Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Exécuté par serge-PC (administrateur) sur SERGE-PC-PC (27-03-2016 19:31:08)
Exécuté depuis C:\Users\serge-PC\AppData\Local\Microsoft\Windows\INetCache\IE\9UGJB54Z
Profils chargés: serge-PC (Profils disponibles: serge-PC & DefaultAppPool)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\WINDOWS\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\WINDOWS\System32\LogonUI.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(XTRALOG) C:\Program Files (x86)\Calendrier\Cld2000.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(IVT Corporation) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BtTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\WINDOWS\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [beid] => "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup
HKLM-x32\...\Run: [PPort12reminder] => "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini"
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [73216 2016-01-19] ()
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\IVT Corporation\BlueSoleil\BtTray.exe [455928 2013-10-24] (IVT Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [Cld2000.exe] => C:\Program Files (x86)\Calendrier\Cld2000.exe [3030528 2010-12-17] (XTRALOG)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [Google Update] => C:\Users\serge-PC\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\NEROPH~1.SCR [319488 2006-05-18] (Nero AG / Nero Inc.)
Lsa: [Notification Packages] scecli IVTCredentialProvider
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015-01-12]
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\SysWOW64\C2MP\UpdateChecker.exe (Pas de fichier)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e79e26d7-4998-4843-82fe-1f7b932f4712}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3679970412-369499974-3282028444-1001 -> DefaultScope {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MKIE9P
SearchScopes: HKU\S-1-5-21-3679970412-369499974-3282028444-1001 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MKIE9P
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-01-29] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-27] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-01-29] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-27] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-01-29] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-01-29] (Google Inc.)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/BE/Core/Player/2020PlayerAX_IKEA_Win32.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\SysWow64\skype4com.dll [2013-10-24] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-16] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-16] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-22] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3679970412-369499974-3282028444-1001: @tools.google.com/Google Update;version=3 -> C:\Users\serge-PC\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-3679970412-369499974-3282028444-1001: @tools.google.com/Google Update;version=9 -> C:\Users\serge-PC\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-18]
CHR Extension: (Google Drive) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-18]
CHR Extension: (Recherche Google) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-18]
CHR Extension: (Google Docs hors connexion) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-23]
CHR Extension: (Stop AutoRefresh) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcldcllmbokpbniijpnkpgoboadbfphb [2015-09-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-07]
CHR Extension: (Gmail) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-18]
CHR HKLM\...\Chrome\Extension: [cocpghbdppojfnfpjhmlcfkljjjfpika] - C:\Program Files (x86)\IVT Corporation\BlueSoleil\TransSend\Chrome\TS_Chrome.crx [2013-10-24]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 BlueSoleilCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [3479800 2013-10-24] (IVT Corporation)
S4 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Fichier non signé]
S4 BsHelpCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsHelpCS.exe [162552 2013-10-24] (IVT Corporation)
S4 BsMobileCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsMobileCS.exe [273656 2013-10-24] (IVT Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1353720 2015-07-08] (ESET)
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2016-01-19] (Freemake) [Fichier non signé]
S4 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2016-01-19] (Ellora Assets Corp.) [Fichier non signé]
S4 GenieTimelineService; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [662104 2012-09-16] (Genie9)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 ACSSCR; C:\Windows\system32\DRIVERS\a38usb.sys [82480 2015-12-12] (Advanced Card Systems Ltd.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [41184 2013-10-08] (IVT Corporation)
S3 BT; C:\Windows\System32\drivers\btnetdrv.sys [22240 2011-12-21] (IVT Corporation.)
S3 BTCOM; C:\Windows\system32\DRIVERS\btcomport.sys [29576 2011-07-27] (IVT Corporation.)
R3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [43104 2013-10-10] (IVT Corporation.)
R3 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [24032 2013-10-08] (IVT Corporation.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [246000 2015-01-30] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [251632 2015-07-13] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169792 2015-01-30] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [159480 2015-01-30] (ESET)
R3 IvtAudioBusSrv; C:\Windows\System32\Drivers\IvtBtBus.sys [27256 2012-12-24] (IVT Corporation.)
R3 IvtComBusSrv; C:\Windows\System32\Drivers\btcombus.sys [25568 2013-04-26] (IVT Corporation.)
