Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 15-07-2017
Exécuté par Manu (administrateur) sur PC-DE-MANU (16-07-2017 12:39:20)
Exécuté depuis C:\Users\Manu\Desktop
Profils chargés: Manu (Profils disponibles: Manu & Invité)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium (X86) Langue: Français (France)
Internet Explorer Version 7 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\WINDOWS\System32\SLsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
() C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(SplitCam Co.) C:\Program Files\SplitCam\SplitCamService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\WINDOWS\System32\wpcumi.exe
(OsdMaestro) C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
(Hewlett-Packard Company) C:\hp\support\hpsysdrv.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Realtek Semiconductor) C:\WINDOWS\RtHDVCpl.exe
(Microsoft Corporation) C:\WINDOWS\vVX1000.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.569\SSScheduler.exe
(Microsoft Corporation) C:\WINDOWS\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehmsas.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\System32\mobsync.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBAnnounce.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBUpdateNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\WINDOWS\System32\conime.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WPCUMI] => C:\Windows\system32\WpcUmi.exe [176128 2006-11-02] (Microsoft Corporation)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1006264 2007-05-29] (Microsoft Corporation)
HKLM\...\Run: [TkBellExe] => "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
HKLM\...\Run: [OsdMaestro] => C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [118784 2007-02-15] (OsdMaestro)
HKLM\...\Run: [NvSvc] => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [hpsysdrv] => c:\hp\support\hpsysdrv.exe [65536 2006-09-28] (Hewlett-Packard Company)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.)
HKLM\...\Run: [MSConfig] => C:\Windows\system32\msconfig.exe [222208 2006-11-02] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4390912 2007-03-01] (Realtek Semiconductor)
HKLM\...\Run: [LifeCam] => C:\Program Files\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe [3002048 2017-02-07] (Sony Corporation)
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125440 2006-11-02] (Microsoft Corporation)
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Run: [msnmsgr] => C:\Program Files\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation)
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27226072 2016-11-04] (Skype Technologies S.A.)
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\MountPoints2: {63d3cb40-3cd4-11df-9d78-001bb955c499} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL K:\m.exe /s
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\MountPoints2: {b3ed54af-5af1-11e1-b3b9-001bb955c499} - F:\Startme.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2009-04-08]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-05-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.569\SSScheduler.exe (McAfee, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{4AFFE183-C2C4-4C6B-9442-A9E3B4CA9DE4}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/?pc=WLEM&ocid=bb7hp
SearchScopes: HKLM -> {2D664F91-EF54-48DA-BC69-7811AD043226} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {2D664F91-EF54-48DA-BC69-7811AD043226} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {e3bc0642-1dee-4740-9a16-c91c793e452f} URL = hxxp://www.wibeez.com/renseignement?search&q={searchTerms}
BHO: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-12-20] (Oracle Corporation)
BHO: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-20] (Oracle Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} hxxp://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldfr-fr.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile:
FF ProfilePath: C:\Users\Manu\AppData\Roaming\TomTom\HOME\Profiles\sn933li1.default [2010-08-26]
FF Extension: (Pas de nom) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-27] [non signé]
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-20] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default [2017-07-16]
CHR Extension: (Google Docs) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-11]
CHR Extension: (Google Drive) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-11]
CHR Extension: (YouTube) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-11]
CHR Extension: (Easy ToDo) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\keecndolgpjgiiebjongnckoendfjnol [2017-01-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Gmail) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-11]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Dedicarz Service; C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe [1970544 2014-09-15] () [Fichier non signé]
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2282504 2017-03-02] (LogMeIn Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-01-19] (Hewlett-Packard Co.) [Fichier non signé]
S3 IDriverT; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 LightScribeService; c:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [Fichier non signé]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2017-02-27] (LogMeIn, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.569\McCHSvc.exe [321768 2017-05-25] (McAfee, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [Fichier non signé]
S2 Orange update Core Service; C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe [734488 2016-08-29] (Orange SA)
R2 PMBDeviceInfoProvider; C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [505024 2017-02-07] (Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [Fichier non signé]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [266496 2016-03-03] (Realtek Semiconductor)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [Fichier non signé]
R2 SpliCamService; C:\Program Files\SplitCam\SplitCamService.exe [321064 2016-10-19] (SplitCam Co.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [265912 2007-05-29] (Microsoft Corporation)
S3 stllssvr; "c:\Program Files\Common Files\SureThing Shared\stllssvr.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [69120 2016-08-04] (Alcor Micro, Corp.)
