cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10.02.2018 02
Exécuté par jean (administrateur) sur ROG-JEAN (12-02-2018 12:40:24)
Exécuté depuis C:\Users\jean\Downloads\Programs
Profils chargés: jean (Profils disponibles: jean)
Platform: Windows 10 Home Version 1709 16299.192 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
() C:\ProgramData\myCANAL\nssm.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\ProgramData\myCANAL\myCANAL.Service.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Windows\SysWOW64\UMonit64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel® Corporation) C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(Akamai Technologies, Inc.) C:\Users\jean\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\jean\AppData\Local\Akamai\netsession_win.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(GoPro) C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\Tray.exe
(OSD Application) C:\Program Files (x86)\ASUS Gaming Mouse\OSD.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Bridge CC (64 Bit)\Bridge.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Bridge CC (64 Bit)\SwitchBoard\SwitchBoard.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3348712 2015-07-29] (ELAN Microelectronics Corp.)
HKLM\...\Run: [UMonit64] => C:\Windows\SysWOW64\UMonit64.exe******************************************************************************************************************************* [40960 2013-03-14] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-22] (AVAST Software)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [297784 2017-09-11] (Apple Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2012-11-27] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe [3423104 2012-08-31] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-24] (cyberlink)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [706392 2017-12-19] (Autodesk, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Run: [HP Photosmart 6520 series (NET)] => C:\Program Files\HP\HP Photosmart 6520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Run: [IDMan] => C:\Users\jean\Downloads\idm\Crack\IDMan.exe [4105328 2018-01-11] (Tonec Inc.)
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10257872 2018-01-09] (Piriform Ltd)
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [41100328 2018-01-29] ()
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Run: [Akamai NetSession Interface] => C:\Users\jean\AppData\Local\Akamai\netsession_win.exe [4490200 2017-09-08] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2007576 2017-02-03] (Autodesk, Inc.)
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Policies\Explorer: []
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2007576 2017-02-03] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CineForm Status.lnk [2017-12-03]
ShortcutTarget: CineForm Status.lnk -> C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe (GoPro)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2014-10-17]
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{B42E4545-2F62-45AB-9B28-E255454CB425}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{6c587bb1-3527-405a-958e-86884a37de4c}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{7e9aee93-b1d9-491c-9d84-b21cff2e83e3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8bb2ad41-c52a-42eb-91a7-bf3170ac8c86}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2641167238-2069359539-4243239494-1002 -> {0B7847A4-E831-4663-908E-830E9EFA4614} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&intl=fr&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Users\jean\Downloads\idm\Crack\IDMIECC64.dll [2017-12-14] (Internet Download Manager, Tonec Inc.)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-06-13] (Qualcomm®Atheros®)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Users\jean\Downloads\idm\Crack\IDMIECC.dll [2017-12-14] (Internet Download Manager, Tonec Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\ssv.dll [2017-07-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-07-23] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-01-21] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: liripikj.default