R3 IvtPanBusSrv; C:\Windows\System32\Drivers\btnetBus.sys [31480 2012-12-24] (IVT Corporation.)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633680 2013-10-07] (Paragon)
S1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390352 2013-10-07] (Paragon)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [41184 2013-10-08] (IVT Corporation)
U3 idsvc; pas de ImagePath
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-03-27 19:21 - 2016-03-27 19:21 - 00064173 _____ C:\Users\serge-PC\Desktop\Shortcut.txt
2016-03-27 19:02 - 2016-03-27 19:31 - 00000000 ____D C:\FRST
2016-03-27 18:57 - 2016-03-27 18:57 - 00016148 _____ C:\WINDOWS\system32\SERGE-PC-PC_serge-PC_HistoryPrediction.bin
2016-03-27 10:38 - 2016-03-27 10:38 - 00000000 ____D C:\Users\serge-PC\AppData\Roaming\Sun
2016-03-27 10:38 - 2016-03-27 10:38 - 00000000 ____D C:\Users\serge-PC\.oracle_jre_usage
2016-03-27 08:16 - 2016-03-27 08:16 - 00000000 ____D C:\WINDOWS\LastGood
2016-03-20 16:02 - 2016-03-20 16:02 - 00000000 ____D C:\Users\Default\AppData\Local\Lenovo
2016-03-20 16:02 - 2016-03-20 16:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Lenovo
2016-03-17 20:23 - 2016-02-23 14:16 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-17 20:23 - 2016-02-23 13:55 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-17 20:23 - 2016-02-23 12:55 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-17 20:23 - 2016-02-23 12:48 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-17 20:23 - 2016-02-23 12:38 - 07524864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-17 20:23 - 2016-02-23 12:00 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-03-17 20:22 - 2016-02-23 16:53 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-17 20:22 - 2016-02-23 16:52 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-17 20:22 - 2016-02-23 16:51 - 00633184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-03-17 20:22 - 2016-02-23 16:51 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-17 20:22 - 2016-02-23 16:50 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-17 20:22 - 2016-02-23 16:48 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-17 20:22 - 2016-02-23 16:48 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-17 20:22 - 2016-02-23 16:48 - 01123952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-17 20:22 - 2016-02-23 16:41 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-17 20:22 - 2016-02-23 16:41 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-17 20:22 - 2016-02-23 16:41 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-03-17 20:22 - 2016-02-23 16:40 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-03-17 20:22 - 2016-02-23 16:38 - 00272752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-17 20:22 - 2016-02-23 16:36 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-03-17 20:22 - 2016-02-23 16:11 - 00781984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-17 20:22 - 2016-02-23 16:11 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-17 20:22 - 2016-02-23 16:11 - 00103776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-03-17 20:22 - 2016-02-23 16:08 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-17 20:22 - 2016-02-23 16:07 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-17 20:22 - 2016-02-23 15:39 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-17 20:22 - 2016-02-23 15:30 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-17 20:22 - 2016-02-23 15:25 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-17 20:22 - 2016-02-23 15:23 - 00952968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-17 20:22 - 2016-02-23 15:21 - 00529456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-03-17 20:22 - 2016-02-23 15:21 - 00141152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-03-17 20:22 - 2016-02-23 15:11 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-17 20:22 - 2016-02-23 15:11 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-03-17 20:22 - 2016-02-23 15:11 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-03-17 20:22 - 2016-02-23 15:09 - 00229352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-03-17 20:22 - 2016-02-23 15:06 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-03-17 20:22 - 2016-02-23 14:58 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-03-17 20:22 - 2016-02-23 14:50 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-17 20:22 - 2016-02-23 14:50 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-03-17 20:22 - 2016-02-23 14:42 - 00658536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-17 20:22 - 2016-02-23 14:42 - 00467296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-03-17 20:22 - 2016-02-23 14:42 - 00078176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-03-17 20:22 - 2016-02-23 14:39 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-17 20:22 - 2016-02-23 14:38 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-17 20:22 - 2016-02-23 14:35 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-17 20:22 - 2016-02-23 14:20 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-03-17 20:22 - 2016-02-23 14:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-03-17 20:22 - 2016-02-23 14:15 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-03-17 20:22 - 2016-02-23 14:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-03-17 20:22 - 2016-02-23 13:59 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-03-17 20:22 - 2016-02-23 13:59 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-17 20:22 - 2016-02-23 13:57 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-17 20:22 - 2016-02-23 13:45 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-17 20:22 - 2016-02-23 13:45 - 06788608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-17 20:22 - 2016-02-23 13:42 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-03-17 20:22 - 2016-02-23 13:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-17 20:22 - 2016-02-23 13:38 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-17 20:22 - 2016-02-23 13:37 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-03-17 