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2010-02-03] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-12-02] (REALiX(tm))
R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [18944 2016-08-02] (Windows (R) Win 7 DDK provider)
R3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37088 2016-08-02] (Windows (R) Win 7 DDK provider)
S3 VX1000; C:\Windows\System32\DRIVERS\VX1000.sys [1961072 2010-05-20] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-16 12:30 - 2017-07-16 12:39 - 00017090 _____ C:\Users\Manu\Desktop\FRST.txt
2017-07-16 12:29 - 2017-07-16 12:29 - 00000000 ____D C:\Users\Manu\Desktop\FRST-OlderVersion
2017-07-15 15:53 - 2017-07-15 16:06 - 183881728 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 45[E16EFB71].avi
2017-07-15 15:51 - 2017-07-15 16:06 - 207063040 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 44[3A6C4D7C].avi
2017-07-15 14:46 - 2017-07-15 15:00 - 192882688 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 43v2[E2974580].avi
2017-07-15 14:45 - 2017-07-15 14:59 - 202108928 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 42[3D9772DD].avi
2017-07-15 13:48 - 2017-07-15 14:01 - 187318272 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 41v2 [C78E858A].avi
2017-07-15 13:46 - 2017-07-15 13:59 - 176590848 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 40[AC51356B].avi
2017-07-15 13:25 - 2017-07-15 13:39 - 203823104 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 39[4B690F51].avi
2017-07-15 13:24 - 2017-07-15 13:38 - 200474624 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 38{x264}[54642F3A].avi
2017-07-15 10:39 - 2017-07-16 12:29 - 01780736 _____ (Farbar) C:\Users\Manu\Desktop\FRST.exe
2017-07-14 22:11 - 2017-07-14 22:18 - 222126080 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 37[76431567].avi
2017-07-14 22:09 - 2017-07-14 22:16 - 199403520 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 36[FEF630D6].avi
2017-07-14 21:53 - 2017-07-14 21:58 - 185884672 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 35[BFEA3375].avi
2017-07-14 21:52 - 2017-07-14 21:57 - 190801920 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 34[CAA8338F].avi
2017-07-14 21:48 - 2017-07-14 21:51 - 173090816 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 33[CE04DD35].avi
2017-07-14 21:44 - 2017-07-14 21:48 - 193284096 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 32[B8F00484].avi
2017-07-14 21:31 - 2017-07-14 21:37 - 215365632 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 31[C56E4522].avi
2017-07-14 21:30 - 2017-07-14 21:35 - 163915776 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 30[D2B8F105].avi
2017-07-14 21:22 - 2017-07-14 21:28 - 184682496 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 29[0A445021].avi
2017-07-14 21:20 - 2017-07-14 21:27 - 204408832 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 28[B52DEE96].avi
2017-07-14 21:09 - 2017-07-14 21:14 - 189890560 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 27[91E91290].avi
2017-07-14 21:08 - 2017-07-14 21:12 - 143652864 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 26v2[B8982844] .avi
2017-07-14 20:48 - 2017-07-14 20:57 - 146524160 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 25[D47A4179].avi
2017-07-14 20:45 - 2017-07-14 20:54 - 146507776 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 24[2B0BB926].avi
2017-07-14 20:29 - 2017-07-14 20:39 - 146509824 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 23[F9365DE7].avi
2017-07-14 20:28 - 2017-07-14 20:38 - 147636224 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 22[E816C328].avi
2017-07-14 20:08 - 2017-07-14 20:19 - 146520064 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 21[923AF564].avi
2017-07-14 20:06 - 2017-07-14 20:18 - 146520064 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 20v2 [AFDDD920].avi
2017-07-14 19:52 - 2017-07-14 20:02 - 146513920 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 19[1C3053AA].avi
2017-07-14 19:51 - 2017-07-14 20:01 - 146325504 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 18[B7AB545A].avi
2017-07-14 19:38 - 2017-07-14 19:48 - 146515968 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 17[CAD27153].avi
2017-07-14 19:37 - 2017-07-14 19:47 - 146317312 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 16[2E77D044].avi
2017-07-14 17:32 - 2017-07-14 17:44 - 169240576 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 15[9E91E6E4].avi
2017-07-14 17:31 - 2017-07-14 17:42 - 145896576 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 14[4BF698F2].ogm
2017-07-14 17:30 - 2017-07-14 17:30 - 145681392 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 13[DDF24A96].ogm
2017-07-14 17:10 - 2017-07-14 17:17 - 144600514 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 12[6F0E13D8].ogm
2017-07-14 17:09 - 2017-07-14 17:09 - 145907146 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 11.ogm
2017-07-14 16:43 - 2017-07-14 16:53 - 145907282 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 10v2.ogm
2017-07-14 16:42 - 2017-07-14 16:52 - 145700191 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 09v2.ogm
2017-07-14 16:29 - 2017-07-14 16:39 - 145694014 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 08.ogm
2017-07-14 16:27 - 2017-07-14 16:36 - 145667102 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 07.ogm
2017-07-14 16:10 - 2017-07-14 16:21 - 145752655 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 06.ogm
2017-07-14 16:09 - 2017-07-14 16:21 - 145708922 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 05.ogm
2017-07-14 15:58 - 2017-07-14 16:08 - 145609148 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 04.ogm
2017-07-14 15:53 - 2017-07-14 16:08 - 197935828 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 03v2.ogm
