOWS\system32\orange_zte_CPOCoinstaller.dll
2016-02-04 10:38 - 2016-02-04 10:36 - 00013824 _____ (ZTE) C:\WINDOWS\system32\Drivers\orange_zte_CPOCoinstaller.dll
2016-02-04 10:38 - 2016-02-04 10:36 - 00009600 _____ (ZTE) C:\WINDOWS\system32\Drivers\orange_zte_wcpo.sys
2016-02-04 09:17 - 2016-02-04 09:17 - 00011619 _____ C:\Users\F Kouyate\Desktop\DEVIS N 043.2016 EMT.xlsx
2016-02-04 09:12 - 2016-02-04 09:13 - 00011208 _____ C:\Users\F Kouyate\Desktop\DEVIS N 042.2016 EMT.xlsx
2016-02-03 15:18 - 2016-02-03 15:48 - 00012210 _____ C:\Users\F Kouyate\Desktop\DEVIS N 041.2016.xlsx
2016-02-03 13:36 - 2016-02-03 13:36 - 00012181 _____ C:\Users\F Kouyate\Desktop\DEVIS N 040.2016.xlsx
2016-01-26 12:55 - 2016-01-27 19:10 - 734373888 _____ C:\Users\F Kouyate\Downloads\[ www.CpasBien.io ] Momentum.2015.TRUEFRENCH.BDRiP.XViD-AViTECH.avi
2016-01-25 15:49 - 2016-01-26 10:46 - 731361280 _____ C:\Users\F Kouyate\Downloads\[ www.CpasBien.io ] Falcon.Rising.2014.FRENCH.BDRip.XviD-MZISYS.avi
2016-01-25 14:56 - 2016-01-25 15:05 - 21203314 _____ C:\Users\F Kouyate\Downloads\subway-surfers1-50-2.apk.part
2016-01-25 13:55 - 2016-01-25 14:15 - 00011639 _____ C:\Users\F Kouyate\Desktop\DEPENSES PASCAL.xlsx
2016-01-22 10:31 - 2016-01-22 10:31 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-22 10:10 - 2016-02-12 23:21 - 00000000 ____D C:\AdwCleaner
2016-01-22 10:05 - 2016-01-22 10:07 - 01505280 _____ C:\Users\F Kouyate\Desktop\adwcleaner_5.030.exe
2016-01-22 09:59 - 2016-01-22 10:19 - 22908888 _____ (Malwarebytes ) C:\Users\F Kouyate\Downloads\mbam-setup-2.2.0.1024.exe
2016-01-22 09:32 - 2016-01-22 09:35 - 00000000 ____D C:\Users\F Kouyate\Downloads\Close.Range.2015.FRENCH.BDRip.XviD-EXTREME
2016-01-21 10:23 - 2016-01-21 10:40 - 91599980 _____ C:\Users\F Kouyate\Documents\Franko -Coller La Petite (Vidéo Officielle) - YouTube (720p).mp4
2016-01-21 10:08 - 2016-01-21 10:22 - 82401502 _____ C:\Users\F Kouyate\Documents\DJ ARAFAT - C'EST MOI (Clip Officiel ) - YouTube (720p).mp4
2016-01-20 18:54 - 2016-01-20 18:54 - 00001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-20 18:54 - 2016-01-20 18:54 - 00001178 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-01-20 18:42 - 2016-01-20 18:43 - 00248784 _____ C:\Users\F Kouyate\Downloads\Firefox Setup Stub 43.0.4.exe
2016-01-20 17:19 - 2016-01-20 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-20 17:19 - 2016-01-20 17:19 - 00000000 ____D C:\Program Files\Common Files\Skype
2016-01-20 16:29 - 2016-01-22 11:50 - 00000000 ____D C:\Users\DefaultAppPool
2016-01-20 16:29 - 2016-01-20 16:29 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Voisinage réseau
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Voisinage d'impression
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Modèles
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Mes documents
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Menu Démarrer
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes vidéos
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes images
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Ma musique
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2016-01-20 16:29 - 2016-01-20 16:29 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historique
2016-01-20 16:29 - 2015-12-10 17:18 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2016-01-20 16:29 - 2015-12-10 17:18 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\AVAST Software
2016-01-20 16:29 - 2015-12-10 17:18 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2016-01-20 10:19 - 2016-01-20 10:22 - 00915952 _____ C:\Users\F Kouyate\Documents\Real Madrid vs Sporting Gijón 5-1 All Goals & Highlights Match 17_01_2016 - YouTube (720p).mp4