FF ProfilePath: C:\Users\jean\AppData\Roaming\Mozilla\Firefox\Profiles\liripikj.default [2018-02-10]
FF NetworkProxy: Mozilla\Firefox\Profiles\liripikj.default -> type",
FF SearchPlugin: C:\Users\jean\AppData\Roaming\Mozilla\Firefox\Profiles\liripikj.default\searchplugins\yahoo-ysp.xml [2015-10-23]
FF HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Users\jean\Downloads\idm\Crack\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Users\jean\Downloads\idm\Crack\idmmzcc2.xpi [2017-12-20] [Legacy]
FF HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\jean\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\jean\AppData\Roaming\IDM\idmmzcc5 [2016-11-24] [Legacy] [non signé]
FF HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Users\jean\Downloads\idm\Crack\idmmzcc2.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-01-21] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-06-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-06-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.141.2 -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\dtplugin\npDeployJava1.dll [2017-07-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.141.2 -> C:\Program Files (x86)\Java\jre1.8.0_141\bin\plugin2\npjp2.dll [2017-07-23] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-01-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2641167238-2069359539-4243239494-1002: SkypePlugin -> C:\Users\jean\AppData\Local\SkypePlugin\7.21.0.159\npGatewayNpapi.dll [2016-07-07] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-2641167238-2069359539-4243239494-1002: SkypePlugin64 -> C:\Users\jean\AppData\Local\SkypePlugin\7.21.0.159\npGatewayNpapi-x64.dll [2016-07-07] (Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default [2018-02-12]
CHR Extension: (Google Drive) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-18]
CHR Extension: (Adobe Acrobat) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-06-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-09]
CHR Extension: (AdBlock) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-02-02]
CHR Extension: (Avast Online Security) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-07]
CHR Extension: (Yahoo Partner) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2017-06-25]
CHR Extension: (The Great Suspender) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2018-01-08]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-01-15]
CHR Extension: (Office Online) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2018-02-02]
CHR Extension: (IDM Integration Module) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-01-14]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-24]
CHR Extension: (ScriptSafe) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2018-02-11]
CHR Extension: (Chrome Media Router) - C:\Users\jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-22]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\jean\Downloads\idm\Crack\IDMGCExt.crx [2018-01-13]
CHR HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\jean\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2018-01-15]
CHR HKU\S-1-5-21-2641167238-2069359539-4243239494-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Users\jean\Downloads\idm\Crack\IDMGCExt.crx [2018-01-13]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-12-19] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848 2018-01-05] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-07-23] (ASUS)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2017-12-22] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2017-12-22] (AVAST Software)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2017-09-30] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7968432 2018-01-30] (Microsoft Corporation)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [247768 2013-04-24] (CyberLink)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332144 2017-11-21] (HP Inc.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-06-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-06-23] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2017-05-10] () [Fichier non signé]
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [342016 2013-09-04] (Qualcomm Atheros) [Fichier non signé]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.) [Fichier non signé]