20:22 - 2016-02-23 13:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-03-17 20:22 - 2016-02-23 13:25 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-17 20:22 - 2016-02-23 13:18 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-17 20:22 - 2016-02-23 13:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-03-17 20:22 - 2016-02-23 13:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-03-17 20:22 - 2016-02-23 13:14 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-17 20:22 - 2016-02-23 13:08 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-17 20:22 - 2016-02-23 13:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-17 20:22 - 2016-02-23 13:03 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-17 20:22 - 2016-02-23 13:03 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-17 20:22 - 2016-02-23 13:02 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-17 20:22 - 2016-02-23 12:55 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-17 20:22 - 2016-02-23 12:51 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-17 20:22 - 2016-02-23 12:51 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-17 20:22 - 2016-02-23 12:48 - 05157376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-17 20:22 - 2016-02-23 12:46 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-17 20:22 - 2016-02-23 12:45 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-17 20:22 - 2016-02-23 12:45 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-03-17 20:22 - 2016-02-23 12:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-17 20:22 - 2016-02-23 12:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-17 20:22 - 2016-02-23 12:44 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-03-17 20:22 - 2016-02-23 12:29 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-03-17 20:22 - 2016-02-23 12:17 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-03-17 20:22 - 2016-02-23 12:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-17 20:22 - 2016-02-23 12:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-17 20:22 - 2016-02-23 12:03 - 01495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-03-17 20:22 - 2016-02-23 12:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-17 20:22 - 2016-02-23 11:58 - 18800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-03-17 11:06 - 2016-03-19 13:46 - 00000528 _____ C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2016-03-17 11:04 - 2016-03-17 11:04 - 00281160 _____ C:\WINDOWS\Minidump\031716-47437-01.dmp
2016-03-08 22:23 - 2016-03-19 13:45 - 00000103 _____ C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2016-03-08 22:23 - 2016-03-08 22:23 - 00000000 ____D C:\Users\serge-PC\Documents\Bluetooth
2016-03-08 20:38 - 2016-03-08 20:38 - 00000000 ____D C:\Users\serge-PC\AppData\LocalLow\Oracle
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809.pdf
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809 (3).pdf
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809 (2).pdf
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809 (1).pdf
2016-03-05 08:47 - 2016-03-05 08:47 - 01518592 _____ C:\Users\serge-PC\Downloads\adwcleaner_5.037.exe
2016-03-04 08:47 - 2016-03-04 08:47 - 00281160 _____ C:\WINDOWS\Minidump\030416-39500-01.dmp
2016-03-03 18:04 - 2016-03-04 08:47 - 00000000 ____D C:\Users\serge-PC\AppData\Local\FSDART
2016-03-03 18:04 - 2016-03-03 18:10 - 00000000 ____D C:\ProgramData\F-Secure
2016-03-03 18:04 - 2016-03-03 18:04 - 00000000 ____D C:\Users\serge-PC\AppData\Local\F-Secure
2016-03-02 07:26 - 2016-03-02 07:26 - 00000000 ____D C:\Users\serge-PC\AppData\Local\bluesoleil
2016-03-01 21:15 - 2016-03-01 21:15 - 00106375 _____ C:\Users\serge-PC\Downloads\VOOBBILL_739101_026320.pdf
2016-03-01 21:03 - 2016-03-01 21:03 - 00000000 _____ C:\WINDOWS\SysWOW64\BSPRINT.INI
2016-03-01 21:03 - 2016-03-01 21:02 - 00000104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emplacements Bluetooth.lnk
2016-03-01 21:02 - 2016-03-01 21:02 - 00002107 _____ C:\Users\Public\Desktop\BlueSoleil Space.lnk
2016-03-01 21:02 - 2016-03-01 21:02 - 00000000 ____D C:\Program Files (x86)\IVT Corporation
2016-03-01 20:55 - 2016-03-01 20:55 - 00000000 ____D C:\Users\serge-PC\Downloads\IVT_BlueSoleil_10.0.464.0
2016-03-01 20:54 - 2016-03-01 20:54 - 118868533 _____ C:\Users\serge-PC\Downloads\IVT_BlueSoleil_10.0.464.0.zip
2016-02-26 19:10 - 2016-02-26 19:10 - 00880496 _____ C:\WINDOWS\Minidump\022616-27203-01.dmp
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-03-27 19:13 - 2015-05-15 18:08 - 00001100 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08f297010a7e0.job
2016-03-27 19:13 - 2015-03-11 21:58 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-27 19:12 - 2015-01-10 22:46 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-27 19:08 - 2015-03-11 21:58 - 00001070 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 14:41 - 2015-07-26 08:01 - 00001114 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3679970412-369499974-3282028444-1001UA.job
2016-03-27 13:25 - 2015-01-11 20:55 - 00004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A24F7BBA-534E-49C8-BBF5-90FC58A55275}
2016-03-27 10:45 - 2015-05-13 21:02 - 00000000 ____D C:\Users\serge-PC\AppData\Roaming\ZHP
2016-03-27 10:42 - 2015-08-12 18:20 - 02162688 _____ C:\Users\serge-PC\ZHPDiag3.exe
2016-03-27 10:42 - 2015-08-06 11:09 - 00000000 ____D C:\Users\serge-PC
2016-03-27 10:40 - 2015-01-25 09:40 - 00000000 ____D C:\ProgramData\Oracle
2016-03-27 10:39 - 2015-01-25 09:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-27 10:39 - 2015-01-25 09:40 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-27 10:38 - 2015-01-25 09:41 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-03-27 10:34 - 2015-12-18 18:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-03-27 10:34 - 2015-01-10 22:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-27 08:16 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-03-27 08:16 - 2015-01-25 09:38 - 00001322 _____ C:\Users\Public\Desktop\eID Viewer.lnk
2016-03-27 08:16 - 2015-01-25 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