2017-07-14 15:46 - 2017-07-14 15:58 - 183786750 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 02.ogm
2017-07-14 14:19 - 2017-07-14 14:19 - 00000000 ____D C:\ProgramData\Trymedia
2017-07-14 12:56 - 2017-07-16 12:39 - 00000000 ____D C:\FRST
2017-07-14 00:40 - 2017-07-14 00:40 - 00000928 _____ C:\Users\Manu\Documents\Fabrication cyanure.txt
2017-07-13 20:59 - 2017-07-13 20:59 - 04110280 _____ C:\Users\Manu\Desktop\adwcleaner_6.047.exe
2017-07-13 20:13 - 2017-07-13 22:22 - 00004402 _____ C:\Users\Manu\Desktop\ZHPCleaner.txt
2017-07-13 19:55 - 2017-07-13 21:42 - 00000713 _____ C:\Users\Manu\Desktop\ZHPCleaner.lnk
2017-07-13 19:55 - 2017-07-13 19:55 - 00000000 ____D C:\Users\Manu\AppData\Local\ZHP
2017-07-13 19:54 - 2017-07-13 19:54 - 02799488 _____ C:\Users\Manu\Downloads\zhpcleaner_2017.06.26.105.exe
2017-07-12 22:19 - 2017-07-12 22:19 - 00696358 _____ C:\Users\Manu\Downloads\Cyanure, libre (1).pdf
2017-07-12 22:15 - 2017-07-12 22:15 - 00696358 _____ C:\Users\Manu\Downloads\Cyanure, libre.pdf
2017-07-12 19:46 - 2014-10-29 11:18 - 95883334 _____ C:\Users\Manu\Downloads\cover
2017-07-12 19:46 - 2013-11-27 07:01 - 00000000 ____D C:\Users\Manu\Downloads\Suicide mode d'emploi (éd. 1982)
2017-07-12 19:46 - 2013-09-11 21:40 - 00000000 ____D C:\Users\Manu\Downloads\Bonus Fonds d'ecan Bouddha
2017-07-12 18:33 - 2017-07-12 19:02 - 107065187 _____ C:\Users\Manu\Downloads\Suicide mode d'emploi (éd. 1982).rar
2017-07-12 15:42 - 2017-07-13 14:50 - 00003964 _____ C:\Users\Manu\Documents\Suicide Aurélien Isabelle.txt
2017-07-12 10:30 - 2017-07-12 10:39 - 145852223 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 01v2.ogm
2017-07-12 10:30 - 2017-07-12 10:39 - 145852223 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 01v2 (1).ogm
2017-07-11 21:48 - 2017-07-11 21:48 - 00993869 _____ C:\Users\Manu\Downloads\gay_Menoboy_Les_naufrages.zip
2017-07-10 20:05 - 2017-07-10 20:27 - 734087169 _____ C:\Users\Manu\Downloads\American.History.X.LibertyLand.co.avi
2017-07-09 15:42 - 2017-07-09 15:59 - 733990912 _____ C:\Users\Manu\Downloads\Merlin.l.Enchanteur.avi
2017-07-05 20:17 - 2017-07-05 21:01 - 1467016304 _____ C:\Users\Manu\Downloads\Stand.by.Me.VF.DvD.BDRip.avi
2017-07-04 15:00 - 2017-07-05 21:07 - 00001152 _____ C:\Users\Manu\Documents\Suicide Aurelien.txt
2017-06-30 19:47 - 2017-06-30 20:44 - 01187714 _____ C:\Users\Manu\Downloads\The_Eye_dvdrip.avi
2017-06-30 19:46 - 2017-06-30 19:46 - 00000000 ____D C:\Users\Manu\Downloads\The_Eye_dvdrip
2017-06-30 19:44 - 2017-06-30 19:44 - 01194482 _____ C:\Users\Manu\Downloads\The_Eye_dvdrip.zip
2017-06-30 18:58 - 2017-06-30 19:28 - 733462528 _____ C:\Users\Manu\Downloads\The.Eye.2008.FRENCH.DVDRip.XviD.avi
2017-06-28 17:05 - 2017-06-28 17:34 - 733885941 _____ C:\Users\Manu\Downloads\Professeur.Layton.et.la.Diva.Eternelle.FRENCH.DVDRip.x264-NOTAG.mkv
2017-06-25 22:13 - 2017-06-25 22:14 - 00000000 ____D C:\Users\Manu\Documents\Zedeo
2017-06-25 22:13 - 2017-06-25 22:14 - 00000000 ____D C:\Users\Manu\AppData\Roaming\Zedeo
2017-06-25 22:13 - 2017-06-25 22:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zedeo
2017-06-25 22:13 - 2017-06-25 22:13 - 00000000 ____D C:\Program Files\Zedeo
2017-06-25 22:11 - 2017-06-25 22:12 - 27305493 _____ (ZedSoft ) C:\Users\Manu\Downloads\Zedeo_Install.exe
2017-06-24 22:08 - 2017-06-24 22:08 - 00144440 _____ C:\Windows\Minidump\Mini062417-01.dmp
2017-06-24 22:04 - 2017-06-24 22:08 - 412204623 _____ C:\Windows\MEMORY.DMP
2017-06-22 14:39 - 2017-06-22 15:28 - 151906305 _____ C:\Users\Manu\Downloads\Il etait une fois la vie - 01 - La cellule.avi
2017-06-18 23:52 - 2017-06-18 23:58 - 183578716 _____ C:\Users\Manu\Downloads\The.Big.Bang.Theory.S06E05.FRENCH.BDRip.XviD-MiND.WwW.Zone-Telechargement.Ws.avi
2017-06-18 21:15 - 2017-06-18 21:22 - 183466530 _____ C:\Users\Manu\Downloads\The.Big.Bang.Theory.S06E02.FRENCH.BDRip.XviD-MiND.WwW.Zone-Telechargement.Ws.avi
2017-06-18 21:12 - 2017-06-18 21:21 - 183506950 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.524.the.countdown.reflection.WwW.Zone-Telechargement.Ws.avi
2017-06-18 09:00 - 2017-06-18 09:59 - 183492612 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.510.la.quadruple.negation.WwW.Zone-Telechargement.Ws.avi
2017-06-18 08:57 - 2017-06-18 09:05 - 183500804 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.509.la.phobie.de.sheldon.WwW.Zone-Telechargement.Ws.avi
2017-06-18 08:56 - 2017-06-18 09:04 - 183502852 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.508.probleme.d.isolation.WwW.Zone-Telechargement.Ws.avi
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-16 12:32 - 2007-05-30 06:59 - 00757586 _____ C:\Windows\system32\perfh00C.dat
2017-07-16 12:32 - 2007-05-30 06:59 - 00144204 _____ C:\Windows\system32\perfc00C.dat
2017-07-16 12:32 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2017-07-16 12:32 - 2006-11-02 12:33 - 01684240 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-16 12:31 - 2016-10-28 04:17 - 00000000 ____D C:\Users\Manu\AppData\Local\LogMeIn Hamachi
2017-07-16 12:30 - 2016-11-11 13:20 - 00000000 ____D C:\Users\Manu\AppData\Roaming\Skype
2017-07-16 12:29 - 2009-04-03 17:35 - 00000000 ____D C:\Users\Manu\Tracing
2017-07-16 12:26 - 2017-05-31 10:17 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2017-07-16 12:26 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-16 12:26 - 2006-11-02 14:47 - 00003456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-16 12:26 - 2006-11-02 14:47 - 00003456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-16 11:50 - 2016-11-11 10:20 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-07-16 11:50 - 2012-05-24 21:17 - 00000000 ____D C:\Users\Manu\AppData\Roaming\vlc