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd.) [Fichier non signé]
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel Corporation)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [127616 2017-10-02] (Thrustmaster®)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-06-13] (Atheros) [Fichier non signé]
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 akw8x64; C:\WINDOWS\System32\drivers\akw8x64.sys [3812048 2013-05-30] (Qualcomm Atheros, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [185096 2017-12-22] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321512 2017-12-22] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199448 2017-12-22] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343768 2017-12-22] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57696 2017-12-22] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [149344 2017-12-22] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2017-12-22] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-14] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [146648 2018-01-20] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110336 2017-12-22] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84384 2017-12-22] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1025176 2017-12-22] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [457896 2018-01-20] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [204456 2017-12-22] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [358672 2017-12-22] (AVAST Software)
S1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW8x64.sys [75056 2013-02-13] (Qualcomm Atheros, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-06-29] (Disc Soft Ltd)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2018-01-08] (Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-08-18] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-08-18] (NVIDIA Corporation)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-07-23] (Windows (R) Win 7 DDK provider)
R3 PXGX112; C:\WINDOWS\system32\drivers\PXGX112.sys [42528 2015-09-09] ( )
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2016-04-19] (Anchorfree Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
U3 aspnet_state; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-02-12 11:59 - 2018-02-12 12:00 - 000000000 ____D C:\FRST
2018-02-12 10:34 - 2018-02-12 10:34 - 000197610 _____ C:\Users\jean\Downloads\JESERRy.ai
2018-02-12 10:08 - 2018-02-12 10:08 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-02-12 09:54 - 2018-02-12 09:54 - 000154709 _____ C:\Users\jean\Downloads\Plan Exercice 1.2 Anthony.dwg
2018-02-12 09:53 - 2018-02-12 09:53 - 000295628 _____ C:\Users\jean\Downloads\M2 - SEA-026661-01- Terrassement - Données Exercices 1.2.pdf
2018-02-12 08:41 - 2018-02-12 08:41 - 000832878 _____ C:\Users\jean\Downloads\Maillot oscaro esport (1).ai
2018-02-12 08:19 - 2018-02-12 08:19 - 000948034 _____ C:\Users\jean\Downloads\AGI-AERA-01-RGB (5).ai
2018-02-11 21:50 - 2018-02-12 09:09 - 000284927 _____ C:\Users\jean\Desktop\ZHPDiag.html
2018-02-11 21:50 - 2018-02-12 09:09 - 000225765 _____ C:\Users\jean\Desktop\ZHPDiag.txt
2018-02-11 21:24 - 2018-02-11 21:24 - 003007360 _____ C:\Users\jean\ZHPDiag3.exe
2018-02-11 21:23 - 2018-02-11 21:24 - 000000769 _____ C:\Users\jean\Desktop\ZHPDiag.lnk
2018-02-11 21:22 - 2018-02-11 21:22 - 000000000 ____D C:\Users\jean\Desktop\jokowear
2018-02-11 21:06 - 2018-02-11 21:15 - 000001811 _____ C:\Users\jean\Desktop\ZHPCleaner.txt
2018-02-11 20:59 - 2018-02-11 20:59 - 000000916 _____ C:\Users\jean\Desktop\ZHPCleaner.lnk
2018-02-11 20:42 - 2018-02-11 21:22 - 000000000 ____D C:\Users\jean\Desktop\image
2018-02-10 09:31 - 2018-02-10 09:31 - 000000000 ___HD C:\OneDriveTemp
2018-02-10 09:26 - 2018-02-10 09:26 - 000278828 _____ C:\Users\jean\Desktop\cc_20180210_092650.reg
2018-02-08 19:32 - 2018-02-08 19:32 - 000000000 ____D C:\Users\Default\AppData\Local\Google
2018-02-08 19:32 - 2018-02-08 19:32 - 000000000 ____D C:\Users\Default User\AppData\Local\Google
2018-02-07 23:32 - 2018-02-07 23:32 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2018-02-07 23:32 - 2018-02-07 23:32 - 000000000 ____D C:\Program Files\Google