2016-03-27 08:16 - 2015-01-25 09:37 - 00000000 ____D C:\Program Files (x86)\Belgium Identity Card
2016-03-27 08:11 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-27 08:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-27 07:55 - 2015-01-10 21:39 - 00000000 ____D C:\Users\serge-PC\Documents\Centre Médical
2016-03-25 07:25 - 2015-08-06 11:07 - 02124452 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-25 07:25 - 2015-07-10 18:24 - 00928344 _____ C:\WINDOWS\system32\perfh00C.dat
2016-03-25 07:25 - 2015-07-10 18:24 - 00197104 _____ C:\WINDOWS\system32\perfc00C.dat
2016-03-23 19:31 - 2015-08-06 19:41 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-23 19:30 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-23 19:30 - 2015-07-10 14:20 - 00362600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-23 19:28 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-03-23 16:41 - 2015-07-26 08:01 - 00001062 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3679970412-369499974-3282028444-1001Core.job
2016-03-22 07:47 - 2015-01-10 21:12 - 00000000 ___SD C:\Users\serge-PC\Documents\Armande
2016-03-21 08:19 - 2015-01-11 07:20 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-21 08:14 - 2015-01-11 07:20 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-21 08:13 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-20 11:09 - 2015-01-12 09:50 - 00000000 ____D C:\Users\serge-PC\AppData\Roaming\vlc
2016-03-19 13:45 - 2013-10-24 11:11 - 00001393 _____ C:\WINDOWS\SysWOW64\bscs.ini
2016-03-19 11:06 - 2015-01-10 21:06 - 00000000 ____D C:\Users\serge-PC\Documents\Suzuki crosscover
2016-03-18 21:10 - 2015-01-10 21:06 - 00000000 ____D C:\Users\serge-PC\Documents\TRAQUES
2016-03-17 11:19 - 2015-11-01 07:18 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-17 11:04 - 2016-01-31 08:36 - 455415202 _____ C:\WINDOWS\MEMORY.DMP
2016-03-17 11:04 - 2015-08-06 19:44 - 00000000 ____D C:\WINDOWS\Minidump
2016-03-08 20:07 - 2015-01-10 23:06 - 00000000 ____D C:\Users\serge-PC\Documents\VOO
2016-03-08 09:10 - 2015-10-06 18:05 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 09:10 - 2015-10-06 18:05 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-07 07:30 - 2015-08-06 20:31 - 00002465 _____ C:\Users\serge-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-03-07 07:30 - 2015-08-06 20:31 - 00000000 ___RD C:\Users\serge-PC\OneDrive
2016-03-06 08:36 - 2015-08-06 19:41 - 00000000 ____D C:\Users\serge-PC\AppData\Local\Packages
2016-03-05 14:36 - 2015-10-09 19:22 - 00001401 _____ C:\Users\serge-PC\Desktop\Kizo-Player.lnk
2016-03-05 14:36 - 2015-10-09 19:19 - 00000000 ____D C:\Program Files (x86)\Kizoa
2016-03-05 08:55 - 2015-02-13 17:42 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-03-05 08:51 - 2015-04-09 20:39 - 00000000 ____D C:\AdwCleaner
2016-03-05 08:44 - 2015-02-13 17:42 - 00001178 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-03-05 08:44 - 2015-02-13 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-03-05 08:44 - 2015-02-13 17:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-03-05 08:37 - 2016-02-12 08:36 - 00000000 ____D C:\Users\serge-PC\AppData\Local\SkypePlugin
2016-03-01 21:03 - 2015-05-13 21:50 - 00000032 _____ C:\WINDOWS\0
2016-02-29 20:30 - 2015-01-10 23:00 - 00000000 ____D C:\Users\serge-PC\Documents\jardinage
2016-02-28 07:31 - 2015-01-10 21:07 - 00000000 ____D C:\Users\serge-PC\Documents\zzzzzàtirer
2016-02-27 08:18 - 2015-01-10 21:05 - 00000000 ____D C:\Users\serge-PC\Documents\SERGE1
==================== Fichiers à la racine de certains dossiers =======
2015-10-25 09:35 - 2015-12-18 18:52 - 0003584 _____ () C:\Users\serge-PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-15 12:36 - 2015-03-15 12:36 - 0000218 _____ () C:\Users\serge-PC\AppData\Local\recently-used.xbel
2015-09-05 13:50 - 2015-09-05 13:50 - 0000086 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
Fichiers à déplacer ou supprimer:
====================
C:\Users\serge-PC\ZHPDiag3.exe
Certains fichiers dans TEMP:
====================
C:\Users\serge-PC\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe
C:\Users\serge-PC\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\serge-PC\AppData\Local\Temp\sqlite3.dll
C:\Users\serge-PC\AppData\Local\Temp\VideoDownloader.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-03-21 08:07
==================== Fin de FRST.txt ============================
Exécuté par serge-PC (administrateur) sur SERGE-PC-PC (27-03-2016 19:31:08)
Exécuté depuis C:\Users\serge-PC\AppData\Local\Microsoft\Windows\INetCache\IE\9UGJB54Z
Profils chargés: serge-PC (Profils disponibles: serge-PC & DefaultAppPool)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\WINDOWS\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\WINDOWS\System32\LogonUI.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(XTRALOG) C:\Program Files (x86)\Calendrier\Cld2000.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(IVT Corporation) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BtTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\WINDOWS\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [beid] => "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup
HKLM-x32\...\Run: [PPort12reminder] => "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini"
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [73216 2016-01-19] ()
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\IVT Corporation\BlueSoleil\BtTray.exe [455928 2013-10-24] (IVT Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [Cld2000.exe] => C:\Program Files (x86)\Calendrier\Cld2000.exe [3030528 2010-12-17] (XTRALOG)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [Google Update] => C:\Users\serge-PC\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\...\RunOnce: [Uninstall C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\serge-PC\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
HKU\S-1-5-21-3679970412-369499974-3282028444-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\NEROPH~1.SCR [319488 2006-05-18] (Nero AG / Nero Inc.)