2017-07-16 11:50 - 2006-11-02 15:01 - 00032574 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-07-16 08:42 - 2009-04-08 19:18 - 00073216 _____ C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-13 22:22 - 2017-01-24 08:18 - 00000000 ____D C:\Users\Manu\AppData\Roaming\ZHP
2017-07-13 22:22 - 2015-12-02 10:57 - 00000000 ____D C:\Program Files\Common Files\IObit
2017-07-13 22:22 - 2015-12-02 10:40 - 00000000 ____D C:\Users\Manu\AppData\Roaming\IObit
2017-07-13 22:14 - 2015-12-02 10:40 - 00000000 ____D C:\ProgramData\IObit
2017-07-13 21:42 - 2017-01-24 08:18 - 00000769 _____ C:\Users\Manu\Desktop\ZHPDiag.lnk
2017-07-13 21:16 - 2017-01-24 08:53 - 00000000 ____D C:\AdwCleaner
2017-07-13 17:37 - 2015-12-02 10:55 - 00000000 ____D C:\ProgramData\ProductData
2017-07-12 19:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\tracing
2017-07-12 11:21 - 2016-11-12 18:56 - 00000000 ____D C:\Users\Manu\AppData\Roaming\Audacity
2017-07-11 21:48 - 2017-06-04 00:59 - 00000000 ____D C:\Users\Manu\Downloads\_
2017-06-24 22:08 - 2009-04-19 10:55 - 00000000 ____D C:\Windows\Minidump
==================== Fichiers à la racine de certains dossiers =======
2016-02-12 00:59 - 2016-02-12 00:59 - 6871040 _____ () C:\Program Files\GUT3A13.tmp
2017-02-19 23:17 - 2017-02-19 23:17 - 7319040 _____ () C:\Users\Manu\AppData\Roaming\agent.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Canlex.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Con-Dex.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0070752 _____ () C:\Users\Manu\AppData\Roaming\Config.xml
2017-02-19 23:17 - 2017-02-19 23:17 - 1908716 _____ () C:\Users\Manu\AppData\Roaming\Hatplus.tst
2016-12-30 17:42 - 2017-02-19 23:16 - 0019056 _____ () C:\Users\Manu\AppData\Roaming\InstallationConfiguration.xml
2016-12-30 17:42 - 2017-02-19 23:16 - 0140288 _____ () C:\Users\Manu\AppData\Roaming\Installer.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\La-Phase.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0018432 _____ () C:\Users\Manu\AppData\Roaming\Main.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0005568 _____ () C:\Users\Manu\AppData\Roaming\md.xml
2017-02-19 23:17 - 2017-02-19 23:17 - 0126464 _____ () C:\Users\Manu\AppData\Roaming\noah.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Tranex.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Treefresh.bin
2016-11-23 16:35 - 2017-05-24 04:44 - 0001648 _____ () C:\Users\Manu\AppData\Roaming\wklnhst.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Zonejob.bin
2010-08-04 22:13 - 2017-02-19 23:46 - 0001356 _____ () C:\Users\Manu\AppData\Local\d3d9caps.dat
2009-04-08 19:18 - 2017-07-16 08:42 - 0073216 _____ () C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-08-07 20:25 - 2011-08-13 12:30 - 0006030 ___SH () C:\Users\Manu\AppData\Local\h4nh30284tnnxk5p50adh
2016-07-28 08:11 - 2016-07-28 08:11 - 0000000 _____ () C:\Users\Manu\AppData\Local\{38D417D3-E595-469E-A5A9-70D1E1DACC19}
2016-04-12 13:09 - 2016-04-12 13:09 - 0000000 _____ () C:\Users\Manu\AppData\Local\{3E3E39F1-3F76-4222-8079-31E9A74A8D41}
2016-07-10 08:35 - 2016-07-10 08:35 - 0000000 _____ () C:\Users\Manu\AppData\Local\{405A5D92-C6DD-410B-8C57-397514D2FDC6}
2015-12-17 12:24 - 2015-12-17 12:24 - 0000000 _____ () C:\Users\Manu\AppData\Local\{75FDC4DC-D211-4303-9AAC-C32FB1D6DB02}
2016-09-08 11:23 - 2016-09-08 11:23 - 0000000 _____ () C:\Users\Manu\AppData\Local\{C1DF2439-8867-4DB9-AFCD-F9E1A4FDE3B0}
2011-08-07 20:25 - 2011-08-13 12:30 - 0006030 ___SH () C:\ProgramData\h4nh30284tnnxk5p50adh
2007-05-29 21:39 - 2009-08-16 16:19 - 0005004 _____ () C:\ProgramData\hpzinstall.log
Certains fichiers dans TEMP:
====================
2017-05-25 03:11 - 2017-05-25 03:17 - 30950664 _____ () C:\Users\Manu\AppData\Local\Temp\vlc-2.2.6-win32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-16 12:36
==================== Fin de FRST.txt ============================
Exécuté par Manu (administrateur) sur PC-DE-MANU (16-07-2017 12:39:20)
Exécuté depuis C:\Users\Manu\Desktop
Profils chargés: Manu (Profils disponibles: Manu & Invité)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium (X86) Langue: Français (France)
Internet Explorer Version 7 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\WINDOWS\System32\SLsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
() C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(SplitCam Co.) C:\Program Files\SplitCam\SplitCamService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\WINDOWS\System32\wpcumi.exe
(OsdMaestro) C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
(Hewlett-Packard Company) C:\hp\support\hpsysdrv.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Realtek Semiconductor) C:\WINDOWS\RtHDVCpl.exe
(Microsoft Corporation) C:\WINDOWS\vVX1000.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.569\SSScheduler.exe
(Microsoft Corporation) C:\WINDOWS\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehmsas.exe
(Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\System32\mobsync.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBAnnounce.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBUpdateNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\WINDOWS\System32\conime.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WPCUMI] => C:\Windows\system32\WpcUmi.exe [176128 2006-11-02] (Microsoft Corporation)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1006264 2007-05-29] (Microsoft Corporation)
HKLM\...\Run: [TkBellExe] => "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
HKLM\...\Run: [OsdMaestro] => C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [118784 2007-02-15] (OsdMaestro)
HKLM\...\Run: [NvSvc] => RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [hpsysdrv] => c:\hp\support\hpsysdrv.exe [65536 2006-09-28] (Hewlett-Packard Company)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.)