2018-02-07 21:15 - 2018-02-07 21:15 - 000832878 _____ C:\Users\jean\Downloads\Maillot oscaro esport.ai
2018-02-05 22:40 - 2018-02-05 22:40 - 003313337 _____ C:\Users\jean\Downloads\Sponsors maquette maillot.psd
2018-02-05 17:57 - 2018-02-05 17:57 - 000402305 _____ C:\Users\jean\Downloads\LogoTypographique .ai
2018-02-05 17:57 - 2018-02-05 17:57 - 000366827 _____ C:\Users\jean\Downloads\LogoNewGoBlack.ai
2018-02-05 17:56 - 2018-02-05 17:56 - 001376959 _____ C:\Users\jean\Downloads\Overkil eSport - Logo.ai
2018-02-04 20:51 - 2018-02-04 20:51 - 000012962 _____ C:\Users\jean\Downloads\Taille maillot.ods
2018-02-02 22:50 - 2018-02-02 22:50 - 000511130 _____ C:\Users\jean\Downloads\Ordersheet Warriors 1.pdf
2018-02-02 22:50 - 2018-02-02 22:50 - 000507118 _____ C:\Users\jean\Downloads\Ordersheet Warriors 2.pdf
2018-02-02 18:46 - 2018-02-02 18:46 - 000003604 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-jean-orto@hotmail.fr
2018-02-02 18:45 - 2018-02-02 18:45 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2018-02-02 18:36 - 2018-02-03 16:39 - 000000000 ____D C:\WINDOWS\Minidump
2018-02-01 21:05 - 2018-02-01 21:05 - 000856229 _____ C:\Users\jean\Downloads\AGI-NIDHOGG-02-RGB (1).ai
2018-02-01 19:38 - 2018-02-01 19:38 - 005051556 _____ C:\Users\jean\Downloads\KozGoPr6N-ExtraLight.otf
2018-02-01 18:17 - 2018-02-01 18:17 - 000856229 _____ C:\Users\jean\Downloads\AGI-NIDHOGG-02-RGB.ai
2018-02-01 18:14 - 2018-02-01 18:14 - 011784234 _____ C:\Users\jean\Downloads\AGI-CRYSTAL GAMING-02-RGB.ai
2018-02-01 18:12 - 2018-02-01 18:12 - 001425173 _____ C:\Users\jean\Downloads\AGI-ZEPHYR-02-RGB.ai
2018-02-01 18:10 - 2018-02-01 18:10 - 005863676 _____ C:\Users\jean\Downloads\AGI-MAGISTARS-01-RGB (1).ai
2018-02-01 18:06 - 2018-02-01 18:06 - 000844221 _____ C:\Users\jean\Downloads\AGI-ICARUS-RGB.ai
2018-01-30 19:46 - 2018-01-30 19:47 - 000000000 ____D C:\Users\jean\Documents\formation
2018-01-30 18:36 - 2018-01-30 18:36 - 000000165 ____H C:\Users\jean\Downloads\~$Commande maillot joueur Fortnite.xlsx
2018-01-30 18:35 - 2018-01-30 18:36 - 000011494 _____ C:\Users\jean\Downloads\Commande maillot joueur Fortnite.xlsx
2018-01-29 18:30 - 2018-01-29 18:30 - 001200334 _____ C:\Users\jean\Downloads\Lab Sans Pro (font).zip
2018-01-28 13:05 - 2018-01-28 13:05 - 000000000 ___SD C:\Users\jean\Documents\Mes formes
2018-01-28 12:06 - 2018-01-28 12:06 - 000000165 ____H C:\Users\jean\Downloads\~$bon de commande Teamates.xlsx
2018-01-28 09:53 - 2018-01-28 09:53 - 000042499 _____ C:\Users\jean\Downloads\bon de commande Teamates.xlsx
2018-01-25 22:32 - 2018-01-25 23:15 - 000000000 ____D C:\Users\jean\Documents\AutoCAD Sheet Sets
2018-01-23 09:11 - 2018-01-23 09:11 - 000508950 _____ C:\Users\jean\Downloads\bon de commande kore.pdf
2018-01-21 23:20 - 2018-01-21 23:20 - 000000000 ____D C:\ProgramData\FLEXnet
2018-01-21 18:34 - 2018-01-21 18:38 - 000000000 ____D C:\Users\jean\Desktop\102GOPRO
2018-01-21 18:29 - 2018-01-21 18:34 - 000000000 ____D C:\Users\jean\Desktop\100GOPRO
2018-01-21 16:33 - 2018-01-21 16:33 - 000510104 _____ C:\Users\jean\Downloads\Bon de commande Wanted jersey noirs + polo + vestes (1).pdf
2018-01-21 16:33 - 2018-01-21 16:33 - 000507208 _____ C:\Users\jean\Downloads\bon de commande Wanted jersey blancs (1).pdf
2018-01-20 16:36 - 2018-01-20 16:36 - 000036920 _____ C:\Users\jean\Downloads\impresion 10-12-14 ans.svgz
2018-01-19 21:46 - 2018-01-19 21:46 - 000001463 _____ C:\Users\Public\Desktop\Application de bureau Autodesk.lnk
2018-01-19 21:42 - 2018-01-19 21:42 - 000002078 _____ C:\Users\Public\Desktop\A360 Desktop.lnk
2018-01-19 21:34 - 2018-01-19 21:46 - 000000000 ____D C:\Program Files (x86)\Autodesk
2018-01-19 21:34 - 2018-01-19 21:34 - 000002114 _____ C:\Users\Public\Desktop\Autodesk ReCap.lnk
2018-01-19 21:34 - 2018-01-19 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk ReCap
2018-01-19 21:24 - 2018-01-19 21:24 - 000002177 _____ C:\Users\Public\Desktop\AutoCAD 2018 - Français (French).lnk
2018-01-19 21:24 - 2018-01-19 21:24 - 000000000 ____D C:\Users\Public\Documents\Autodesk
2018-01-19 21:24 - 2018-01-19 21:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2018 - Français (French)