Lsa: [Notification Packages] scecli IVTCredentialProvider
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015-01-12]
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\SysWOW64\C2MP\UpdateChecker.exe (Pas de fichier)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e79e26d7-4998-4843-82fe-1f7b932f4712}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3679970412-369499974-3282028444-1001 -> DefaultScope {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MKIE9P
SearchScopes: HKU\S-1-5-21-3679970412-369499974-3282028444-1001 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MKIE9P
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-01-29] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-27] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-01-29] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-27] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-01-29] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-01-29] (Google Inc.)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/BE/Core/Player/2020PlayerAX_IKEA_Win32.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\SysWow64\skype4com.dll [2013-10-24] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-16] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-16] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1223183.dll [2015-12-22] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3679970412-369499974-3282028444-1001: @tools.google.com/Google Update;version=3 -> C:\Users\serge-PC\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-3679970412-369499974-3282028444-1001: @tools.google.com/Google Update;version=9 -> C:\Users\serge-PC\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-18]
CHR Extension: (Google Drive) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-18]
CHR Extension: (Recherche Google) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-18]
CHR Extension: (Google Docs hors connexion) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-23]
CHR Extension: (Stop AutoRefresh) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcldcllmbokpbniijpnkpgoboadbfphb [2015-09-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-07]
CHR Extension: (Gmail) - C:\Users\serge-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-18]
CHR HKLM\...\Chrome\Extension: [cocpghbdppojfnfpjhmlcfkljjjfpika] - C:\Program Files (x86)\IVT Corporation\BlueSoleil\TransSend\Chrome\TS_Chrome.crx [2013-10-24]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 BlueSoleilCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [3479800 2013-10-24] (IVT Corporation)
S4 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Fichier non signé]
S4 BsHelpCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsHelpCS.exe [162552 2013-10-24] (IVT Corporation)
S4 BsMobileCS; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BsMobileCS.exe [273656 2013-10-24] (IVT Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1353720 2015-07-08] (ESET)
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2016-01-19] (Freemake) [Fichier non signé]
S4 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2016-01-19] (Ellora Assets Corp.) [Fichier non signé]
S4 GenieTimelineService; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [662104 2012-09-16] (Genie9)
S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-09] (Nuance Communications, Inc.)
S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 ACSSCR; C:\Windows\system32\DRIVERS\a38usb.sys [82480 2015-12-12] (Advanced Card Systems Ltd.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [41184 2013-10-08] (IVT Corporation)
S3 BT; C:\Windows\System32\drivers\btnetdrv.sys [22240 2011-12-21] (IVT Corporation.)
S3 BTCOM; C:\Windows\system32\DRIVERS\btcomport.sys [29576 2011-07-27] (IVT Corporation.)
R3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [43104 2013-10-10] (IVT Corporation.)
R3 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [24032 2013-10-08] (IVT Corporation.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [246000 2015-01-30] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [251632 2015-07-13] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169792 2015-01-30] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [159480 2015-01-30] (ESET)
R3 IvtAudioBusSrv; C:\Windows\System32\Drivers\IvtBtBus.sys [27256 2012-12-24] (IVT Corporation.)
R3 IvtComBusSrv; C:\Windows\System32\Drivers\btcombus.sys [25568 2013-04-26] (IVT Corporation.)