2016-01-20 10:04 - 2016-01-20 10:14 - 10097330 _____ (YoutubeDownloaderHD.com ) C:\Users\F Kouyate\Downloads\youtube_downloader_hd_setup.exe
2016-01-20 09:00 - 2016-01-20 09:00 - 00000000 ____D C:\Program Files\Common Files\Java
2016-01-20 08:31 - 2016-01-20 08:31 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\Lavasoft
2016-01-20 08:30 - 2016-02-13 06:34 - 00000000 ____D C:\ProgramData\Lavasoft
2016-01-19 17:20 - 2016-01-20 16:19 - 00000000 ____D C:\Users\F Kouyate\Downloads\Spectre.2015.FRENCH.BDRip.XviD-GLUPS
2016-01-19 16:58 - 2016-01-28 11:15 - 00000000 ____D C:\Users\F Kouyate\Downloads\Fringe.S02.FRENCH.LD.DVDRip.XviD-SSL.&.JMT
2016-01-19 16:55 - 2016-01-19 16:55 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\KingRoot
2016-01-19 15:36 - 2016-01-19 16:48 - 25482568 _____ (KingRoot ) C:\Users\F Kouyate\Downloads\KingRootSetup_v3.1.0.1125_105002.exe
2016-01-19 11:28 - 2016-01-19 12:06 - 00026529 ____H C:\Users\F Kouyate\Desktop\~WRL0003.tmp
2016-01-18 20:21 - 2016-01-18 20:53 - 00011054 _____ C:\Users\F Kouyate\Desktop\RECHARGEMENT DE ROUTE EN SABLE.xlsx
2016-01-18 19:44 - 2016-01-18 20:50 - 00011115 _____ C:\Users\F Kouyate\Desktop\RECHARGEMENT EN TERRE ARGILO-SABLEUSE.xlsx
2016-01-18 19:31 - 2016-01-18 20:56 - 00010494 _____ C:\Users\F Kouyate\Desktop\RECHARGEMENT EN SABLE.xlsx

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-02-14 12:50 - 2014-10-23 12:39 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\uTorrent
2016-02-14 12:50 - 2012-08-05 12:15 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\Skype
2016-02-14 12:20 - 2012-09-02 10:44 - 00001084 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-13 17:16 - 2015-12-10 17:29 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-13 17:15 - 2015-10-30 05:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-02-13 17:15 - 2012-09-02 10:44 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-13 17:12 - 2015-11-25 17:27 - 00001112 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1883403804-3169365285-2998731734-1000UA.job
2016-02-13 17:05 - 2015-06-30 23:59 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-02-13 15:58 - 2015-10-30 05:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-02-13 06:54 - 2015-10-30 05:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-13 06:54 - 2015-10-30 05:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-13 06:44 - 2015-06-01 09:41 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-02-13 06:34 - 2016-01-04 13:18 - 00000000 ____D C:\Program Files\Lavasoft
2016-02-13 06:34 - 2009-07-14 02:37 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2016-02-12 13:09 - 2015-04-29 07:35 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\ZHP
2016-02-12 11:15 - 2015-05-10 01:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com
2016-02-12 10:49 - 2015-04-29 08:34 - 00000210 _____ C:\Users\F
2016-02-12 10:39 - 2012-09-02 10:43 - 00000000 ____D C:\ProgramData\AVAST Software
2016-02-12 10:38 - 2015-12-10 17:07 - 00000000 ____D C:\Users\F Kouyate
2016-02-12 10:27 - 2015-12-11 05:33 - 00000000 ____D C:\WINDOWS\Minidump
2016-02-12 10:16 - 2012-08-05 12:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-02-11 23:21 - 2015-05-22 15:54 - 00002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-11 23:21 - 2012-09-02 11:06 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-11 22:32 - 2015-07-01 15:03 - 00000000 ____D C:\Users\F Kouyate\Desktop\YAYA
2016-02-10 14:12 - 2015-11-25 17:26 - 00001090 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1883403804-3169365285-2998731734-1000Core.job
2016-02-10 10:31 - 2016-01-07 12:55 - 00000000 ____D C:\Users\F Kouyate\Desktop\DEVIS ENGETEC 2016
