Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016
Exécuté par AlfonceRobichu (administrateur) sur ALFONCE (01-01-2017 11:50:05)
Exécuté depuis C:\Users\AlfonceRobichu\Desktop
Profils chargés: UpdatusUser & AlfonceRobichu (Profils disponibles: UpdatusUser & AlfonceRobichu)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(© 2015 Microsoft Corporation) C:\Users\AlfonceRobichu\AppData\Local\Microsoft\BingSvc\BingSvc.exe
() C:\Users\AlfonceRobichu\AppData\Local\Temp\{1ec2529884dc40fc8eb271ba73ec17cc}\rwj8-6nJOd\publisher.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-14] (Realtek Semiconductor)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe [2758200 2013-10-14] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [155704 2013-10-14] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [155704 2013-10-14] (Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-07-26] (Synaptics Incorporated)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-07-24] (Hewlett-Packard Company)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [BingSvc] => C:\Users\AlfonceRobichu\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [ZMH16ST1EB] => "C:\Program Files\ALR3XPJ7D8\ALR3XPJ7D.exe"
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [BBTPTVGUSJ] => C:\Users\AlfonceRobichu\AppData\Local\Temp\854AEMDQN\854AEMDQN.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [AJO6IUK4BM] => C:\Users\AlfonceRobichu\AppData\Local\Temp\9DRHWCNBP\9DRHWCNBP.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [5O42Z6AOGA] => C:\Users\AlfonceRobichu\AppData\Local\Temp\60D75UZXI\60D75UZXI.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [F6Y63BT4VA] => C:\Users\AlfonceRobichu\AppData\Local\Temp\ILQJXY0GV\ILQJXY0GV.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [J9UGPEWR1Y] => C:\Users\AlfonceRobichu\AppData\Local\Temp\EWELXVPIR\EWELXVPIR.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [2F6K2JSZQR] => C:\Users\AlfonceRobichu\AppData\Local\Temp\199VG1V64\199VG1V64.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [7YTPIBTQ33] => C:\Users\AlfonceRobichu\AppData\Local\Temp\06D7OWMGB\06D7OWMGB.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [IPTS7JQ7MP] => C:\Users\AlfonceRobichu\AppData\Local\Temp\EY715VP8D\EY715VP8D.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [3HX1HUBLDB] => C:\Users\AlfonceRobichu\AppData\Local\Temp\O4O4V5MO2\O4O4V5MO2.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [VXZDD2Q2M1] => C:\Users\AlfonceRobichu\AppData\Local\Temp\H2V9JLM80\H2V9JLM80.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [JRTBU7FHSV] => C:\Users\AlfonceRobichu\AppData\Local\Temp\T7JSSP5M7\T7JSSP5M7.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [ACLY52SEZY] => C:\Users\AlfonceRobichu\AppData\Local\Temp\4J8O87DOB\4J8O87DOB.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [3FCHHQ2G49] => C:\Users\AlfonceRobichu\AppData\Local\Temp\WNX0NCU6C\WNX0NCU6C.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [RGVERELBXH] => C:\Users\AlfonceRobichu\AppData\Local\Temp\SS4IX29KZ\SS4IX29KZ.exe [369664 2016-12-29] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [Publisher] => C:\Users\AlfonceRobichu\AppData\Local\Temp\{1ec2529884dc40fc8eb271ba73ec17cc}\rwj8-6nJOd\publisher.exe [1229312 2016-12-30] () <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [GJNB8T3AUO] => C:\Users\AlfonceRobichu\AppData\Local\Temp\D707812C2\D707812C2.exe [369664 2016-12-30] (vr1g5vr54) <===== ATTENTION
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\...\MountPoints2: {25d0b1c1-82f8-11e6-826a-a0d3c160faa3} - "G:\iStudio.exe"
ShellExecuteHooks: Pas de nom - {A5BE33DA-C67B-11E6-BAFA-64006A5CFC23} - C:\Users\AlfonceRobichu\AppData\Roaming\Stabese\Okagelegech.dll -> Pas de fichier
ShellExecuteHooks: Pas de nom - {9C8A04D0-CAA5-11E6-96ED-64006A5CFC23} - C:\Users\AlfonceRobichu\AppData\Roaming\Mality\Readtionprpition.dll -> Pas de fichier
GroupPolicy: Restriction <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{2A798112-1B61-4EBF-9498-AA5298DA72EA}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ACA9911A-150A-4344-AE61-CEE53972BEE2}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
HKU\S-1-5-21-3980270583-1839792727-2310796736-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