R3 IvtPanBusSrv; C:\Windows\System32\Drivers\btnetBus.sys [31480 2012-12-24] (IVT Corporation.)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation)
R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation)
R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633680 2013-10-07] (Paragon)
S1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390352 2013-10-07] (Paragon)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [41184 2013-10-08] (IVT Corporation)
U3 idsvc; pas de ImagePath
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-03-27 19:21 - 2016-03-27 19:21 - 00064173 _____ C:\Users\serge-PC\Desktop\Shortcut.txt
2016-03-27 19:02 - 2016-03-27 19:31 - 00000000 ____D C:\FRST
2016-03-27 18:57 - 2016-03-27 18:57 - 00016148 _____ C:\WINDOWS\system32\SERGE-PC-PC_serge-PC_HistoryPrediction.bin
2016-03-27 10:38 - 2016-03-27 10:38 - 00000000 ____D C:\Users\serge-PC\AppData\Roaming\Sun
2016-03-27 10:38 - 2016-03-27 10:38 - 00000000 ____D C:\Users\serge-PC\.oracle_jre_usage
2016-03-27 08:16 - 2016-03-27 08:16 - 00000000 ____D C:\WINDOWS\LastGood
2016-03-20 16:02 - 2016-03-20 16:02 - 00000000 ____D C:\Users\Default\AppData\Local\Lenovo
2016-03-20 16:02 - 2016-03-20 16:02 - 00000000 ____D C:\Users\Default User\AppData\Local\Lenovo
2016-03-17 20:23 - 2016-02-23 14:16 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-17 20:23 - 2016-02-23 13:55 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-17 20:23 - 2016-02-23 12:55 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-17 20:23 - 2016-02-23 12:48 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-17 20:23 - 2016-02-23 12:38 - 07524864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-17 20:23 - 2016-02-23 12:00 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-03-17 20:22 - 2016-02-23 16:53 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-17 20:22 - 2016-02-23 16:52 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-17 20:22 - 2016-02-23 16:51 - 00633184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-03-17 20:22 - 2016-02-23 16:51 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-17 20:22 - 2016-02-23 16:50 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-17 20:22 - 2016-02-23 16:48 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-17 20:22 - 2016-02-23 16:48 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-17 20:22 - 2016-02-23 16:48 - 01123952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-17 20:22 - 2016-02-23 16:41 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-17 20:22 - 2016-02-23 16:41 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-17 20:22 - 2016-02-23 16:41 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-03-17 20:22 - 2016-02-23 16:40 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-03-17 20:22 - 2016-02-23 16:38 - 00272752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-17 20:22 - 2016-02-23 16:36 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-03-17 20:22 - 2016-02-23 16:11 - 00781984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-17 20:22 - 2016-02-23 16:11 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-17 20:22 - 2016-02-23 16:11 - 00103776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-03-17 20:22 - 2016-02-23 16:08 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-17 20:22 - 2016-02-23 16:07 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-17 20:22 - 2016-02-23 15:39 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-17 20:22 - 2016-02-23 15:30 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-17 20:22 - 2016-02-23 15:25 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-17 20:22 - 2016-02-23 15:23 - 00952968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-17 20:22 - 2016-02-23 15:21 - 00529456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-03-17 20:22 - 2016-02-23 15:21 - 00141152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-03-17 20:22 - 2016-02-23 15:11 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-17 20:22 - 2016-02-23 15:11 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-03-17 20:22 - 2016-02-23 15:11 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-03-17 20:22 - 2016-02-23 15:09 - 00229352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-03-17 20:22 - 2016-02-23 15:06 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-03-17 20:22 - 2016-02-23 14:58 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-03-17 20:22 - 2016-02-23 14:50 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-17 20:22 - 2016-02-23 14:50 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-03-17 20:22 - 2016-02-23 14:42 - 00658536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-17 20:22 - 2016-02-23 14:42 - 00467296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-03-17 20:22 - 2016-02-23 14:42 - 00078176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-03-17 20:22 - 2016-02-23 14:39 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-17 20:22 - 2016-02-23 14:38 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-17 20:22 - 2016-02-23 14:35 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-17 20:22 - 2016-02-23 14:20 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-03-17 20:22 - 2016-02-23 14:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-03-17 20:22 - 2016-02-23 14:15 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-03-17 20:22 - 2016-02-23 14:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-03-17 20:22 - 2016-02-23 13:59 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-03-17 20:22 - 2016-02-23 13:59 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-17 