2016-02-08 13:06 - 2015-10-30 05:47 - 00000000 ____D C:\WINDOWS\INF
2016-02-08 13:02 - 2015-12-27 17:27 - 00000000 ____D C:\Users\F Kouyate\Documents\moborobo
2016-02-08 12:49 - 2016-01-13 09:20 - 00000000 ____D C:\Users\F Kouyate\Desktop\CNI ANELKA
2016-02-08 12:40 - 2015-10-18 11:34 - 00012563 _____ C:\Users\F Kouyate\Desktop\PAIEMENT JUILL.AOUT.SEPT.xlsx
2016-02-06 11:51 - 2015-12-10 19:04 - 00002464 _____ C:\Users\F Kouyate\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-06 11:51 - 2015-12-10 19:04 - 00000000 ___RD C:\Users\F Kouyate\OneDrive
2016-02-06 11:36 - 2014-10-22 17:32 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\Adobe
2016-02-05 18:10 - 2012-10-11 13:29 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\ElevatedDiagnostics
2016-02-05 17:43 - 2015-12-10 17:06 - 02093102 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-05 17:43 - 2015-10-30 15:07 - 00919230 _____ C:\WINDOWS\system32\perfh00C.dat
2016-02-05 17:43 - 2015-10-30 15:07 - 00191754 _____ C:\WINDOWS\system32\perfc00C.dat
2016-02-04 08:12 - 2015-05-21 09:01 - 00000000 ____D C:\Users\F Kouyate\Desktop\ENGETEC
2016-02-02 12:15 - 2012-08-05 12:00 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\vlc
2016-02-02 11:29 - 2015-12-02 20:05 - 11604518 _____ C:\Users\F Kouyate\Desktop\Paiement 15 octobre à fin novem 2015.bmp
2016-01-30 11:58 - 2015-10-30 05:48 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-22 11:52 - 2015-07-17 00:13 - 00000000 ____D C:\WINDOWS\InnoTipLanguage
2016-01-22 10:27 - 2015-10-27 18:23 - 00000858 _____ C:\Users\F Kouyate\Desktop\µTorrent.lnk
2016-01-22 10:20 - 2016-01-04 13:20 - 00000000 ____D C:\searchplugins
2016-01-21 10:44 - 2012-08-05 12:18 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\Microsoft Help
2016-01-21 09:50 - 2015-12-10 17:43 - 00000000 ____D C:\Users\F Kouyate\AppData\Local\Packages
2016-01-20 17:20 - 2012-08-05 12:15 - 00000000 ____D C:\ProgramData\Skype
2016-01-20 17:19 - 2012-08-05 12:15 - 00000000 ___RD C:\Program Files\Skype
2016-01-20 11:48 - 2015-10-27 18:38 - 00000000 ____D C:\Program Files\IObit
2016-01-20 09:17 - 2015-12-27 15:20 - 00000000 ____D C:\ProgramData\Oracle
2016-01-20 09:02 - 2015-12-27 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-20 09:02 - 2015-12-27 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-01-20 09:02 - 2015-12-27 15:18 - 00000000 ____D C:\Program Files\Java
2016-01-20 08:57 - 2015-12-27 15:22 - 00000000 ____D C:\Users\F Kouyate\.oracle_jre_usage
2016-01-20 08:50 - 2015-12-27 15:22 - 00095840 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2016-01-19 13:54 - 2014-06-25 11:03 - 00000000 ____D C:\Program Files\CCleaner
2016-01-19 11:41 - 2015-10-27 18:38 - 00000000 ____D C:\Users\F Kouyate\AppData\Roaming\IObit
2016-01-19 10:12 - 2015-12-27 17:12 - 00000000 ____D C:\Users\F Kouyate\Documents\Mobo
2016-01-19 10:12 - 2015-12-27 17:11 - 00000000 ____D C:\Program Files\Mobo
2016-01-19 09:56 - 2014-10-24 18:44 - 00000000 ____D C:\Users\F Kouyate\Desktop\FILMS
2016-01-19 09:55 - 2014-10-24 18:42 - 00000000 ____D C:\Users\F Kouyate\Desktop\SONS

==================== Fichiers à la racine de certains dossiers =======

2013-11-14 09:56 - 2013-11-14 09:56 - 0017226 _____ () C:\Users\F Kouyate\AppData\Roaming\UserTile.png
2013-06-30 16:32 - 2014-07-23 00:08 - 0037888 _____ () C:\Users\F Kouyate\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-12 10:12 - 2015-05-12 10:12 - 0000057 _____ () C:\ProgramData\Ament.ini
2012-09-18 14:53 - 2012-09-18 14:53 - 0000348 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-12-10 16:59

==================== Fin de FRST.txt ============================