URLSearchHook: [S-1-5-21-3980270583-1839792727-2310796736-1001] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {32877891-DE41-430C-AAD0-25FE318D21E5} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKLM-x32 -> {32877891-DE41-430C-AAD0-25FE318D21E5} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-3980270583-1839792727-2310796736-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3980270583-1839792727-2310796736-1002 -> {32877891-DE41-430C-AAD0-25FE318D21E5} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3980270583-1839792727-2310796736-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-11-11] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-11] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-08-23] (HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-08-23] (HP Inc.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: 8fbgaw20.default
FF ProfilePath: C:\Users\AlfonceRobichu\AppData\Roaming\Firefox\Firefox\Profiles\8fbgaw20.default [2016-12-30]
FF Extension: (English (US) Language Pack) - C:\Users\AlfonceRobichu\AppData\Roaming\Firefox\Firefox\Profiles\8fbgaw20.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2016-12-30] [non signé]
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-11] (Oracle Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-31] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default [2017-01-01]
CHR Extension: (Google Slides) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-31]
CHR Extension: (Google Docs) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-31]
CHR Extension: (Google Drive) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-31]
CHR Extension: (YouTube) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-31]
CHR Extension: (Google Sheets) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-31]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-31]
CHR Extension: (Gmail) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-31]
CHR Extension: (Chrome Media Router) - C:\Users\AlfonceRobichu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-31]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Cachedrv server; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [109568 2013-10-14] () [Fichier non signé]
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-22] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 MSLN; C:\ProgramData\Microsoft\Phone Tools\CoreCon\12.0\1028\NonSDKAddonLangVer.dll [440832 2016-12-30] () [Fichier non signé]
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [87552 2013-10-14] (Softex Inc.) [Fichier non signé]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-19] (Realtek Semiconductor)
R2 Ttertainberm; C:\Program Files (x86)\Kefertion\clhMapper.dll [181248 2016-12-22] () [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-10-07] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [429272 2013-08-22] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2945240 2013-09-12] (Realtek Semiconductor Corporation )
R3 RTWlanE; C:\Windows\SysWOW64\DRIVERS\rtwlane.sys [2945240 2013-09-12] (Realtek Semiconductor Corporation )
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [28400 2016-12-18] () [Fichier non signé]
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2013-07-26] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-07-26] (Synaptics Incorporated)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
S3 dtldrvhelp; \??\c:\program files\safiplayer\dtldrvhelp64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-01 11:50 - 2017-01-01 11:50 - 00021082 _____ C:\Users\AlfonceRobichu\Desktop\FRST.txt
2017-01-01 11:47 - 2017-01-01 11:47 - 02420736 _____ (Farbar) C:\Users\AlfonceRobichu\Desktop\FRST64.exe
2017-01-01 01:10 - 2017-01-01 01:11 - 34486727 _____ (The Code::Blocks Team) C:\Users\AlfonceRobichu\Downloads\codeblocks-16.01-setup.exe
2017-01-01 00:49 - 2017-01-01 00:49 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Solvusoft
2017-01-01 00:46 - 2017-01-01 00:46 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\IsolatedStorage
2017-01-01 00:46 - 2017-01-01 00:46 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\FileViewPro
2017-01-01 00:46 - 2017-01-01 00:46 - 00000000 ____D C:\ProgramData\IsolatedStorage
2017-01-01 00:45 - 2017-01-01 00:53 - 00000000 ____D C:\ProgramData\~0
2017-01-01 00:45 - 2017-01-01 00:51 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\IIIQF
2017-01-01 00:45 - 2017-01-01 00:49 - 00000000 ____D C:\ProgramData\Solvusoft
2017-01-01 00:45 - 2017-01-01 00:45 - 00000000 ____D C:\Spacekace
2016-12-31 23:53 - 2017-01-01 11:50 - 00000000 ____D C:\FRST
2016-12-31 23:52 - 2016-12-31 23:52 - 00000939 _____ C:\Users\AlfonceRobichu\Downloads\Vidéos - Raccourci.lnk
