Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2017
Exécuté par Olivier (administrateur) sur GRENOUILLE (05-02-2017 16:15:02)
Exécuté depuis C:\Users\Olivier\Desktop
Profils chargés: Olivier (Profils disponibles: Olivier)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.1.5.0\WsAppService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP Officejet Pro 8610\Bin\ScanToPCActivationApp.exe
(Avaya, Inc.) C:\Users\Olivier\AppData\Local\Radvision\Conference Client\8.3.300.50\CUCore.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP Officejet Pro 8610\Bin\HPNetworkCommunicatorCom.exe
(TomTom) C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-04-27] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [452608 2013-01-28] (Realtek Semiconductor Corporation)
HKLM\...\Run: [Radio Manager] => C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-04-24] (MSI)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [406944 2013-04-24] (MSI)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [457616 2014-10-03] ()
HKLM\...\Run: [HotKeysCmds] => "C:\Windows\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\Windows\system32\igfxpers.exe"
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2465088 2014-11-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-07] (MSI)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BlueStacks Agent] => c:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2013-01-07] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2086240 2015-04-28] (Wondershare)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [EPSON6C90D8 (Epson Stylus SX525WD)] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE /FU "C:\Windows\TEMP\E_S848B.tmp" /EF "HKCU"
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2881824 2017-01-19] (Valve Corporation)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe [1792376 2014-10-03] (TomTom)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [HP Officejet Pro 8610 (NET)] => C:\Program Files\HP\HP Officejet Pro 8610\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [CUCore Agent] => C:\Users\Olivier\AppData\Local\Radvision\Conference Client\8.3.300.50\ConfAgent.exe [403280 2016-03-24] (Avaya, Inc.)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [6536008 2016-04-22] (Plex, Inc.)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.exe [426600 2016-01-11] (CyberGhost S.R.L.)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [638464 2016-12-05] (TomTom)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\MountPoints2: {8f9ac4f3-62d1-11e4-824f-806e6f6e6963} - "E:\SETUP.EXE"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174856 2014-11-13] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [174856 2014-11-13] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156840 2014-11-13] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileSyncShell64.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileSyncShell64.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileSyncShell64.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileSyncShell.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileSyncShell.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileSyncShell.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-12-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Qualcomm Atheros Killer Network Manager.lnk [2013-04-28]
ShortcutTarget: Qualcomm Atheros Killer Network Manager.lnk -> C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk [2013-02-22]
ShortcutTarget: WinZip Quick Pick.lnk -> C:\Program Files\WinZip\WZQKPICK32.EXE (WinZip Computing, S.L.)
Startup: C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet Pro 8610.lnk [2017-02-05]
ShortcutTarget: Alertes de surveillance de l'encre - HP Officejet Pro 8610.lnk -> C:\Program Files\HP\HP Officejet Pro 8610\Bin\HPStatusBL.dll (Hewlett-Packard Development Company, LP)
Startup: C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-01-18]
ShortcutTarget: Dropbox.lnk -> C:\Users\Olivier\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyServer: [S-1-5-21-3613459931-2583485166-3463427150-1002] => 84.72.112.40:80
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{864B0E7E-D229-47A6-9C06-92CDA8AE4E89}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{864B0E7E-D229-47A6-9C06-92CDA8AE4E89}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{E322AB28-821E-47A0-8B8D-AC8D4BD4544B}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://msi13.msn.com
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-12-16] (Adblock Plus)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-03] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll [2013-09-05] (Perfect World Entertainment Inc)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-03] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16] (Adblock Plus)
Toolbar: HKU\S-1-5-21-3613459931-2583485166-3463427150-1002 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Handler: WSWSVCUchrome - Pas de valeur CLSID
FireFox:
========
FF DefaultProfile: 2f502h1o.default-1413669759612
FF ProfilePath: C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 [2017-02-05]
FF NetworkProxy: Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 -> http", "77.58.86.128"
FF NetworkProxy: Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 -> http_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 -> type", 0
FF Extension: (Castorus) - C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612\Extensions\contact@castorus.com.xpi [2016-04-25]
FF Extension: (Google Similar Images) - C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612\Extensions\nishan.naseer.googimagesearch@gmail.com.xpi [2016-04-28]
FF Extension: (Adblock Plus) - C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-03] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll [2013-09-05] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3613459931-2583485166-3463427150-1002: @radvision.com/ConfClient -> C:\Users\Olivier\AppData\Local\Radvision\Installer\1.5.3.6\npclientinstmgr.dll [2016-03-24] (Avaya, Inc.)
Chrome:
=======
CHR Profile: C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default [2017-02-05]
CHR Extension: (Google Slides) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-25]
CHR Extension: (Google Docs) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-25]
CHR Extension: (Google Drive) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-25]
CHR Extension: (YouTube) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-25]
CHR Extension: (Google Sheets) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-26]
CHR Extension: (Norton Identity Safe) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-09-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-05]
CHR Extension: (Gmail) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-25]
CHR Extension: (Chrome Media Router) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-02]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88424 2013-09-05] (Perfect World Entertainment Inc)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-01-28] (BitRaider, LLC)
S2 BstHdAndroidSvc; c:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2013-01-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2013-01-07] (BlueStack Systems, Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [39424 2012-12-07] () [Fichier non signé]
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-01-11] (CyberGhost S.R.L)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Origins\bin_ship\DAUpdaterSvc.Service.exe [25832 2014-08-25] (BioWare)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-03-23] (Foxit Software Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-11-17] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [329104 2014-10-03] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2820424 2014-10-15] (CybelSoft)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2013-04-24] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI) [Fichier non signé]
R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe [123320 2012-08-13] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-11-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19821376 2014-11-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-03] (Electronic Arts)
R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe [126392 2012-08-13] (Symantec Corporation)
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [495616 2013-03-15] () [Fichier non signé]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.1.5.0\WsAppService.exe [382464 2015-12-02] (Wondershare) [Fichier non signé]
S3 BRSptSvc; "C:\ProgramData\BitRaider\BRSptSvc.exe" [X]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW8x64.sys [74096 2013-03-15] (Qualcomm Atheros, Inc.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-01-29] (BitRaider)
S2 BstHdDrv; c:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2013-01-07] (BlueStack Systems)
S3 ipadtst; C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys [19952 2013-02-01] (Windows (R) Win 7 DDK provider)
R3 Ke2200; C:\WINDOWS\system32\DRIVERS\e22w8x64.sys [174448 2013-03-15] (Qualcomm Atheros, Inc.)