20:22 - 2016-02-23 13:57 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-17 20:22 - 2016-02-23 13:45 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-17 20:22 - 2016-02-23 13:45 - 06788608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-17 20:22 - 2016-02-23 13:42 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-03-17 20:22 - 2016-02-23 13:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-17 20:22 - 2016-02-23 13:38 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-17 20:22 - 2016-02-23 13:37 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-03-17 20:22 - 2016-02-23 13:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-03-17 20:22 - 2016-02-23 13:25 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-17 20:22 - 2016-02-23 13:18 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-17 20:22 - 2016-02-23 13:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-03-17 20:22 - 2016-02-23 13:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-03-17 20:22 - 2016-02-23 13:14 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-17 20:22 - 2016-02-23 13:08 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-17 20:22 - 2016-02-23 13:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-17 20:22 - 2016-02-23 13:03 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-17 20:22 - 2016-02-23 13:03 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-17 20:22 - 2016-02-23 13:02 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-17 20:22 - 2016-02-23 12:55 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-17 20:22 - 2016-02-23 12:51 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-17 20:22 - 2016-02-23 12:51 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-17 20:22 - 2016-02-23 12:48 - 05157376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-17 20:22 - 2016-02-23 12:46 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-17 20:22 - 2016-02-23 12:45 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-17 20:22 - 2016-02-23 12:45 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-03-17 20:22 - 2016-02-23 12:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-17 20:22 - 2016-02-23 12:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-17 20:22 - 2016-02-23 12:44 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-03-17 20:22 - 2016-02-23 12:29 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-03-17 20:22 - 2016-02-23 12:17 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-03-17 20:22 - 2016-02-23 12:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-17 20:22 - 2016-02-23 12:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-17 20:22 - 2016-02-23 12:03 - 01495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-03-17 20:22 - 2016-02-23 12:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-17 20:22 - 2016-02-23 11:58 - 18800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-03-17 11:06 - 2016-03-19 13:46 - 00000528 _____ C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2016-03-17 11:04 - 2016-03-17 11:04 - 00281160 _____ C:\WINDOWS\Minidump\031716-47437-01.dmp
2016-03-08 22:23 - 2016-03-19 13:45 - 00000103 _____ C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2016-03-08 22:23 - 2016-03-08 22:23 - 00000000 ____D C:\Users\serge-PC\Documents\Bluetooth
2016-03-08 20:38 - 2016-03-08 20:38 - 00000000 ____D C:\Users\serge-PC\AppData\LocalLow\Oracle
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809.pdf
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809 (3).pdf
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809 (2).pdf
2016-03-08 20:05 - 2016-03-08 20:05 - 00083991 _____ C:\Users\serge-PC\Downloads\VOOBBILL_748727_062809 (1).pdf
2016-03-05 08:47 - 2016-03-05 08:47 - 01518592 _____ C:\Users\serge-PC\Downloads\adwcleaner_5.037.exe
2016-03-04 08:47 - 2016-03-04 08:47 - 00281160 _____ C:\WINDOWS\Minidump\030416-39500-01.dmp
2016-03-03 18:04 - 2016-03-04 08:47 - 00000000 ____D C:\Users\serge-PC\AppData\Local\FSDART
2016-03-03 18:04 - 2016-03-03 18:10 - 00000000 ____D C:\ProgramData\F-Secure
2016-03-03 18:04 - 2016-03-03 18:04 - 00000000 ____D C:\Users\serge-PC\AppData\Local\F-Secure
2016-03-02 07:26 - 2016-03-02 07:26 - 00000000 ____D C:\Users\serge-PC\AppData\Local\bluesoleil
2016-03-01 21:15 - 2016-03-01 21:15 - 00106375 _____ C:\Users\serge-PC\Downloads\VOOBBILL_739101_026320.pdf
2016-03-01 21:03 - 2016-03-01 21:03 - 00000000 _____ C:\WINDOWS\SysWOW64\BSPRINT.INI
2016-03-01 21:03 - 2016-03-01 21:02 - 00000104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emplacements Bluetooth.lnk
2016-03-01 21:02 - 2016-03-01 21:02 - 00002107 _____ C:\Users\Public\Desktop\BlueSoleil Space.lnk
2016-03-01 21:02 - 2016-03-01 21:02 - 00000000 ____D C:\Program Files (x86)\IVT Corporation
2016-03-01 20:55 - 2016-03-01 20:55 - 00000000 ____D C:\Users\serge-PC\Downloads\IVT_BlueSoleil_10.0.464.0
2016-03-01 20:54 - 2016-03-01 20:54 - 118868533 _____ C:\Users\serge-PC\Downloads\IVT_BlueSoleil_10.0.464.0.zip
2016-02-26 19:10 - 2016-02-26 19:10 - 00880496 _____ C:\WINDOWS\Minidump\022616-27203-01.dmp
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-03-27 19:13 - 2015-05-15 18:08 - 00001100 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08f297010a7e0.job
2016-03-27 19:13 - 2015-03-11 21:58 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-27 19:12 - 2015-01-10 22:46 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-27 19:08 - 2015-03-11 21:58 - 00001070 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 14:41 - 2015-07-26 08:01 - 00001114 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3679970412-369499974-3282028444-1001UA.job