2016-12-31 23:39 - 2016-12-31 23:39 - 00002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-31 23:39 - 2016-12-31 23:39 - 00002237 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-31 23:38 - 2016-12-31 23:43 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-31 23:38 - 2016-12-31 23:43 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-31 23:34 - 2016-12-31 23:34 - 00000116 _____ C:\Windows\setupact.log
2016-12-31 23:34 - 2016-12-31 23:34 - 00000000 _____ C:\Windows\setuperr.log
2016-12-31 23:33 - 2016-12-31 23:33 - 00000962 _____ C:\Windows\PFRO.log
2016-12-31 23:14 - 2016-12-31 23:15 - 03977168 _____ C:\Users\AlfonceRobichu\Downloads\adwcleaner_6.041.exe
2016-12-31 16:58 - 2016-12-31 16:58 - 00000000 ____D C:\Users\AlfonceRobichu\Downloads\M64ROMExtender1.3b
2016-12-31 16:53 - 2016-12-31 16:53 - 06268863 _____ C:\Users\AlfonceRobichu\Downloads\Super_Mario_64_(U)_[!].zip
2016-12-31 16:53 - 2002-03-02 14:38 - 00000000 ____D C:\Users\AlfonceRobichu\Downloads\pdx-pom3
2016-12-31 16:51 - 2016-12-31 16:51 - 01637255 _____ C:\Users\AlfonceRobichu\Downloads\Super Luigi 64 v1.0.ppf
2016-12-31 15:22 - 2016-12-31 18:17 - 00000000 ____D C:\Program Files (x86)\Project64 2.3
2016-12-31 14:20 - 2016-12-31 14:20 - 00002806 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-12-31 14:20 - 2016-12-31 14:20 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-12-31 14:20 - 2016-12-31 14:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-31 14:20 - 2016-12-31 14:20 - 00000000 ____D C:\Program Files\CCleaner
2016-12-31 13:47 - 2017-01-01 11:49 - 00090514 _____ C:\Windows\system32\debug.log
2016-12-30 22:52 - 2017-01-01 01:58 - 00000147 _____ C:\Users\AlfonceRobichu\Desktop\bonjour.c
2016-12-30 18:45 - 2016-12-31 23:32 - 00000000 ____D C:\AdwCleaner
2016-12-30 18:11 - 2016-12-31 23:32 - 00285700 ____H C:\Users\AlfonceRobichu\AppData\Local\IconCache.db
2016-12-30 17:53 - 2016-12-31 13:10 - 00000000 ____D C:\Program Files (x86)\Iption
2016-12-30 17:53 - 2016-12-30 18:54 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Mality
2016-12-30 17:53 - 2016-12-30 17:54 - 00000000 ____D C:\Program Files (x86)\Curoydrerguse Log
2016-12-30 17:53 - 2016-12-30 17:53 - 00005988 _____ C:\Windows\System32\Tasks\Atuvase Manager
2016-12-30 17:53 - 2016-12-30 17:53 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Ckabegewecoty
2016-12-30 17:17 - 2016-12-30 17:17 - 00000000 ____D C:\Windows\system32\tica
2016-12-30 17:17 - 2016-12-30 17:17 - 00000000 _____ C:\temp.dat
2016-12-30 16:43 - 2016-12-30 19:38 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\LocalLow\Company
2016-12-30 16:43 - 2016-12-30 19:37 - 00000000 ____D C:\Program Files\Jidd
2016-12-30 16:43 - 2016-12-30 19:36 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Xeeedxi
2016-12-30 16:43 - 2016-12-30 16:43 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Tempfolder
2016-12-30 16:34 - 2016-12-30 17:00 - 00000000 ____D C:\Users\AlfonceRobichu\Doctor Web
2016-12-30 16:31 - 2017-01-01 01:09 - 00000040 _____ C:\Program Files (x86)\settings.dat
2016-12-30 16:31 - 2016-12-30 16:31 - 00000000 ____D C:\Program Files (x86)\reports
2016-12-30 16:31 - 2016-12-30 16:31 - 00000000 _____ C:\Program Files (x86)\metadata
2016-12-30 16:17 - 2016-12-30 16:17 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Yeahfire
2016-12-30 16:16 - 2016-12-30 16:18 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\LocalLow\Mozilla
2016-12-30 16:16 - 2016-12-30 16:16 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Firefox
2016-12-30 16:16 - 2016-12-30 16:16 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Firefox
2016-12-30 16:14 - 2016-12-31 23:34 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2016-12-30 16:14 - 2016-12-30 16:26 - 00000000 _____ C:\Users\Public\Documents\report.dat
2016-12-29 16:28 - 2016-12-29 19:35 - 00000000 ____D C:\Program Files (x86)\Fugers
2016-12-23 12:03 - 2016-12-23 12:03 - 01072920 _____ (SafeBytes Software Inc.) C:\ProgramData\InstallDriverAssist41.exe
2016-12-23 12:03 - 2016-12-23 12:03 - 00003246 _____ C:\Windows\System32\Tasks\InstallDriverAssist
2016-12-23 12:03 - 2016-12-23 11:59 - 07537048 _____ (PC Cleaners.) C:\ProgramData\appclunst.exe
2016-12-23 11:36 - 2016-12-31 10:41 - 00000000 ____D C:\Program Files (x86)\hl7ipmta
2016-12-22 18:34 - 2016-12-30 16:16 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Mozilla
2016-12-22 18:33 - 2016-12-30 18:36 - 00000000 ____D C:\Windows\system32\SSL
2016-12-22 18:32 - 2016-12-30 20:00 - 00012863 _____ C:\Windows\system32\tmplog.log
2016-12-22 18:32 - 2016-12-30 19:35 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Ateilytherjersh
2016-12-22 18:32 - 2016-12-30 18:20 - 00000849 _____ C:\Windows\SysWOW64\tmplog2.log
2016-12-22 18:32 - 2016-12-30 17:55 - 00000000 _____ C:\TOSTACK