S3 ma-config_amd64; C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [17568 2014-02-24] (CybelSoft)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20800 2014-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [38216 2014-10-03] (NVIDIA Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [524360 2013-04-27] (Realtek Semiconductor Corporation)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [448072 2013-04-27] (RTS Corporation)
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-05 16:15 - 2017-02-05 16:15 - 00030718 _____ C:\Users\Olivier\Desktop\FRST.txt
2017-02-05 16:14 - 2017-02-05 16:15 - 00000000 ____D C:\FRST
2017-02-05 16:13 - 2017-02-05 16:13 - 02421248 _____ (Farbar) C:\Users\Olivier\Desktop\FRST64.exe
2017-02-05 15:27 - 2017-02-05 15:27 - 00177895 _____ C:\Users\Olivier\Desktop\ZHPDiag2.txt
2017-02-05 15:20 - 2017-02-05 15:20 - 02660352 _____ C:\Users\Olivier\ZHPDiag3.exe
2017-02-05 15:12 - 2017-02-05 15:12 - 00005095 _____ C:\Users\Olivier\Desktop\ZHPFixReport.txt
2017-02-05 15:11 - 2017-02-05 15:11 - 00001875 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2017-02-05 15:11 - 2017-02-05 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2017-02-05 15:11 - 2017-02-05 15:11 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2017-02-05 15:10 - 2017-02-05 15:10 - 03521617 _____ (Nicolas Coolman ) C:\Users\Olivier\Downloads\zhpfix_2015.10.19.9.exe
2017-02-05 14:55 - 2017-02-05 14:55 - 00448512 _____ (OldTimer Tools) C:\Users\Olivier\Downloads\TFC.exe
2017-02-04 22:38 - 2017-02-05 15:25 - 00177892 _____ C:\Users\Olivier\Desktop\ZHPDiag.txt
2017-02-04 22:30 - 2017-02-05 15:25 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\ZHP
2017-02-04 22:30 - 2017-02-05 15:20 - 00000717 _____ C:\Users\Olivier\Desktop\ZHPDiag.lnk
2017-02-04 22:30 - 2017-02-04 22:30 - 02659840 _____ C:\Users\Olivier\Downloads\ZHPDiag3.exe
2017-02-03 18:11 - 2017-02-03 18:11 - 01857953 _____ C:\Users\Olivier\Downloads\Etat des lieux GAY.pdf
2017-01-29 09:34 - 2017-01-29 09:34 - 00000000 ____D C:\Users\Olivier\Documents\HeroBlade Logs
2017-01-28 23:26 - 2017-01-28 23:26 - 00000000 ____D C:\ProgramData\BitRaider
2017-01-28 23:11 - 2017-01-28 23:12 - 00000000 _____ C:\end
2017-01-28 23:07 - 2017-01-28 23:11 - 29720272 _____ C:\Users\Olivier\Downloads\SWTOR_setup.exe
2017-01-26 16:42 - 2017-01-26 16:42 - 00000221 _____ C:\Users\Olivier\Desktop\STAR WARS Knights of the Old Republic.url
2017-01-24 21:53 - 2017-01-24 21:53 - 00119643 _____ C:\Users\Olivier\Downloads\facture 4976 gay.pdf
2017-01-22 20:56 - 2017-01-22 20:56 - 00319517 _____ C:\Users\Olivier\Documents\Scan0008.pdf
2017-01-20 20:22 - 2017-01-20 20:22 - 08670066 _____ C:\Users\Olivier\Downloads\Retrospective Fête du Livre St-Etienne 2016.pdf
2017-01-20 20:22 - 2017-01-20 20:22 - 00140784 _____ C:\Users\Olivier\Downloads\DEVIS_2587(1).PDF
2017-01-20 20:00 - 2017-01-20 20:00 - 00372835 _____ C:\Users\Olivier\Downloads\DEVIS DEMENAGEMENT n° DV4444(1).pdf
2017-01-20 19:59 - 2017-01-20 19:59 - 00460496 _____ C:\Users\Olivier\Downloads\DOSSIER GAY .pdf
2017-01-17 13:28 - 2017-01-17 13:28 - 00372744 _____ C:\Users\Olivier\Downloads\DEVIS DEMENAGEMENT n° DV4444.pdf
2017-01-17 11:39 - 2017-01-17 11:39 - 00082449 _____ C:\Users\Olivier\Downloads\devis 2608 gay.pdf
2017-01-17 11:23 - 2017-01-17 11:23 - 00075190 _____ C:\Users\Olivier\Downloads\NoticeAttestation (Devis 2587).pdf
2017-01-17 11:23 - 2017-01-17 11:23 - 00071524 _____ C:\Users\Olivier\Downloads\Attestation (Devis 2587).pdf
2017-01-17 10:39 - 2017-01-17 10:39 - 00079549 _____ C:\Users\Olivier\Downloads\Concept - Decoupe Studio - 37DF7600-07DH012.pdf
2017-01-17 09:54 - 2017-01-17 09:54 - 00561677 _____ C:\Users\Olivier\Documents\Devis plomberie M THEILLOUT.pdf
2017-01-17 07:50 - 2017-01-17 07:50 - 00248575 _____ C:\Users\Olivier\Documents\Scan0007.pdf
2017-01-16 19:52 - 2017-01-16 19:52 - 00104175 _____ C:\Users\Olivier\Downloads\devis 2605 gay.pdf
2017-01-16 17:38 - 2017-01-16 17:38 - 00140784 _____ C:\Users\Olivier\Downloads\DEVIS_2587.PDF
2017-01-16 17:13 - 2017-01-16 17:13 - 00582134 _____ C:\Users\Olivier\Downloads\Devis Parqueterie Aixoise.pdf
2017-01-16 16:35 - 2017-01-16 16:35 - 00328575 _____ C:\Users\Olivier\Downloads\Dimensions Cheminée insert.pdf
2017-01-16 15:23 - 2017-01-16 15:23 - 00224496 _____ C:\Users\Olivier\Downloads\FA00558 GAY spe selon DE00612 Démolition.pdf
2017-01-16 13:27 - 2017-01-16 13:27 - 00068794 _____ C:\Users\Olivier\Downloads\document(4).pdf
2017-01-16 13:26 - 2017-01-16 13:26 - 00836574 _____ C:\Users\Olivier\Downloads\20150716_112313(1).pdf
2017-01-16 13:23 - 2017-01-16 13:23 - 00833166 _____ C:\Users\Olivier\Downloads\20150715_100957(1).pdf
2017-01-16 13:17 - 2017-01-16 13:17 - 00120974 _____ C:\Users\Olivier\Downloads\DEVISNS_170100503_1701161217.pdf
2017-01-14 17:05 - 2017-01-14 17:13 - 00014794 _____ C:\Users\Olivier\Downloads\Travaux.xlsx
2017-01-13 22:15 - 2017-01-13 22:15 - 00000000 ____D C:\Users\Olivier\AppData\Local\Chromium
2017-01-13 12:00 - 2017-01-13 12:00 - 00034198 _____ C:\Users\Olivier\Downloads\Invitation O Gay.pdf
2017-01-13 00:11 - 2017-01-13 00:11 - 00000222 _____ C:\Users\Olivier\Desktop\Sid Meier's Civilization VI.url
2017-01-12 09:34 - 2017-01-12 09:34 - 00001103 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\Users\Olivier\AppData\Local\VS Revo Group
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\ProgramData\VS Revo Group
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\Program Files\VS Revo Group
2017-01-12 09:34 - 2016-12-21 14:52 - 00040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2017-01-12 09:33 - 2017-01-12 09:33 - 11523496 _____ (VS Revo Group ) C:\Users\Olivier\Downloads\RevoUninProSetup.exe
2017-01-09 22:47 - 2017-01-09 23:56 - 00000000 ____D C:\Users\Olivier\Downloads\win64_153343.4425
2017-01-09 22:47 - 2017-01-09 23:56 - 00000000 ____D C:\Users\Olivier\Downloads\RST_Win7_8.1_10_14.10.0.1016
2017-01-09 22:47 - 2014-10-03 17:36 - 00279952 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2017-01-09 22:33 - 2013-09-26 21:40 - 01993496 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll
2017-01-09 22:33 - 2013-07-30 14:04 - 00397080 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2017-01-09 22:19 - 2017-01-09 22:19 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-01-09 22:12 - 2017-01-09 22:12 - 00000000 ____D C:\NVIDIA
2017-01-09 22:04 - 2017-01-09 22:04 - 00000000 ____D C:\Program Files\Killer Networking
2017-01-09 21:45 - 2017-01-09 21:46 - 00138669 _____ C:\Users\Olivier\Downloads\Sibta2516120510310.pdf
2017-01-09 20:31 - 2017-01-09 20:33 - 13505002 _____ C:\Users\Olivier\Downloads\RST_Win7_8.1_10_14.10.0.1016.zip
2017-01-09 20:30 - 2017-01-09 20:32 - 17854352 _____ (Rivet Networks) C:\Users\Olivier\Downloads\KillerDrivers_1.0.857_x64.exe
2017-01-09 20:29 - 2017-01-09 21:33 - 371323499 _____ (Realtek Semiconductor Corp.) C:\Users\Olivier\Downloads\Win7_Win8_Win81_Win10_R280.exe
2017-01-09 20:28 - 2017-01-09 21:32 - 386698136 _____ (NVIDIA Corporation) C:\Users\Olivier\Downloads\376.48-desktop-notebook-win8-win7-64bit-international.hf.exe
2017-01-09 20:28 - 2017-01-09 20:39 - 130401555 _____ C:\Users\Olivier\Downloads\win64_153343.4425.zip
2017-01-09 20:25 - 2017-01-09 20:25 - 01624440 _____ (Tous Les Drivers) C:\Users\Olivier\Downloads\Mes_Drivers_3.0.4.exe
2017-01-08 11:58 - 2017-01-08 11:58 - 01921767 _____ C:\Users\Olivier\Downloads\Oracle.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-05 16:12 - 2016-11-16 11:31 - 00000000 ____D C:\Users\Olivier\AppData\LocalLow\Mozilla
2017-02-05 15:51 - 2013-08-28 16:25 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3613459931-2583485166-3463427150-1002
2017-02-05 15:20 - 2014-11-02 21:57 - 00000000 ____D C:\Users\Olivier
2017-02-05 15:19 - 2013-09-01 03:31 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-02-05 15:16 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-05 15:16 - 2013-04-28 00:51 - 00000000 ____D C:\ProgramData\Realtek
2017-02-05 15:14 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-02-04 20:44 - 2016-11-16 00:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-04 20:44 - 2013-08-31 15:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-03 18:36 - 2013-08-28 19:31 - 00000000 ____D C:\Users\Olivier\AppData\Local\CrashDumps
2017-02-02 09:07 - 2014-08-29 12:52 - 00002258 _____ C:\Users\Olivier\AppData\Roaming\FoxitReaderUpdateInfo.txt
2017-02-01 10:53 - 2014-08-25 14:31 - 00000000 ____D C:\Users\Olivier\AppData\LocalLow\Adblock Plus for IE
2017-01-29 09:42 - 2014-03-06 13:47 - 00000000 ____D C:\Program Files (x86)\Steam
2017-01-29 03:54 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2017-01-26 17:45 - 2013-09-29 11:41 - 00000000 ____D C:\ProgramData\Hero Lab
2017-01-26 16:42 - 2014-06-01 18:00 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-01-26 13:07 - 2013-08-30 08:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-26 13:07 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-26 13:01 - 2013-08-30 08:21 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-23 16:50 - 2015-09-05 23:56 - 00001026 _____ C:\Users\Public\Desktop\Hero Lab.lnk
2017-01-23 16:50 - 2013-09-29 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hero Lab
2017-01-23 16:50 - 2013-09-29 11:41 - 00000000 ____D C:\Program Files (x86)\Hero Lab
2017-01-21 21:40 - 2014-06-03 18:25 - 00000000 ____D C:\Users\Olivier\AppData\Local\Battle.net
2017-01-21 21:40 - 2014-06-03 18:24 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-01-17 14:54 - 2014-04-24 12:32 - 00000000 ____D C:\Users\Olivier\Documents\Impôts
2017-01-17 09:53 - 2014-09-24 16:26 - 01827432 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-17 09:53 - 2014-09-24 15:41 - 00813388 _____ C:\WINDOWS\system32\perfh00C.dat
2017-01-17 09:53 - 2014-09-24 15:41 - 00159948 _____ C:\WINDOWS\system32\perfc00C.dat
2017-01-14 16:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-13 22:16 - 2015-02-19 10:02 - 00000000 ____D C:\Users\Olivier\AppData\Local\Steam
2017-01-13 19:42 - 2015-02-19 10:05 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\FiraxisLive
2017-01-13 19:42 - 2014-10-10 15:21 - 00000000 ____D C:\Users\Olivier\Documents\my games
2017-01-13 19:42 - 2014-09-08 18:41 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-12 10:13 - 2013-04-28 00:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-01-12 10:12 - 2013-10-06 21:00 - 00000000 ____D C:\ProgramData\EPSON
2017-01-12 10:05 - 2016-11-01 14:48 - 00000000 ____D C:\Users\Olivier\AppData\Local\AvgSetupLog
2017-01-12 10:05 - 2016-11-01 14:48 - 00000000 ____D C:\ProgramData\Avg
2017-01-12 09:54 - 2016-11-01 14:55 - 00000000 ____D C:\ProgramData\MFAData
2017-01-12 09:54 - 2016-11-01 14:48 - 00000000 ____D C:\Users\Olivier\AppData\Local\Avg
2017-01-12 09:54 - 2013-02-22 08:24 - 00000000 ____D C:\ProgramData\Norton
2017-01-12 09:45 - 2016-11-01 14:56 - 00000000 ___HD C:\$AVG
2017-01-12 09:45 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-01-12 09:38 - 2013-02-22 08:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-01-12 09:38 - 2013-02-22 08:22 - 00000000 ____D C:\Program Files (x86)\NortonInstaller
2017-01-11 21:17 - 2016-12-06 21:12 - 00003180 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-11 21:17 - 2016-05-27 19:05 - 00002404 _____ C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2017-01-11 21:17 - 2016-05-24 16:46 - 00003188 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3613459931-2583485166-3463427150-1002
2017-01-11 18:48 - 2013-09-30 14:21 - 00000000 ____D C:\Users\Olivier\Documents\Jdr
2017-01-11 14:22 - 2014-10-22 10:43 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-01-11 14:19 - 2015-01-03 11:12 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-01-11 00:09 - 2016-10-19 14:29 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2017-01-10 22:24 - 2014-11-03 17:42 - 00000000 ____D C:\Users\Olivier\AppData\Local\NVIDIA Corporation
2017-01-10 11:19 - 2013-09-01 03:31 - 00003890 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-01-10 11:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-01-10 11:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-09 23:59 - 2014-11-02 21:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-09 23:56 - 2014-12-21 07:43 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2017-01-09 23:56 - 2014-12-21 07:43 - 00000000 ____D C:\WINDOWS\system32\NV