HKLM\...\Run: [MSConfig] => C:\Windows\system32\msconfig.exe [222208 2006-11-02] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4390912 2007-03-01] (Realtek Semiconductor)
HKLM\...\Run: [LifeCam] => C:\Program Files\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe [3002048 2017-02-07] (Sony Corporation)
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125440 2006-11-02] (Microsoft Corporation)
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Run: [msnmsgr] => C:\Program Files\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation)
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27226072 2016-11-04] (Skype Technologies S.A.)
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\MountPoints2: {63d3cb40-3cd4-11df-9d78-001bb955c499} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL K:\m.exe /s
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\...\MountPoints2: {b3ed54af-5af1-11e1-b3b9-001bb955c499} - F:\Startme.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2009-04-08]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-05-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.569\SSScheduler.exe (McAfee, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{4AFFE183-C2C4-4C6B-9442-A9E3B4CA9DE4}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-43614646-1600446486-1943608242-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/?pc=WLEM&ocid=bb7hp
SearchScopes: HKLM -> {2D664F91-EF54-48DA-BC69-7811AD043226} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {2D664F91-EF54-48DA-BC69-7811AD043226} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-43614646-1600446486-1943608242-1000 -> {e3bc0642-1dee-4740-9a16-c91c793e452f} URL = hxxp://www.wibeez.com/renseignement?search&q={searchTerms}
BHO: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-12-20] (Oracle Corporation)
BHO: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-20] (Oracle Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} hxxp://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldfr-fr.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile:
FF ProfilePath: C:\Users\Manu\AppData\Roaming\TomTom\HOME\Profiles\sn933li1.default [2010-08-26]
FF Extension: (Pas de nom) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-27] [non signé]
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-20] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default [2017-07-16]
CHR Extension: (Google Docs) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-11]
CHR Extension: (Google Drive) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-11]
CHR Extension: (YouTube) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-11]
CHR Extension: (Easy ToDo) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\keecndolgpjgiiebjongnckoendfjnol [2017-01-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Gmail) - C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-11]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Dedicarz Service; C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe [1970544 2014-09-15] () [Fichier non signé]
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2282504 2017-03-02] (LogMeIn Inc.)
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-01-19] (Hewlett-Packard Co.) [Fichier non signé]
S3 IDriverT; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 LightScribeService; c:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [Fichier non signé]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-10-09] (IObit)
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2017-02-27] (LogMeIn, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.569\McCHSvc.exe [321768 2017-05-25] (McAfee, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [43520 2006-11-08] (Hewlett-Packard) [Fichier non signé]
S2 Orange update Core Service; C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe [734488 2016-08-29] (Orange SA)
R2 PMBDeviceInfoProvider; C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [505024 2017-02-07] (Sony Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53248 2006-11-08] (Hewlett-Packard) [Fichier non signé]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [266496 2016-03-03] (Realtek Semiconductor)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [Fichier non signé]
R2 SpliCamService; C:\Program Files\SplitCam\SplitCamService.exe [321064 2016-10-19] (SplitCam Co.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [265912 2007-05-29] (Microsoft Corporation)
S3 stllssvr; "c:\Program Files\Common Files\SureThing Shared\stllssvr.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [69120 2016-08-04] (Alcor Micro, Corp.)