2016-12-22 18:32 - 2016-12-22 18:33 - 07316480 _____ C:\Users\AlfonceRobichu\AppData\Roaming\agent.dat
2016-12-22 18:32 - 2016-12-22 18:33 - 00018432 _____ C:\Users\AlfonceRobichu\AppData\Roaming\Main.dat
2016-12-22 18:32 - 2016-12-22 18:32 - 01625824 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\libeay32.dll
2016-12-22 18:32 - 2016-12-22 18:32 - 01177088 _____ C:\Users\AlfonceRobichu\AppData\Roaming\Solofax.exe
2016-12-22 18:32 - 2016-12-22 18:32 - 01177088 _____ C:\Users\AlfonceRobichu\AppData\Roaming\DuoRandom.exe
2016-12-22 18:32 - 2016-12-22 18:32 - 00608117 _____ C:\Windows\libcurl-4.dll
2016-12-22 18:32 - 2016-12-22 18:32 - 00136826 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\Jaybam.bin
2016-12-22 18:32 - 2016-12-22 18:32 - 00000000 ____D C:\Windows\SysWOW64\sstmp
2016-12-22 18:32 - 2016-12-22 18:32 - 00000000 ____D C:\Windows\system32\sstmp
2016-12-22 18:32 - 2016-12-22 18:32 - 00000000 ____D C:\Windows\Azart
2016-12-22 18:32 - 2016-12-22 18:32 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Guliiedtacertain
2016-12-22 18:32 - 2016-12-22 18:31 - 01177088 _____ C:\Users\AlfonceRobichu\AppData\Roaming\Softdax.exe
2016-12-22 18:31 - 2016-12-22 18:33 - 00140288 _____ C:\Users\AlfonceRobichu\AppData\Roaming\Installer.dat
2016-12-22 18:31 - 2016-12-22 18:31 - 00054784 _____ (MingW-W64 Project. All rights reserved.) C:\Windows\libwinpthread-1.dll
2016-12-22 18:28 - 2016-12-22 18:32 - 00000000 ____D C:\Program Files (x86)\Thuwerpyliase Community
2016-12-22 18:28 - 2016-12-22 18:28 - 00006088 _____ C:\Windows\System32\Tasks\Gredoing Launcher
2016-12-22 18:27 - 2016-12-30 17:53 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Profiles
2016-12-22 18:27 - 2016-12-23 11:53 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Stabese
2016-12-22 18:27 - 2016-12-22 18:28 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Thilasp
2016-12-22 18:27 - 2016-12-22 18:27 - 00000000 ____D C:\Program Files (x86)\Kefertion
2016-12-21 12:44 - 2016-12-21 12:44 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\LibreOffice
2016-12-21 12:40 - 2016-12-21 12:40 - 00001548 _____ C:\Users\Public\Desktop\LibreOffice 5.1.lnk
2016-12-21 12:40 - 2016-12-21 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1
2016-12-21 12:40 - 2016-12-21 12:40 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2016-12-21 12:27 - 2016-12-21 12:27 - 05363504 _____ C:\Users\AlfonceRobichu\Downloads\Amazing Volcano Explosion - Vesuvio.mp4
2016-12-20 14:35 - 2016-12-20 14:35 - 00000000 ____D C:\Program Files (x86)\directx
2016-12-19 13:23 - 2016-12-19 13:23 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\WinRAR
2016-12-19 13:22 - 2016-12-19 13:22 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-19 13:22 - 2016-12-19 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-12-19 13:22 - 2016-12-19 13:22 - 00000000 ____D C:\Program Files\WinRAR
2016-12-18 18:14 - 2016-12-20 14:35 - 00000000 ____D C:\Windows\Ubisoft
2016-12-18 17:51 - 2016-12-18 17:52 - 00028400 _____ C:\Windows\SysWOW64\Drivers\SECDRV.SYS
2016-12-18 17:51 - 2016-12-18 17:51 - 00003278 _____ C:\Windows\System32\Tasks\{7FA7D286-EBF2-49E2-8EA1-3F778D46DC8E}
2016-12-18 17:49 - 2016-12-20 13:56 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2016-12-18 17:45 - 2016-12-31 14:24 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\DAEMON Tools Lite
2016-12-18 17:45 - 2016-12-18 17:48 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-12-16 16:24 - 2016-12-16 16:24 - 01718968 _____ C:\Windows\a16fe6ec77d2952004c973fa70cb6101.exe
2016-12-14 14:24 - 2016-11-30 07:34 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2016-12-14 14:24 - 2016-11-30 07:27 - 00030400 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2016-12-14 14:13 - 2016-12-14 14:13 - 00658432 ____N (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-12-14 14:13 - 2016-12-14 14:13 - 00498688 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-12-14 14:13 - 2016-11-19 22:24 - 00567152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-12-14 14:13 - 2016-11-19 22:24 - 00152856 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2016-12-14 14:13 - 2016-11-19 20:29 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-12-14 14:13 - 2016-11-19 19:44 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-12-14 14:13 - 2016-11-19 18:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-12-14 14:13 - 2016-11-19 18:22 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2016-12-14 14:13 - 2016-11-16 22:49 - 00377176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2016-12-14 