2017-01-09 23:56 - 2014-11-02 21:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-01-09 23:56 - 2014-11-02 21:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-01-09 23:56 - 2014-11-02 21:51 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-01-09 23:56 - 2014-11-02 21:51 - 00000000 ____D C:\Program Files\Realtek
2017-01-09 23:56 - 2014-06-03 18:25 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\Battle.net
2017-01-09 23:56 - 2013-10-27 17:23 - 00000000 ____D C:\Users\Olivier\AppData\Local\NVIDIA
2017-01-09 23:56 - 2013-09-05 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-09 23:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2017-01-09 23:56 - 2013-04-28 01:23 - 00000000 ___HD C:\SuperChargerProfile
2017-01-09 23:56 - 2013-04-28 00:49 - 00000000 ____D C:\ProgramData\Bigfoot Networks
2017-01-09 23:56 - 2013-04-28 00:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-01-09 23:53 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-09 23:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\registration
2017-01-09 23:41 - 2014-11-02 21:50 - 00000000 ____D C:\Program Files\Intel
2017-01-09 23:07 - 2014-11-02 22:24 - 00000000 __SHD C:\Users\Olivier\IntelGraphicsProfiles
2017-01-09 23:05 - 2014-11-02 21:52 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-09 22:35 - 2013-04-28 00:48 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-01-09 13:44 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
==================== Fichiers à la racine de certains dossiers =======
2014-09-01 09:18 - 2014-09-01 09:18 - 0001248 _____ () C:\Users\Olivier\AppData\Roaming\CMJWTVCI
2014-08-29 12:52 - 2017-02-02 09:07 - 0002258 _____ () C:\Users\Olivier\AppData\Roaming\FoxitReaderUpdateInfo.txt
2014-09-01 09:18 - 2014-09-01 09:18 - 0002086 _____ () C:\Users\Olivier\AppData\Roaming\KQBECBH
2013-08-28 16:18 - 2017-02-05 15:17 - 0032566 _____ () C:\Users\Olivier\AppData\Local\BTServer.log
2013-11-25 16:42 - 2016-12-22 21:53 - 0007596 _____ () C:\Users\Olivier\AppData\Local\Resmon.ResmonCfg
2015-11-03 17:38 - 2015-11-03 17:38 - 0000057 _____ () C:\ProgramData\Ament.ini
Fichiers à déplacer ou supprimer:
====================
C:\Users\Olivier\ZHPDiag3.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-05 15:51
==================== Fin de FRST.txt ============================
Exécuté par Olivier (administrateur) sur GRENOUILLE (05-02-2017 16:15:02)
Exécuté depuis C:\Users\Olivier\Desktop
Profils chargés: Olivier (Profils disponibles: Olivier)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.1.5.0\WsAppService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(MSI) C:\Program Files (x86)\SCM\Radio Manager.exe
(MSI) C:\Program Files (x86)\SCM\SCM.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP Officejet Pro 8610\Bin\ScanToPCActivationApp.exe
(Avaya, Inc.) C:\Users\Olivier\AppData\Local\Radvision\Conference Client\8.3.300.50\CUCore.exe
(Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP Officejet Pro 8610\Bin\HPNetworkCommunicatorCom.exe
(TomTom) C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-04-27] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [452608 2013-01-28] (Realtek Semiconductor Corporation)
HKLM\...\Run: [Radio Manager] => C:\Program Files (x86)\SCM\Radio Manager.exe [406920 2013-04-24] (MSI)
HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [406944 2013-04-24] (MSI)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [457616 2014-10-03] ()
HKLM\...\Run: [HotKeysCmds] => "C:\Windows\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\Windows\system32\igfxpers.exe"
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2465088 2014-11-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-02-07] (MSI)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [BlueStacks Agent] => c:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2013-01-07] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2086240 2015-04-28] (Wondershare)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [EPSON6C90D8 (Epson Stylus SX525WD)] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGAE.EXE /FU "C:\Windows\TEMP\E_S848B.tmp" /EF "HKCU"
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2881824 2017-01-19] (Valve Corporation)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe [1792376 2014-10-03] (TomTom)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [HP Officejet Pro 8610 (NET)] => C:\Program Files\HP\HP Officejet Pro 8610\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [CUCore Agent] => C:\Users\Olivier\AppData\Local\Radvision\Conference Client\8.3.300.50\ConfAgent.exe [403280 2016-03-24] (Avaya, Inc.)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [6536008 2016-04-22] (Plex, Inc.)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.exe [426600 2016-01-11] (CyberGhost S.R.L.)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [638464 2016-12-05] (TomTom)
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\...\MountPoints2: {8f9ac4f3-62d1-11e4-824f-806e6f6e6963} - "E:\SETUP.EXE"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174856 2014-11-13] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [174856 2014-11-13] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156840 2014-11-13] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileSyncShell64.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileSyncShell64.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\amd64\FileSyncShell64.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileSyncShell.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileSyncShell.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Olivier\AppData\Local\Microsoft\OneDrive\17.3.6743.1212\FileSyncShell.dll [2017-01-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Olivier\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-12-16]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe (Pas de fichier)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Qualcomm Atheros Killer Network Manager.lnk [2013-04-28]