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2010-02-03] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-12-02] (REALiX(tm))
R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [18944 2016-08-02] (Windows (R) Win 7 DDK provider)
R3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37088 2016-08-02] (Windows (R) Win 7 DDK provider)
S3 VX1000; C:\Windows\System32\DRIVERS\VX1000.sys [1961072 2010-05-20] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-16 12:30 - 2017-07-16 12:39 - 00017090 _____ C:\Users\Manu\Desktop\FRST.txt
2017-07-16 12:29 - 2017-07-16 12:29 - 00000000 ____D C:\Users\Manu\Desktop\FRST-OlderVersion
2017-07-15 15:53 - 2017-07-15 16:06 - 183881728 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 45[E16EFB71].avi
2017-07-15 15:51 - 2017-07-15 16:06 - 207063040 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 44[3A6C4D7C].avi
2017-07-15 14:46 - 2017-07-15 15:00 - 192882688 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 43v2[E2974580].avi
2017-07-15 14:45 - 2017-07-15 14:59 - 202108928 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 42[3D9772DD].avi
2017-07-15 13:48 - 2017-07-15 14:01 - 187318272 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 41v2 [C78E858A].avi
2017-07-15 13:46 - 2017-07-15 13:59 - 176590848 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 40[AC51356B].avi
2017-07-15 13:25 - 2017-07-15 13:39 - 203823104 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 39[4B690F51].avi
2017-07-15 13:24 - 2017-07-15 13:38 - 200474624 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 38{x264}[54642F3A].avi
2017-07-15 10:39 - 2017-07-16 12:29 - 01780736 _____ (Farbar) C:\Users\Manu\Desktop\FRST.exe
2017-07-14 22:11 - 2017-07-14 22:18 - 222126080 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 37[76431567].avi
2017-07-14 22:09 - 2017-07-14 22:16 - 199403520 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 36[FEF630D6].avi
2017-07-14 21:53 - 2017-07-14 21:58 - 185884672 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 35[BFEA3375].avi
2017-07-14 21:52 - 2017-07-14 21:57 - 190801920 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 34[CAA8338F].avi
2017-07-14 21:48 - 2017-07-14 21:51 - 173090816 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 33[CE04DD35].avi
2017-07-14 21:44 - 2017-07-14 21:48 - 193284096 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 32[B8F00484].avi
2017-07-14 21:31 - 2017-07-14 21:37 - 215365632 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 31[C56E4522].avi
2017-07-14 21:30 - 2017-07-14 21:35 - 163915776 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 30[D2B8F105].avi
2017-07-14 21:22 - 2017-07-14 21:28 - 184682496 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 29[0A445021].avi
2017-07-14 21:20 - 2017-07-14 21:27 - 204408832 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 28[B52DEE96].avi
2017-07-14 21:09 - 2017-07-14 21:14 - 189890560 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 27[91E91290].avi
2017-07-14 21:08 - 2017-07-14 21:12 - 143652864 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 26v2[B8982844] .avi
2017-07-14 20:48 - 2017-07-14 20:57 - 146524160 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 25[D47A4179].avi
2017-07-14 20:45 - 2017-07-14 20:54 - 146507776 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 24[2B0BB926].avi
2017-07-14 20:29 - 2017-07-14 20:39 - 146509824 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 23[F9365DE7].avi
2017-07-14 20:28 - 2017-07-14 20:38 - 147636224 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 22[E816C328].avi
2017-07-14 20:08 - 2017-07-14 20:19 - 146520064 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 21[923AF564].avi
2017-07-14 20:06 - 2017-07-14 20:18 - 146520064 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 20v2 [AFDDD920].avi
2017-07-14 19:52 - 2017-07-14 20:02 - 146513920 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 19[1C3053AA].avi
2017-07-14 19:51 - 2017-07-14 20:01 - 146325504 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 18[B7AB545A].avi
2017-07-14 19:38 - 2017-07-14 19:48 - 146515968 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 17[CAD27153].avi
2017-07-14 19:37 - 2017-07-14 19:47 - 146317312 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 16[2E77D044].avi
2017-07-14 17:32 - 2017-07-14 17:44 - 169240576 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 15[9E91E6E4].avi
2017-07-14 17:31 - 2017-07-14 17:42 - 145896576 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 14[4BF698F2].ogm
2017-07-14 17:30 - 2017-07-14 17:30 - 145681392 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 13[DDF24A96].ogm
2017-07-14 17:10 - 2017-07-14 17:17 - 144600514 _____ C:\Users\Manu\Downloads\[Requiem] Tantei Gakuen Q - 12[6F0E13D8].ogm
2017-07-14 17:09 - 2017-07-14 17:09 - 145907146 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 11.ogm
2017-07-14 16:43 - 2017-07-14 16:53 - 145907282 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 10v2.ogm
2017-07-14 16:42 - 2017-07-14 16:52 - 145700191 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 09v2.ogm