14:13 - 2016-11-12 22:06 - 00738104 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-12-14 14:13 - 2016-11-12 20:38 - 00613632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-12-14 14:13 - 2016-11-12 20:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-12-14 14:13 - 2016-11-12 20:08 - 25759744 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-12-14 14:13 - 2016-11-12 20:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-12-14 14:13 - 2016-11-12 19:53 - 06049280 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-12-14 14:13 - 2016-11-12 19:29 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-12-14 14:13 - 2016-11-12 19:23 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-12-14 14:13 - 2016-11-12 19:17 - 20302848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-12-14 14:13 - 2016-11-12 19:14 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-12-14 14:13 - 2016-11-12 19:10 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-12-14 14:13 - 2016-11-12 18:45 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-12-14 14:13 - 2016-11-12 18:41 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-12-14 14:13 - 2016-11-12 18:38 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-12-14 14:13 - 2016-11-12 18:37 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-12-14 14:13 - 2016-11-12 18:35 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-12-14 14:13 - 2016-11-12 18:21 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-12-14 14:13 - 2016-11-12 18:20 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-12-14 14:13 - 2016-11-12 18:11 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-12-14 14:13 - 2016-11-12 18:05 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-12-14 14:13 - 2016-11-12 18:02 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-12-14 14:13 - 2016-11-12 18:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-12-14 14:13 - 2016-11-11 03:33 - 01541240 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-12-14 14:13 - 2016-11-09 18:25 - 01376768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-12-14 14:13 - 2016-11-05 21:46 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-12-14 14:13 - 2016-11-05 19:35 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-14 14:13 - 2016-11-05 18:57 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-12-14 14:13 - 2016-11-05 18:11 - 03606528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-12-14 14:13 - 2016-11-05 16:56 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-12-14 14:13 - 2016-11-05 16:46 - 02463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-12-14 14:13 - 2016-10-28 03:56 - 01380048 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-12-14 14:13 - 2016-10-27 15:28 - 01097728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-12-14 14:13 - 2016-10-12 22:49 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-12-14 14:13 - 2016-10-12 22:11 - 00922968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2016-12-14 14:13 - 2016-10-11 17:45 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-12-14 14:13 - 2016-10-11 00:31 - 00990040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-12-14 14:13 - 2016-10-10 19:18 - 00069976 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-12-14 14:13 - 2016-10-10 19:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cmimcext.sys
2016-12-14 14:13 - 2016-10-09 15:17 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll
2016-12-14 14:13 - 2016-10-09 15:08 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2016-12-14 14:13 - 2016-10-09 15:08 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll
2016-12-14 14:13 - 2016-10-08 22:10 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-12-14 14:13 - 2016-10-05 15:01 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-12-14 14:13 - 2016-10-05 15:00 - 00868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-12-14 14:13 - 2016-10-05 15:00 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2016-12-14 14:13 - 2016-10-05 14:52 - 00513456 _____ C:\Windows\SysWOW64\locale.nls
2016-12-14 14:13 - 2016-10-05 14:52 - 00513456 _____ C:\Windows\system32\locale.nls
2016-12-14 14:13 - 2016-10-05 05:15 - 01969944 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-12-14 14:13 - 2016-10-05 05:15 - 01613528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-12-14 14:13 - 2016-10-05 05:15 - 00324896 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-12-14 14:13 - 2016-10-05 05:15 - 00245320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-12-14 14:13 - 2016-09-27 21:16 - 00445873 _____ C:\Windows\system32\ApnDatabase.xml