ShortcutTarget: Qualcomm Atheros Killer Network Manager.lnk -> C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk [2013-02-22]
ShortcutTarget: WinZip Quick Pick.lnk -> C:\Program Files\WinZip\WZQKPICK32.EXE (WinZip Computing, S.L.)
Startup: C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet Pro 8610.lnk [2017-02-05]
ShortcutTarget: Alertes de surveillance de l'encre - HP Officejet Pro 8610.lnk -> C:\Program Files\HP\HP Officejet Pro 8610\Bin\HPStatusBL.dll (Hewlett-Packard Development Company, LP)
Startup: C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-01-18]
ShortcutTarget: Dropbox.lnk -> C:\Users\Olivier\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyServer: [S-1-5-21-3613459931-2583485166-3463427150-1002] => 84.72.112.40:80
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{864B0E7E-D229-47A6-9C06-92CDA8AE4E89}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{864B0E7E-D229-47A6-9C06-92CDA8AE4E89}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{E322AB28-821E-47A0-8B8D-AC8D4BD4544B}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-3613459931-2583485166-3463427150-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://msi13.msn.com
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-12-16] (Adblock Plus)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-03] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll [2013-09-05] (Perfect World Entertainment Inc)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-03] (Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-12-16] (Adblock Plus)
Toolbar: HKU\S-1-5-21-3613459931-2583485166-3463427150-1002 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Handler: WSWSVCUchrome - Pas de valeur CLSID
FireFox:
========
FF DefaultProfile: 2f502h1o.default-1413669759612
FF ProfilePath: C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 [2017-02-05]
FF NetworkProxy: Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 -> http", "77.58.86.128"
FF NetworkProxy: Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 -> http_port", 80
FF NetworkProxy: Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612 -> type", 0
FF Extension: (Castorus) - C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612\Extensions\contact@castorus.com.xpi [2016-04-25]
FF Extension: (Google Similar Images) - C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612\Extensions\nishan.naseer.googimagesearch@gmail.com.xpi [2016-04-28]
FF Extension: (Adblock Plus) - C:\Users\Olivier\AppData\Roaming\Mozilla\Firefox\Profiles\2f502h1o.default-1413669759612\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-03] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll [2013-09-05] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3613459931-2583485166-3463427150-1002: @radvision.com/ConfClient -> C:\Users\Olivier\AppData\Local\Radvision\Installer\1.5.3.6\npclientinstmgr.dll [2016-03-24] (Avaya, Inc.)
Chrome:
=======
CHR Profile: C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default [2017-02-05]
CHR Extension: (Google Slides) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-25]
CHR Extension: (Google Docs) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-25]
CHR Extension: (Google Drive) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-25]
CHR Extension: (YouTube) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-25]
CHR Extension: (Google Sheets) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-26]
CHR Extension: (Norton Identity Safe) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-09-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-05]
CHR Extension: (Gmail) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-25]
CHR Extension: (Chrome Media Router) - C:\Users\Olivier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-02]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88424 2013-09-05] (Perfect World Entertainment Inc)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-01-28] (BitRaider, LLC)
S2 BstHdAndroidSvc; c:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2013-01-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; c:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2013-01-07] (BlueStack Systems, Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [39424 2012-12-07] () [Fichier non signé]
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-01-11] (CyberGhost S.R.L)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Origins\bin_ship\DAUpdaterSvc.Service.exe [25832 2014-08-25] (BioWare)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-03-23] (Foxit Software Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-11-17] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [329104 2014-10-03] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2820424 2014-10-15] (CybelSoft)
R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2013-04-24] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [154112 2013-02-08] (MSI) [Fichier non signé]
R2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\SymcPCCULaunchSvc.exe [123320 2012-08-13] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-11-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19821376 2014-11-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-03] (Electronic Arts)
R2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.16\ccSvcHst.exe [126392 2012-08-13] (Symantec Corporation)
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [495616 2013-03-15] () [Fichier non signé]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.1.5.0\WsAppService.exe [382464 2015-12-02] (Wondershare) [Fichier non signé]
S3 BRSptSvc; "C:\ProgramData\BitRaider\BRSptSvc.exe" [X]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW8x64.sys [74096 2013-03-15] (Qualcomm Atheros, Inc.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-01-29] (BitRaider)
S2 BstHdDrv; c:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2013-01-07] (BlueStack Systems)
S3 ipadtst; C:\Program Files (x86)\MSI\Super-Charger\ipadtst_64.sys [19952 2013-02-01] (Windows (R) Win 7 DDK provider)
R3 Ke2200; C:\WINDOWS\system32\DRIVERS\e22w8x64.sys [174448 2013-03-15] (Qualcomm Atheros, Inc.)