2017-07-14 16:29 - 2017-07-14 16:39 - 145694014 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 08.ogm
2017-07-14 16:27 - 2017-07-14 16:36 - 145667102 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 07.ogm
2017-07-14 16:10 - 2017-07-14 16:21 - 145752655 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 06.ogm
2017-07-14 16:09 - 2017-07-14 16:21 - 145708922 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 05.ogm
2017-07-14 15:58 - 2017-07-14 16:08 - 145609148 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 04.ogm
2017-07-14 15:53 - 2017-07-14 16:08 - 197935828 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 03v2.ogm
2017-07-14 15:46 - 2017-07-14 15:58 - 183786750 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 02.ogm
2017-07-14 14:19 - 2017-07-14 14:19 - 00000000 ____D C:\ProgramData\Trymedia
2017-07-14 12:56 - 2017-07-16 12:39 - 00000000 ____D C:\FRST
2017-07-14 00:40 - 2017-07-14 00:40 - 00000928 _____ C:\Users\Manu\Documents\Fabrication cyanure.txt
2017-07-13 20:59 - 2017-07-13 20:59 - 04110280 _____ C:\Users\Manu\Desktop\adwcleaner_6.047.exe
2017-07-13 20:13 - 2017-07-13 22:22 - 00004402 _____ C:\Users\Manu\Desktop\ZHPCleaner.txt
2017-07-13 19:55 - 2017-07-13 21:42 - 00000713 _____ C:\Users\Manu\Desktop\ZHPCleaner.lnk
2017-07-13 19:55 - 2017-07-13 19:55 - 00000000 ____D C:\Users\Manu\AppData\Local\ZHP
2017-07-13 19:54 - 2017-07-13 19:54 - 02799488 _____ C:\Users\Manu\Downloads\zhpcleaner_2017.06.26.105.exe
2017-07-12 22:19 - 2017-07-12 22:19 - 00696358 _____ C:\Users\Manu\Downloads\Cyanure, libre (1).pdf
2017-07-12 22:15 - 2017-07-12 22:15 - 00696358 _____ C:\Users\Manu\Downloads\Cyanure, libre.pdf
2017-07-12 19:46 - 2014-10-29 11:18 - 95883334 _____ C:\Users\Manu\Downloads\cover
2017-07-12 19:46 - 2013-11-27 07:01 - 00000000 ____D C:\Users\Manu\Downloads\Suicide mode d'emploi (éd. 1982)
2017-07-12 19:46 - 2013-09-11 21:40 - 00000000 ____D C:\Users\Manu\Downloads\Bonus Fonds d'ecan Bouddha
2017-07-12 18:33 - 2017-07-12 19:02 - 107065187 _____ C:\Users\Manu\Downloads\Suicide mode d'emploi (éd. 1982).rar
2017-07-12 15:42 - 2017-07-13 14:50 - 00003964 _____ C:\Users\Manu\Documents\Suicide Aurélien Isabelle.txt
2017-07-12 10:30 - 2017-07-12 10:39 - 145852223 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 01v2.ogm
2017-07-12 10:30 - 2017-07-12 10:39 - 145852223 _____ C:\Users\Manu\Downloads\[Outlaw-Hell] Tantei Gakuen Q - 01v2 (1).ogm
2017-07-11 21:48 - 2017-07-11 21:48 - 00993869 _____ C:\Users\Manu\Downloads\gay_Menoboy_Les_naufrages.zip
2017-07-10 20:05 - 2017-07-10 20:27 - 734087169 _____ C:\Users\Manu\Downloads\American.History.X.LibertyLand.co.avi
2017-07-09 15:42 - 2017-07-09 15:59 - 733990912 _____ C:\Users\Manu\Downloads\Merlin.l.Enchanteur.avi
2017-07-05 20:17 - 2017-07-05 21:01 - 1467016304 _____ C:\Users\Manu\Downloads\Stand.by.Me.VF.DvD.BDRip.avi
2017-07-04 15:00 - 2017-07-05 21:07 - 00001152 _____ C:\Users\Manu\Documents\Suicide Aurelien.txt
2017-06-30 19:47 - 2017-06-30 20:44 - 01187714 _____ C:\Users\Manu\Downloads\The_Eye_dvdrip.avi
2017-06-30 19:46 - 2017-06-30 19:46 - 00000000 ____D C:\Users\Manu\Downloads\The_Eye_dvdrip
2017-06-30 19:44 - 2017-06-30 19:44 - 01194482 _____ C:\Users\Manu\Downloads\The_Eye_dvdrip.zip
2017-06-30 18:58 - 2017-06-30 19:28 - 733462528 _____ C:\Users\Manu\Downloads\The.Eye.2008.FRENCH.DVDRip.XviD.avi
2017-06-28 17:05 - 2017-06-28 17:34 - 733885941 _____ C:\Users\Manu\Downloads\Professeur.Layton.et.la.Diva.Eternelle.FRENCH.DVDRip.x264-NOTAG.mkv
2017-06-25 22:13 - 2017-06-25 22:14 - 00000000 ____D C:\Users\Manu\Documents\Zedeo
2017-06-25 22:13 - 2017-06-25 22:14 - 00000000 ____D C:\Users\Manu\AppData\Roaming\Zedeo
2017-06-25 22:13 - 2017-06-25 22:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zedeo
2017-06-25 22:13 - 2017-06-25 22:13 - 00000000 ____D C:\Program Files\Zedeo
2017-06-25 22:11 - 2017-06-25 22:12 - 27305493 _____ (ZedSoft ) C:\Users\Manu\Downloads\Zedeo_Install.exe
2017-06-24 22:08 - 2017-06-24 22:08 - 00144440 _____ C:\Windows\Minidump\Mini062417-01.dmp
2017-06-24 22:04 - 2017-06-24 22:08 - 412204623 _____ C:\Windows\MEMORY.DMP
2017-06-22 14:39 - 2017-06-22 15:28 - 151906305 _____ C:\Users\Manu\Downloads\Il etait une fois la vie - 01 - La cellule.avi
2017-06-18 23:52 - 2017-06-18 23:58 - 183578716 _____ C:\Users\Manu\Downloads\The.Big.Bang.Theory.S06E05.FRENCH.BDRip.XviD-MiND.WwW.Zone-Telechargement.Ws.avi
2017-06-18 21:15 - 2017-06-18 21:22 - 183466530 _____ C:\Users\Manu\Downloads\The.Big.Bang.Theory.S06E02.FRENCH.BDRip.XviD-MiND.WwW.Zone-Telechargement.Ws.avi
2017-06-18 21:12 - 2017-06-18 21:21 - 183506950 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.524.the.countdown.reflection.WwW.Zone-Telechargement.Ws.avi
2017-06-18 09:00 - 2017-06-18 09:59 - 183492612 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.510.la.quadruple.negation.WwW.Zone-Telechargement.Ws.avi
2017-06-18 08:57 - 2017-06-18 09:05 - 183500804 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.509.la.phobie.de.sheldon.WwW.Zone-Telechargement.Ws.avi
2017-06-18 08:56 - 2017-06-18 09:04 - 183502852 _____ C:\Users\Manu\Downloads\epz-the.big.bang.theory.508.probleme.d.isolation.WwW.Zone-Telechargement.Ws.avi