2016-12-14 14:13 - 2016-09-20 23:30 - 02462040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-12-14 14:13 - 2015-10-22 16:58 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2016-12-13 18:19 - 2016-12-15 16:12 - 00000107 _____ C:\Users\AlfonceRobichu\AppData\Roaming\WB.CFG
2016-12-12 19:27 - 2016-12-12 19:27 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-12-04 11:46 - 2016-12-04 11:57 - 00000109 _____ C:\Users\AlfonceRobichu\Desktop\S3K glitchs.txt
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-01 11:42 - 2016-08-10 20:23 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3980270583-1839792727-2310796736-1002
2017-01-01 11:41 - 2016-08-10 20:19 - 00000000 ____D C:\Users\AlfonceRobichu\Documents\Youcam
2017-01-01 11:40 - 2016-08-10 20:17 - 00003968 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4E2A64B1-BCD5-4D8F-9245-72BA1040A06A}
2017-01-01 11:38 - 2016-10-18 22:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2017-01-01 11:38 - 2016-08-12 09:57 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\Skype
2017-01-01 11:37 - 2016-09-14 18:11 - 00000000 ___RD C:\Users\AlfonceRobichu\OneDrive
2017-01-01 02:01 - 2016-10-18 22:04 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Roaming\CodeBlocks
2017-01-01 01:33 - 2016-08-10 20:30 - 00000000 ____D C:\Users\AlfonceRobichu\Desktop\Jeux et autres
2016-12-31 23:39 - 2016-08-10 21:10 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Google
2016-12-31 23:39 - 2016-08-10 21:10 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-31 23:38 - 2016-08-10 21:09 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Deployment
2016-12-31 23:34 - 2016-10-22 19:00 - 00000384 _____ C:\Windows\Tasks\HPCeeScheduleForAlfonceRobichu.job
2016-12-31 23:34 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-31 23:33 - 2016-08-10 20:04 - 3377377280 ___SH C:\hiberfil.sys
2016-12-31 23:33 - 2016-08-10 20:01 - 738197504 ___SH C:\pagefile.sys
2016-12-31 23:33 - 2016-08-10 20:01 - 268435456 ___SH C:\swapfile.sys
2016-12-31 23:33 - 2013-08-22 14:25 - 82837504 _____ C:\Windows\system32\config\SOFTWARE
2016-12-31 23:33 - 2013-08-22 14:25 - 46137344 _____ C:\Windows\system32\config\SYSTEM
2016-12-31 23:33 - 2013-08-22 14:25 - 00524288 _____ C:\Windows\system32\config\DEFAULT
2016-12-31 23:33 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-12-31 23:33 - 2013-08-22 14:25 - 00262144 _____ C:\Windows\system32\config\SECURITY
2016-12-31 23:33 - 2013-08-22 14:25 - 00262144 _____ C:\Windows\system32\config\SAM
2016-12-31 23:32 - 2016-08-10 20:17 - 00001033 _____ C:\Users\AlfonceRobichu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-31 23:28 - 2013-12-19 08:01 - 00262144 ___SH C:\Users\UpdatusUser\NTUSER.DAT
2016-12-31 21:53 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\drivers
2016-12-31 21:08 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\config
2016-12-31 21:08 - 2013-08-22 14:25 - 67108864 _____ C:\Windows\system32\config\COMPONENTS
2016-12-31 20:49 - 2013-08-22 16:31 - 05316608 _____ C:\Windows\system32\config\DRIVERS
2016-12-31 20:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Microsoft.NET
2016-12-31 20:46 - 2013-08-22 16:36 - 00000000 __RSD C:\Windows\assembly
2016-12-31 20:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\config\RegBack
2016-12-31 20:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2016-12-31 20:25 - 2016-10-22 19:00 - 00003216 _____ C:\Windows\System32\Tasks\HPCeeScheduleForAlfonceRobichu
2016-12-31 19:48 - 2016-10-05 15:51 - 00399872 ___SH C:\Users\AlfonceRobichu\Downloads\Thumbs.db
2016-12-31 15:22 - 2016-09-16 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project64 2.3
2016-12-31 14:24 - 2013-08-26 07:57 - 00000000 ____D C:\Windows\Panther
2016-12-31 14:24 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\debug
2016-12-31 14:24 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Logs
2016-12-31 13:09 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\NDF
2016-12-30 20:38 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\wdi
2016-12-30 20:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-30 19:38 - 2013-08-22 14:36 - 00000000 ____D C:\Program Files (x86)\Common Files
2016-12-30 19:37 - 2016-08-10 20:17 - 00000000 ___HD C:\Users\AlfonceRobichu\AppData
2016-12-30 18:53 - 2016-08-10 20:17 - 00000000 ____D C:\Users\AlfonceRobichu
2016-12-30 18:48 - 2016-08-10 21:09 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Apps\2.0
2016-12-30 18:48 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64