S3 ma-config_amd64; C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [17568 2014-02-24] (CybelSoft)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20800 2014-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [38216 2014-10-03] (NVIDIA Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [524360 2013-04-27] (Realtek Semiconductor Corporation)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [448072 2013-04-27] (RTS Corporation)
R3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 BRDriver64; \??\C:\ProgramData\BitRaider\BRDriver64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-05 16:15 - 2017-02-05 16:15 - 00030718 _____ C:\Users\Olivier\Desktop\FRST.txt
2017-02-05 16:14 - 2017-02-05 16:15 - 00000000 ____D C:\FRST
2017-02-05 16:13 - 2017-02-05 16:13 - 02421248 _____ (Farbar) C:\Users\Olivier\Desktop\FRST64.exe
2017-02-05 15:27 - 2017-02-05 15:27 - 00177895 _____ C:\Users\Olivier\Desktop\ZHPDiag2.txt
2017-02-05 15:20 - 2017-02-05 15:20 - 02660352 _____ C:\Users\Olivier\ZHPDiag3.exe
2017-02-05 15:12 - 2017-02-05 15:12 - 00005095 _____ C:\Users\Olivier\Desktop\ZHPFixReport.txt
2017-02-05 15:11 - 2017-02-05 15:11 - 00001875 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2017-02-05 15:11 - 2017-02-05 15:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2017-02-05 15:11 - 2017-02-05 15:11 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2017-02-05 15:10 - 2017-02-05 15:10 - 03521617 _____ (Nicolas Coolman ) C:\Users\Olivier\Downloads\zhpfix_2015.10.19.9.exe
2017-02-05 14:55 - 2017-02-05 14:55 - 00448512 _____ (OldTimer Tools) C:\Users\Olivier\Downloads\TFC.exe
2017-02-04 22:38 - 2017-02-05 15:25 - 00177892 _____ C:\Users\Olivier\Desktop\ZHPDiag.txt
2017-02-04 22:30 - 2017-02-05 15:25 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\ZHP
2017-02-04 22:30 - 2017-02-05 15:20 - 00000717 _____ C:\Users\Olivier\Desktop\ZHPDiag.lnk
2017-02-04 22:30 - 2017-02-04 22:30 - 02659840 _____ C:\Users\Olivier\Downloads\ZHPDiag3.exe
2017-02-03 18:11 - 2017-02-03 18:11 - 01857953 _____ C:\Users\Olivier\Downloads\Etat des lieux GAY.pdf
2017-01-29 09:34 - 2017-01-29 09:34 - 00000000 ____D C:\Users\Olivier\Documents\HeroBlade Logs
2017-01-28 23:26 - 2017-01-28 23:26 - 00000000 ____D C:\ProgramData\BitRaider
2017-01-28 23:11 - 2017-01-28 23:12 - 00000000 _____ C:\end
2017-01-28 23:07 - 2017-01-28 23:11 - 29720272 _____ C:\Users\Olivier\Downloads\SWTOR_setup.exe
2017-01-26 16:42 - 2017-01-26 16:42 - 00000221 _____ C:\Users\Olivier\Desktop\STAR WARS Knights of the Old Republic.url
2017-01-24 21:53 - 2017-01-24 21:53 - 00119643 _____ C:\Users\Olivier\Downloads\facture 4976 gay.pdf
2017-01-22 20:56 - 2017-01-22 20:56 - 00319517 _____ C:\Users\Olivier\Documents\Scan0008.pdf
2017-01-20 20:22 - 2017-01-20 20:22 - 08670066 _____ C:\Users\Olivier\Downloads\Retrospective Fête du Livre St-Etienne 2016.pdf
2017-01-20 20:22 - 2017-01-20 20:22 - 00140784 _____ C:\Users\Olivier\Downloads\DEVIS_2587(1).PDF
2017-01-20 20:00 - 2017-01-20 20:00 - 00372835 _____ C:\Users\Olivier\Downloads\DEVIS DEMENAGEMENT n° DV4444(1).pdf
2017-01-20 19:59 - 2017-01-20 19:59 - 00460496 _____ C:\Users\Olivier\Downloads\DOSSIER GAY .pdf
2017-01-17 13:28 - 2017-01-17 13:28 - 00372744 _____ C:\Users\Olivier\Downloads\DEVIS DEMENAGEMENT n° DV4444.pdf
2017-01-17 11:39 - 2017-01-17 11:39 - 00082449 _____ C:\Users\Olivier\Downloads\devis 2608 gay.pdf
2017-01-17 11:23 - 2017-01-17 11:23 - 00075190 _____ C:\Users\Olivier\Downloads\NoticeAttestation (Devis 2587).pdf
2017-01-17 11:23 - 2017-01-17 11:23 - 00071524 _____ C:\Users\Olivier\Downloads\Attestation (Devis 2587).pdf
2017-01-17 10:39 - 2017-01-17 10:39 - 00079549 _____ C:\Users\Olivier\Downloads\Concept - Decoupe Studio - 37DF7600-07DH012.pdf
2017-01-17 09:54 - 2017-01-17 09:54 - 00561677 _____ C:\Users\Olivier\Documents\Devis plomberie M THEILLOUT.pdf
2017-01-17 07:50 - 2017-01-17 07:50 - 00248575 _____ C:\Users\Olivier\Documents\Scan0007.pdf
2017-01-16 19:52 - 2017-01-16 19:52 - 00104175 _____ C:\Users\Olivier\Downloads\devis 2605 gay.pdf
2017-01-16 17:38 - 2017-01-16 17:38 - 00140784 _____ C:\Users\Olivier\Downloads\DEVIS_2587.PDF
2017-01-16 17:13 - 2017-01-16 17:13 - 00582134 _____ C:\Users\Olivier\Downloads\Devis Parqueterie Aixoise.pdf
2017-01-16 16:35 - 2017-01-16 16:35 - 00328575 _____ C:\Users\Olivier\Downloads\Dimensions Cheminée insert.pdf
2017-01-16 15:23 - 2017-01-16 15:23 - 00224496 _____ C:\Users\Olivier\Downloads\FA00558 GAY spe selon DE00612 Démolition.pdf
2017-01-16 13:27 - 2017-01-16 13:27 - 00068794 _____ C:\Users\Olivier\Downloads\document(4).pdf
2017-01-16 13:26 - 2017-01-16 13:26 - 00836574 _____ C:\Users\Olivier\Downloads\20150716_112313(1).pdf
2017-01-16 13:23 - 2017-01-16 13:23 - 00833166 _____ C:\Users\Olivier\Downloads\20150715_100957(1).pdf
2017-01-16 13:17 - 2017-01-16 13:17 - 00120974 _____ C:\Users\Olivier\Downloads\DEVISNS_170100503_1701161217.pdf
2017-01-14 17:05 - 2017-01-14 17:13 - 00014794 _____ C:\Users\Olivier\Downloads\Travaux.xlsx