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-16 12:32 - 2007-05-30 06:59 - 00757586 _____ C:\Windows\system32\perfh00C.dat
2017-07-16 12:32 - 2007-05-30 06:59 - 00144204 _____ C:\Windows\system32\perfc00C.dat
2017-07-16 12:32 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2017-07-16 12:32 - 2006-11-02 12:33 - 01684240 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-16 12:31 - 2016-10-28 04:17 - 00000000 ____D C:\Users\Manu\AppData\Local\LogMeIn Hamachi
2017-07-16 12:30 - 2016-11-11 13:20 - 00000000 ____D C:\Users\Manu\AppData\Roaming\Skype
2017-07-16 12:29 - 2009-04-03 17:35 - 00000000 ____D C:\Users\Manu\Tracing
2017-07-16 12:26 - 2017-05-31 10:17 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2017-07-16 12:26 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-16 12:26 - 2006-11-02 14:47 - 00003456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-16 12:26 - 2006-11-02 14:47 - 00003456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-16 11:50 - 2016-11-11 10:20 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-07-16 11:50 - 2012-05-24 21:17 - 00000000 ____D C:\Users\Manu\AppData\Roaming\vlc
2017-07-16 11:50 - 2006-11-02 15:01 - 00032574 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-07-16 08:42 - 2009-04-08 19:18 - 00073216 _____ C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-13 22:22 - 2017-01-24 08:18 - 00000000 ____D C:\Users\Manu\AppData\Roaming\ZHP
2017-07-13 22:22 - 2015-12-02 10:57 - 00000000 ____D C:\Program Files\Common Files\IObit
2017-07-13 22:22 - 2015-12-02 10:40 - 00000000 ____D C:\Users\Manu\AppData\Roaming\IObit
2017-07-13 22:14 - 2015-12-02 10:40 - 00000000 ____D C:\ProgramData\IObit
2017-07-13 21:42 - 2017-01-24 08:18 - 00000769 _____ C:\Users\Manu\Desktop\ZHPDiag.lnk
2017-07-13 21:16 - 2017-01-24 08:53 - 00000000 ____D C:\AdwCleaner
2017-07-13 17:37 - 2015-12-02 10:55 - 00000000 ____D C:\ProgramData\ProductData
2017-07-12 19:34 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\tracing
2017-07-12 11:21 - 2016-11-12 18:56 - 00000000 ____D C:\Users\Manu\AppData\Roaming\Audacity
2017-07-11 21:48 - 2017-06-04 00:59 - 00000000 ____D C:\Users\Manu\Downloads\_
2017-06-24 22:08 - 2009-04-19 10:55 - 00000000 ____D C:\Windows\Minidump
==================== Fichiers à la racine de certains dossiers =======
2016-02-12 00:59 - 2016-02-12 00:59 - 6871040 _____ () C:\Program Files\GUT3A13.tmp
2017-02-19 23:17 - 2017-02-19 23:17 - 7319040 _____ () C:\Users\Manu\AppData\Roaming\agent.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Canlex.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Con-Dex.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0070752 _____ () C:\Users\Manu\AppData\Roaming\Config.xml
2017-02-19 23:17 - 2017-02-19 23:17 - 1908716 _____ () C:\Users\Manu\AppData\Roaming\Hatplus.tst
2016-12-30 17:42 - 2017-02-19 23:16 - 0019056 _____ () C:\Users\Manu\AppData\Roaming\InstallationConfiguration.xml
2016-12-30 17:42 - 2017-02-19 23:16 - 0140288 _____ () C:\Users\Manu\AppData\Roaming\Installer.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\La-Phase.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0018432 _____ () C:\Users\Manu\AppData\Roaming\Main.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0005568 _____ () C:\Users\Manu\AppData\Roaming\md.xml
2017-02-19 23:17 - 2017-02-19 23:17 - 0126464 _____ () C:\Users\Manu\AppData\Roaming\noah.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Tranex.bin
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Treefresh.bin
2016-11-23 16:35 - 2017-05-24 04:44 - 0001648 _____ () C:\Users\Manu\AppData\Roaming\wklnhst.dat
2017-02-19 23:17 - 2017-02-19 23:17 - 0278518 _____ () C:\Users\Manu\AppData\Roaming\Zonejob.bin
2010-08-04 22:13 - 2017-02-19 23:46 - 0001356 _____ () C:\Users\Manu\AppData\Local\d3d9caps.dat
2009-04-08 19:18 - 2017-07-16 08:42 - 0073216 _____ () C:\Users\Manu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-08-07 20:25 - 2011-08-13 12:30 - 0006030 ___SH () C:\Users\Manu\AppData\Local\h4nh30284tnnxk5p50adh
2016-07-28 08:11 - 2016-07-28 08:11 - 0000000 _____ () C:\Users\Manu\AppData\Local\{38D417D3-E595-469E-A5A9-70D1E1DACC19}
2016-04-12 13:09 - 2016-04-12 13:09 - 0000000 _____ () C:\Users\Manu\AppData\Local\{3E3E39F1-3F76-4222-8079-31E9A74A8D41}
2016-07-10 08:35 - 2016-07-10 08:35 - 0000000 _____ () C:\Users\Manu\AppData\Local\{405A5D92-C6DD-410B-8C57-397514D2FDC6}
2015-12-17 12:24 - 2015-12-17 12:24 - 0000000 _____ () C:\Users\Manu\AppData\Local\{75FDC4DC-D211-4303-9AAC-C32FB1D6DB02}
2016-09-08 11:23 - 2016-09-08 11:23 - 0000000 _____ () C:\Users\Manu\AppData\Local\{C1DF2439-8867-4DB9-AFCD-F9E1A4FDE3B0}
2011-08-07 20:25 - 2011-08-13 12:30 - 0006030 ___SH () C:\ProgramData\h4nh30284tnnxk5p50adh
2007-05-29 21:39 - 2009-08-16 16:19 - 0005004 _____ () C:\ProgramData\hpzinstall.log
Certains fichiers dans TEMP:
====================
2017-05-25 03:11 - 2017-05-25 03:17 - 30950664 _____ () C:\Users\Manu\AppData\Local\Temp\vlc-2.2.6-win32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-16 12:36
==================== Fin de FRST.txt ============================