2016-12-30 18:48 - 2013-08-22 14:36 - 00000000 ____D C:\Program Files\Common Files
2016-12-30 18:47 - 2016-08-10 20:17 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\LocalLow
2016-12-30 18:16 - 2016-08-10 20:17 - 00524288 ___SH C:\Users\AlfonceRobichu\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TMContainer00000000000000000001.regtrans-ms
2016-12-30 18:16 - 2016-08-10 20:17 - 00065536 ___SH C:\Users\AlfonceRobichu\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TM.blf
2016-12-30 18:11 - 2013-08-22 14:25 - 00000969 _____ C:\Windows\system32\Drivers\etc\hosts
2016-12-30 16:44 - 2013-08-22 14:36 - 00000000 ___SD C:\ProgramData\Microsoft
2016-12-30 16:19 - 2013-12-19 08:01 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Temp
2016-12-30 16:14 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Public\Documents
2016-12-30 15:41 - 2013-10-12 06:00 - 00847512 _____ C:\Windows\system32\perfh00C.dat
2016-12-30 15:41 - 2013-10-12 06:00 - 00175100 _____ C:\Windows\system32\perfc00C.dat
2016-12-30 15:41 - 2013-08-26 07:09 - 01970480 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-30 15:41 - 2013-08-22 16:39 - 00787990 _____ C:\Windows\system32\perfh009.dat
2016-12-30 15:41 - 2013-08-22 16:39 - 00161748 _____ C:\Windows\system32\perfc009.dat
2016-12-29 16:48 - 2016-08-10 20:17 - 00000000 ___RD C:\Users\AlfonceRobichu\Pictures
2016-12-29 16:20 - 2016-08-10 20:17 - 00000000 ___SD C:\Users\AlfonceRobichu\AppData\Roaming\Microsoft
2016-12-29 16:20 - 2016-08-10 20:01 - 00000000 __SHD C:\System Volume Information
2016-12-23 20:38 - 2013-12-19 08:04 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-23 20:38 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2016-12-23 20:20 - 2016-08-10 20:17 - 00000000 ___RD C:\Users\AlfonceRobichu\Documents
2016-12-23 20:20 - 2016-08-10 20:17 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Microsoft
2016-12-23 20:12 - 2016-08-10 20:18 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\LocalLow\Microsoft
2016-12-23 11:57 - 2013-12-19 08:01 - 00000000 ____D C:\Users\UpdatusUser
2016-12-23 11:34 - 2013-08-22 16:31 - 00000000 ____D C:\Windows\system32\DriverStore
2016-12-22 18:34 - 2013-12-19 08:01 - 00000000 ___RD C:\Users\UpdatusUser\Desktop
2016-12-22 18:27 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\catroot
2016-12-22 18:26 - 2016-08-12 18:55 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\Diagnostics
2016-12-22 14:14 - 2013-08-22 15:44 - 00419376 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-21 15:23 - 2016-08-31 11:41 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-12-21 15:23 - 2016-08-31 11:41 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-12-21 12:40 - 2013-08-22 14:36 - 00000000 __RSD C:\Windows\Fonts
2016-12-19 19:26 - 2016-09-25 20:58 - 00001272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2016-12-19 19:26 - 2016-09-25 20:58 - 00000000 ____D C:\Program Files\paint.net
2016-12-19 16:28 - 2013-08-26 07:03 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{42b82173-0b2e-11e3-93f4-90b11c2eb9f2}.TMContainer00000000000000000002.regtrans-ms
2016-12-19 16:28 - 2013-08-26 07:03 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{42b82173-0b2e-11e3-93f4-90b11c2eb9f2}.TM.blf
2016-12-19 16:27 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2016-12-19 16:18 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\catroot2
2016-12-19 16:11 - 2016-08-30 11:10 - 00262144 _____ C:\Users\Public\NTUSER.DAT
2016-12-18 18:16 - 2016-08-10 20:17 - 00000000 ____D C:\Users\AlfonceRobichu\AppData\Local\VirtualStore
2016-12-18 17:51 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\SysWOW64\drivers
2016-12-18 11:32 - 2016-10-13 15:46 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2016-12-15 16:11 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\WinSxS
2016-12-14 19:34 - 2013-08-26 07:01 - 00524288 ___SH C:\Windows\system32\config\DRIVERS{e1793794-0b3d-11e3-9dfe-80de722c933b}.TMContainer00000000000000000001.regtrans-ms
2016-12-14 19:34 - 2013-08-26 07:01 - 00065536 ___SH C:\Windows\system32\config\DRIVERS{e1793794-0b3d-11e3-9dfe-80de722c933b}.TM.blf
2016-12-14 19:32 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\fr-FR
2016-12-14 19:32 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\fr-FR
2016-12-14 19:32 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\wbem
2016-12-14 19:32 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\system32\oobe
2016-12-14 14:30 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2016-12-14 14:29 - 2016-08-12 15:20 - 00000000 ____D C:\Windows\system32\MRT