2016-03-27 13:25 - 2015-01-11 20:55 - 00004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A24F7BBA-534E-49C8-BBF5-90FC58A55275}
2016-03-27 10:45 - 2015-05-13 21:02 - 00000000 ____D C:\Users\serge-PC\AppData\Roaming\ZHP
2016-03-27 10:42 - 2015-08-12 18:20 - 02162688 _____ C:\Users\serge-PC\ZHPDiag3.exe
2016-03-27 10:42 - 2015-08-06 11:09 - 00000000 ____D C:\Users\serge-PC
2016-03-27 10:40 - 2015-01-25 09:40 - 00000000 ____D C:\ProgramData\Oracle
2016-03-27 10:39 - 2015-01-25 09:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-27 10:39 - 2015-01-25 09:40 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-27 10:38 - 2015-01-25 09:41 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-03-27 10:34 - 2015-12-18 18:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-03-27 10:34 - 2015-01-10 22:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-27 08:16 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-03-27 08:16 - 2015-01-25 09:38 - 00001322 _____ C:\Users\Public\Desktop\eID Viewer.lnk
2016-03-27 08:16 - 2015-01-25 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
2016-03-27 08:16 - 2015-01-25 09:37 - 00000000 ____D C:\Program Files (x86)\Belgium Identity Card
2016-03-27 08:11 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-27 08:11 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-27 07:55 - 2015-01-10 21:39 - 00000000 ____D C:\Users\serge-PC\Documents\Centre Médical
2016-03-25 07:25 - 2015-08-06 11:07 - 02124452 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-25 07:25 - 2015-07-10 18:24 - 00928344 _____ C:\WINDOWS\system32\perfh00C.dat
2016-03-25 07:25 - 2015-07-10 18:24 - 00197104 _____ C:\WINDOWS\system32\perfc00C.dat
2016-03-23 19:31 - 2015-08-06 19:41 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-23 19:30 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-23 19:30 - 2015-07-10 14:20 - 00362600 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-23 19:28 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-23 19:26 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-03-23 16:41 - 2015-07-26 08:01 - 00001062 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3679970412-369499974-3282028444-1001Core.job
2016-03-22 07:47 - 2015-01-10 21:12 - 00000000 ___SD C:\Users\serge-PC\Documents\Armande
2016-03-21 08:19 - 2015-01-11 07:20 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-21 08:14 - 2015-01-11 07:20 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-21 08:13 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-20 11:09 - 2015-01-12 09:50 - 00000000 ____D C:\Users\serge-PC\AppData\Roaming\vlc
2016-03-19 13:45 - 2013-10-24 11:11 - 00001393 _____ C:\WINDOWS\SysWOW64\bscs.ini
2016-03-19 11:06 - 2015-01-10 21:06 - 00000000 ____D C:\Users\serge-PC\Documents\Suzuki crosscover
2016-03-18 21:10 - 2015-01-10 21:06 - 00000000 ____D C:\Users\serge-PC\Documents\TRAQUES
2016-03-17 11:19 - 2015-11-01 07:18 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-17 11:04 - 2016-01-31 08:36 - 455415202 _____ C:\WINDOWS\MEMORY.DMP
2016-03-17 11:04 - 2015-08-06 19:44 - 00000000 ____D C:\WINDOWS\Minidump
2016-03-08 20:07 - 2015-01-10 23:06 - 00000000 ____D C:\Users\serge-PC\Documents\VOO
2016-03-08 09:10 - 2015-10-06 18:05 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 09:10 - 2015-10-06 18:05 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-07 07:30 - 2015-08-06 20:31 - 00002465 _____ C:\Users\serge-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-03-07 07:30 - 2015-08-06 20:31 - 00000000 ___RD C:\Users\serge-PC\OneDrive
2016-03-06 08:36 - 2015-08-06 19:41 - 00000000 ____D C:\Users\serge-PC\AppData\Local\Packages
2016-03-05 14:36 - 2015-10-09 19:22 - 00001401 _____ C:\Users\serge-PC\Desktop\Kizo-Player.lnk
2016-03-05 14:36 - 2015-10-09 19:19 - 00000000 ____D C:\Program Files (x86)\Kizoa
2016-03-05 08:55 - 2015-02-13 17:42 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-03-05 08:51 - 2015-04-09 20:39 - 00000000 ____D C:\AdwCleaner
2016-03-05 08:44 - 2015-02-13 17:42 - 00001178 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-03-05 08:44 - 2015-02-13 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-03-05 08:44 - 2015-02-13 17:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-03-05 08:37 - 2016-02-12 08:36 - 00000000 ____D C:\Users\serge-PC\AppData\Local\SkypePlugin
2016-03-01 21:03 - 2015-05-13 21:50 - 00000032 _____ C:\WINDOWS\0
2016-02-29 20:30 - 2015-01-10 23:00 - 00000000 ____D C:\Users\serge-PC\Documents\jardinage
2016-02-28 07:31 - 2015-01-10 21:07 - 00000000 ____D C:\Users\serge-PC\Documents\zzzzzàtirer
2016-02-27 08:18 - 2015-01-10 21:05 - 00000000 ____D C:\Users\serge-PC\Documents\SERGE1
==================== Fichiers à la racine de certains dossiers =======
2015-10-25 09:35 - 2015-12-18 18:52 - 0003584 _____ () C:\Users\serge-PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-15 12:36 - 2015-03-15 12:36 - 0000218 _____ () C:\Users\serge-PC\AppData\Local\recently-used.xbel
2015-09-05 13:50 - 2015-09-05 13:50 - 0000086 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
Fichiers à déplacer ou supprimer:
====================
C:\Users\serge-PC\ZHPDiag3.exe
Certains fichiers dans TEMP:
====================
C:\Users\serge-PC\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe
C:\Users\serge-PC\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\serge-PC\AppData\Local\Temp\sqlite3.dll
C:\Users\serge-PC\AppData\Local\Temp\VideoDownloader.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-03-21 08:07
==================== Fin de FRST.txt ============================