2017-01-13 22:15 - 2017-01-13 22:15 - 00000000 ____D C:\Users\Olivier\AppData\Local\Chromium
2017-01-13 12:00 - 2017-01-13 12:00 - 00034198 _____ C:\Users\Olivier\Downloads\Invitation O Gay.pdf
2017-01-13 00:11 - 2017-01-13 00:11 - 00000222 _____ C:\Users\Olivier\Desktop\Sid Meier's Civilization VI.url
2017-01-12 09:34 - 2017-01-12 09:34 - 00001103 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\Users\Olivier\AppData\Local\VS Revo Group
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\ProgramData\VS Revo Group
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-01-12 09:34 - 2017-01-12 09:34 - 00000000 ____D C:\Program Files\VS Revo Group
2017-01-12 09:34 - 2016-12-21 14:52 - 00040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2017-01-12 09:33 - 2017-01-12 09:33 - 11523496 _____ (VS Revo Group ) C:\Users\Olivier\Downloads\RevoUninProSetup.exe
2017-01-09 22:47 - 2017-01-09 23:56 - 00000000 ____D C:\Users\Olivier\Downloads\win64_153343.4425
2017-01-09 22:47 - 2017-01-09 23:56 - 00000000 ____D C:\Users\Olivier\Downloads\RST_Win7_8.1_10_14.10.0.1016
2017-01-09 22:47 - 2014-10-03 17:36 - 00279952 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2017-01-09 22:33 - 2013-09-26 21:40 - 01993496 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll
2017-01-09 22:33 - 2013-07-30 14:04 - 00397080 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll
2017-01-09 22:19 - 2017-01-09 22:19 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-01-09 22:12 - 2017-01-09 22:12 - 00000000 ____D C:\NVIDIA
2017-01-09 22:04 - 2017-01-09 22:04 - 00000000 ____D C:\Program Files\Killer Networking
2017-01-09 21:45 - 2017-01-09 21:46 - 00138669 _____ C:\Users\Olivier\Downloads\Sibta2516120510310.pdf
2017-01-09 20:31 - 2017-01-09 20:33 - 13505002 _____ C:\Users\Olivier\Downloads\RST_Win7_8.1_10_14.10.0.1016.zip
2017-01-09 20:30 - 2017-01-09 20:32 - 17854352 _____ (Rivet Networks) C:\Users\Olivier\Downloads\KillerDrivers_1.0.857_x64.exe
2017-01-09 20:29 - 2017-01-09 21:33 - 371323499 _____ (Realtek Semiconductor Corp.) C:\Users\Olivier\Downloads\Win7_Win8_Win81_Win10_R280.exe
2017-01-09 20:28 - 2017-01-09 21:32 - 386698136 _____ (NVIDIA Corporation) C:\Users\Olivier\Downloads\376.48-desktop-notebook-win8-win7-64bit-international.hf.exe
2017-01-09 20:28 - 2017-01-09 20:39 - 130401555 _____ C:\Users\Olivier\Downloads\win64_153343.4425.zip
2017-01-09 20:25 - 2017-01-09 20:25 - 01624440 _____ (Tous Les Drivers) C:\Users\Olivier\Downloads\Mes_Drivers_3.0.4.exe
2017-01-08 11:58 - 2017-01-08 11:58 - 01921767 _____ C:\Users\Olivier\Downloads\Oracle.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-05 16:12 - 2016-11-16 11:31 - 00000000 ____D C:\Users\Olivier\AppData\LocalLow\Mozilla
2017-02-05 15:51 - 2013-08-28 16:25 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3613459931-2583485166-3463427150-1002
2017-02-05 15:20 - 2014-11-02 21:57 - 00000000 ____D C:\Users\Olivier
2017-02-05 15:19 - 2013-09-01 03:31 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-02-05 15:16 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-05 15:16 - 2013-04-28 00:51 - 00000000 ____D C:\ProgramData\Realtek
2017-02-05 15:14 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-02-04 20:44 - 2016-11-16 00:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-04 20:44 - 2013-08-31 15:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-03 18:36 - 2013-08-28 19:31 - 00000000 ____D C:\Users\Olivier\AppData\Local\CrashDumps
2017-02-02 09:07 - 2014-08-29 12:52 - 00002258 _____ C:\Users\Olivier\AppData\Roaming\FoxitReaderUpdateInfo.txt
2017-02-01 10:53 - 2014-08-25 14:31 - 00000000 ____D C:\Users\Olivier\AppData\LocalLow\Adblock Plus for IE
2017-01-29 09:42 - 2014-03-06 13:47 - 00000000 ____D C:\Program Files (x86)\Steam
2017-01-29 03:54 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2017-01-26 17:45 - 2013-09-29 11:41 - 00000000 ____D C:\ProgramData\Hero Lab
2017-01-26 16:42 - 2014-06-01 18:00 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-01-26 13:07 - 2013-08-30 08:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-26 13:07 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-26 13:01 - 2013-08-30 08:21 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-23 16:50 - 2015-09-05 23:56 - 00001026 _____ C:\Users\Public\Desktop\Hero Lab.lnk
2017-01-23 16:50 - 2013-09-29 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hero Lab
2017-01-23 16:50 - 2013-09-29 11:41 - 00000000 ____D C:\Program Files (x86)\Hero Lab
2017-01-21 21:40 - 2014-06-03 18:25 - 00000000 ____D C:\Users\Olivier\AppData\Local\Battle.net
2017-01-21 21:40 - 2014-06-03 18:24 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-01-17 14:54 - 2014-04-24 12:32 - 00000000 ____D C:\Users\Olivier\Documents\Impôts
2017-01-17 09:53 - 2014-09-24 16:26 - 01827432 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-17 09:53 - 2014-09-24 15:41 - 00813388 _____ C:\WINDOWS\system32\perfh00C.dat