2016-12-14 14:27 - 2013-08-26 07:03 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{42b82173-0b2e-11e3-93f4-90b11c2eb9f2}.TMContainer00000000000000000001.regtrans-ms
2016-12-14 14:26 - 2016-08-12 15:19 - 135632432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-12-12 19:27 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-12-12 19:27 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-12-12 18:13 - 2016-08-10 20:17 - 00000000 ___RD C:\Users\AlfonceRobichu\Music
2016-12-12 00:00 - 2016-08-29 10:10 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-12 00:00 - 2016-08-29 10:10 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-10 17:38 - 2013-09-01 04:49 - 00000000 ____D C:\SWSetup
2016-12-08 16:52 - 2016-10-01 09:24 - 00000282 ___SH C:\Users\AlfonceRobichu\Downloads\desktop.ini
2016-12-08 16:52 - 2016-10-01 09:24 - 00000282 ___SH C:\Users\AlfonceRobichu\Desktop\desktop.ini
2016-12-08 16:38 - 2016-08-12 09:57 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-08 16:38 - 2016-08-12 09:57 - 00000000 ____D C:\ProgramData\Skype
2016-12-04 16:34 - 2016-08-10 20:17 - 00000000 ___RD C:\Users\AlfonceRobichu\Videos
==================== Fichiers à la racine de certains dossiers =======
2016-12-30 16:31 - 2016-12-30 16:31 - 0000000 _____ () C:\Program Files (x86)\metadata
2016-12-30 16:31 - 2017-01-01 01:09 - 0000040 _____ () C:\Program Files (x86)\settings.dat
2016-10-15 13:01 - 2016-10-15 13:01 - 0000611 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\AdobeWLCMR2Cache.dat
2016-12-22 18:32 - 2016-12-22 18:33 - 7316480 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\agent.dat
2016-12-22 18:32 - 2016-12-22 18:32 - 1177088 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\DuoRandom.exe
2016-12-22 18:31 - 2016-12-22 18:33 - 0140288 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\Installer.dat
2016-12-22 18:32 - 2016-12-22 18:32 - 0136826 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\Jaybam.bin
2016-12-22 18:32 - 2016-12-22 18:33 - 0018432 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\Main.dat
2016-12-22 18:32 - 2016-12-22 18:31 - 1177088 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\Softdax.exe
2016-12-22 18:32 - 2016-12-22 18:32 - 1177088 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\Solofax.exe
2016-12-13 18:19 - 2016-12-15 16:12 - 0000107 _____ () C:\Users\AlfonceRobichu\AppData\Roaming\WB.CFG
2016-12-23 12:03 - 2016-12-23 11:59 - 7537048 _____ (PC Cleaners.) C:\ProgramData\appclunst.exe
2016-12-23 12:03 - 2016-12-23 12:03 - 1072920 _____ (SafeBytes Software Inc.) C:\ProgramData\InstallDriverAssist41.exe
Fichiers à déplacer ou supprimer:
====================
C:\Users\AlfonceRobichu\AppData\Local\Temp\854AEMDQN\854AEMDQN.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\9DRHWCNBP\9DRHWCNBP.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\60D75UZXI\60D75UZXI.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\ILQJXY0GV\ILQJXY0GV.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\EWELXVPIR\EWELXVPIR.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\199VG1V64\199VG1V64.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\06D7OWMGB\06D7OWMGB.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\EY715VP8D\EY715VP8D.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\O4O4V5MO2\O4O4V5MO2.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\H2V9JLM80\H2V9JLM80.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\T7JSSP5M7\T7JSSP5M7.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\4J8O87DOB\4J8O87DOB.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\WNX0NCU6C\WNX0NCU6C.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\SS4IX29KZ\SS4IX29KZ.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\{1ec2529884dc40fc8eb271ba73ec17cc}\rwj8-6nJOd\publisher.exe
C:\Users\AlfonceRobichu\AppData\Local\Temp\D707812C2\D707812C2.exe
C:\ProgramData\appclunst.exe
C:\ProgramData\InstallDriverAssist41.exe
Certains fichiers dans TEMP:
====================
C:\Users\AlfonceRobichu\AppData\Local\Temp\libeay32.dll
C:\Users\AlfonceRobichu\AppData\Local\Temp\msvcr120.dll
C:\Users\AlfonceRobichu\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll
[2016-12-14 14:13] - [2016-12-14 14:13] - 0658432 ____N (Microsoft Corporation) 33492AAF87DF6DB00D4B8BB8C6ABFCE4
C:\Windows\SysWOW64\dnsapi.dll
[2016-12-14 14:13] - [2016-12-14 14:13] - 0498688 ____N (Microsoft Corporation) FB351B11495C65D1DFB3699DE8445C5F
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-12-31 20:46
==================== Fin de FRST.txt ============================