2017-01-17 09:53 - 2014-09-24 15:41 - 00159948 _____ C:\WINDOWS\system32\perfc00C.dat
2017-01-14 16:29 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-13 22:16 - 2015-02-19 10:02 - 00000000 ____D C:\Users\Olivier\AppData\Local\Steam
2017-01-13 19:42 - 2015-02-19 10:05 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\FiraxisLive
2017-01-13 19:42 - 2014-10-10 15:21 - 00000000 ____D C:\Users\Olivier\Documents\my games
2017-01-13 19:42 - 2014-09-08 18:41 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-12 10:13 - 2013-04-28 00:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-01-12 10:12 - 2013-10-06 21:00 - 00000000 ____D C:\ProgramData\EPSON
2017-01-12 10:05 - 2016-11-01 14:48 - 00000000 ____D C:\Users\Olivier\AppData\Local\AvgSetupLog
2017-01-12 10:05 - 2016-11-01 14:48 - 00000000 ____D C:\ProgramData\Avg
2017-01-12 09:54 - 2016-11-01 14:55 - 00000000 ____D C:\ProgramData\MFAData
2017-01-12 09:54 - 2016-11-01 14:48 - 00000000 ____D C:\Users\Olivier\AppData\Local\Avg
2017-01-12 09:54 - 2013-02-22 08:24 - 00000000 ____D C:\ProgramData\Norton
2017-01-12 09:45 - 2016-11-01 14:56 - 00000000 ___HD C:\$AVG
2017-01-12 09:45 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-01-12 09:38 - 2013-02-22 08:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-01-12 09:38 - 2013-02-22 08:22 - 00000000 ____D C:\Program Files (x86)\NortonInstaller
2017-01-11 21:17 - 2016-12-06 21:12 - 00003180 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-11 21:17 - 2016-05-27 19:05 - 00002404 _____ C:\Users\Olivier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2017-01-11 21:17 - 2016-05-24 16:46 - 00003188 _____ C:\WINDOWS\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3613459931-2583485166-3463427150-1002
2017-01-11 18:48 - 2013-09-30 14:21 - 00000000 ____D C:\Users\Olivier\Documents\Jdr
2017-01-11 14:22 - 2014-10-22 10:43 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-01-11 14:19 - 2015-01-03 11:12 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-01-11 00:09 - 2016-10-19 14:29 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2017-01-10 22:24 - 2014-11-03 17:42 - 00000000 ____D C:\Users\Olivier\AppData\Local\NVIDIA Corporation
2017-01-10 11:19 - 2013-09-01 03:31 - 00003890 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-01-10 11:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-01-10 11:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-09 23:59 - 2014-11-02 21:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-09 23:56 - 2014-12-21 07:43 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2017-01-09 23:56 - 2014-12-21 07:43 - 00000000 ____D C:\WINDOWS\system32\NV
2017-01-09 23:56 - 2014-11-02 21:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-01-09 23:56 - 2014-11-02 21:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-01-09 23:56 - 2014-11-02 21:51 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-01-09 23:56 - 2014-11-02 21:51 - 00000000 ____D C:\Program Files\Realtek
2017-01-09 23:56 - 2014-06-03 18:25 - 00000000 ____D C:\Users\Olivier\AppData\Roaming\Battle.net
2017-01-09 23:56 - 2013-10-27 17:23 - 00000000 ____D C:\Users\Olivier\AppData\Local\NVIDIA
2017-01-09 23:56 - 2013-09-05 08:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-09 23:56 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2017-01-09 23:56 - 2013-04-28 01:23 - 00000000 ___HD C:\SuperChargerProfile
2017-01-09 23:56 - 2013-04-28 00:49 - 00000000 ____D C:\ProgramData\Bigfoot Networks
2017-01-09 23:56 - 2013-04-28 00:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-01-09 23:53 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-09 23:43 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\registration
2017-01-09 23:41 - 2014-11-02 21:50 - 00000000 ____D C:\Program Files\Intel
2017-01-09 23:07 - 2014-11-02 22:24 - 00000000 __SHD C:\Users\Olivier\IntelGraphicsProfiles
2017-01-09 23:05 - 2014-11-02 21:52 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-09 22:35 - 2013-04-28 00:48 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-01-09 13:44 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
==================== Fichiers à la racine de certains dossiers =======
2014-09-01 09:18 - 2014-09-01 09:18 - 0001248 _____ () C:\Users\Olivier\AppData\Roaming\CMJWTVCI
2014-08-29 12:52 - 2017-02-02 09:07 - 0002258 _____ () C:\Users\Olivier\AppData\Roaming\FoxitReaderUpdateInfo.txt
2014-09-01 09:18 - 2014-09-01 09:18 - 0002086 _____ () C:\Users\Olivier\AppData\Roaming\KQBECBH
2013-08-28 16:18 - 2017-02-05 15:17 - 0032566 _____ () C:\Users\Olivier\AppData\Local\BTServer.log
2013-11-25 16:42 - 2016-12-22 21:53 - 0007596 _____ () C:\Users\Olivier\AppData\Local\Resmon.ResmonCfg
2015-11-03 17:38 - 2015-11-03 17:38 - 0000057 _____ () C:\ProgramData\Ament.ini
Fichiers à déplacer ou supprimer:
====================
C:\Users\Olivier\ZHPDiag3.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-05 15:51
==================== Fin de FRST.txt ============================