2018-01-19 21:23 - 2018-01-19 21:23 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared
2018-01-19 21:22 - 2018-01-19 21:22 - 000000000 ____D C:\Users\jean\Documents\Inventor Server SDK ACAD 2018
2018-01-19 21:20 - 2018-01-19 21:42 - 000000000 ____D C:\Program Files\Autodesk
2018-01-19 21:20 - 2018-01-19 21:23 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2018-01-19 21:12 - 2018-01-19 21:17 - 000000000 ____D C:\Users\jean\AppData\Roaming\HP_Easy_Start
2018-01-19 21:03 - 2018-01-19 21:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2018-01-19 20:27 - 2018-01-19 20:28 - 000000000 ____D C:\Users\jean\AppData\Local\Akamai
2018-01-19 20:27 - 2018-01-19 20:27 - 000000000 ____D C:\Autodesk
2018-01-19 17:15 - 2018-01-19 17:16 - 000000000 ____D C:\Users\jean\Downloads\net skim
2018-01-15 20:42 - 2018-02-12 12:31 - 000000000 ___RD C:\Users\jean\Google Drive
2018-01-15 20:42 - 2018-02-11 21:20 - 000001815 _____ C:\Users\jean\Desktop\Google Drive.lnk
2018-01-15 20:37 - 2018-02-08 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2018-01-13 17:35 - 2017-12-29 02:47 - 000226024 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-02-12 12:31 - 2017-05-14 21:13 - 000000000 ____D C:\ProgramData\NVIDIA
2018-02-12 12:30 - 2015-10-06 15:09 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-02-12 12:26 - 2017-12-07 20:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-02-12 12:26 - 2017-12-07 19:43 - 000000000 ____D C:\Users\jean
2018-02-12 12:26 - 2017-12-07 19:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-02-12 12:26 - 2015-07-29 21:35 - 000147728 ____N (CyberLink Corp.) C:\WINDOWS\system32\Drivers\rikvm_38F51D56.sys
2018-02-12 10:32 - 2015-06-21 17:05 - 000000034 _____ C:\Users\jean\AppData\Roaming\AdobeWLCMCache.dat
2018-02-12 10:07 - 2017-09-29 09:45 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2018-02-12 10:02 - 2015-02-26 23:23 - 000000000 ____D C:\AdwCleaner
2018-02-12 09:38 - 2014-12-03 00:39 - 000000000 ____D C:\Users\jean\Desktop\patron
2018-02-12 09:09 - 2017-06-25 14:01 - 000000000 ____D C:\Users\jean\AppData\Roaming\ZHP
2018-02-12 08:55 - 2017-12-07 19:38 - 005465856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-12 08:47 - 2014-10-21 20:03 - 000000000 ____D C:\Users\jean\Downloads\Compressed
2018-02-11 21:20 - 2017-12-23 14:44 - 000001112 _____ C:\Users\jean\Desktop\Electrum.lnk
2018-02-11 21:20 - 2017-12-11 20:54 - 000001280 _____ C:\Users\jean\Desktop\Uplay.lnk
2018-02-11 21:20 - 2017-12-03 10:04 - 000001187 _____ C:\Users\jean\Desktop\GoPro Studio.lnk
2018-02-11 21:20 - 2017-07-31 21:29 - 000002474 _____ C:\Users\jean\Desktop\myCANAL.lnk
2018-02-11 21:20 - 2015-07-08 21:33 - 000001994 _____ C:\Users\jean\Desktop\PokerStars.fr.lnk
2018-02-11 21:20 - 2014-12-07 19:43 - 000000875 _____ C:\Users\jean\Desktop\Internet Download Manager.lnk
2018-02-11 21:20 - 2014-10-22 17:24 - 000001260 _____ C:\Users\jean\Desktop\Téléchargements - Raccourci.lnk
2018-02-11 21:20 - 2014-10-21 19:05 - 000000000 ____D C:\Users\jean\Desktop\asus
2018-02-11 20:57 - 2017-06-25 14:01 - 000000000 ____D C:\Users\jean\AppData\Local\ZHP
2018-02-11 20:56 - 2014-12-07 19:43 - 000000000 ____D C:\Users\jean\AppData\Roaming\IDM
2018-02-11 17:44 - 2014-11-03 20:53 - 000000000 ____D C:\Users\jean\AppData\Local\Adobe
2018-02-11 17:34 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-02-11 13:29 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF
2018-02-10 16:37 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-02-10 09:35 - 2017-12-07 19:42 - 002314150 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-10 09:35 - 2017-09-30 15:40 - 001049858 _____ C:\WINDOWS\system32\perfh00C.dat
2018-02-10 09:35 - 2017-09-30 15:40 - 000228822 _____ C:\WINDOWS\system32\perfc00C.dat
2018-02-10 09:27 - 2014-10-21 20:03 - 000000000 ____D C:\Users\jean\AppData\Roaming\DMCache
2018-02-10 09:22 - 2017-12-07 22:25 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-02-10 09:22 - 2017-12-07 20:08 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-02-09 20:07 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-02-09 20:06 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-02-07 23:32 - 2014-10-21 19:54 - 000000000 ____D C:\Program Files (x86)\Google
2018-02-07 19:03 - 2017-12-07 20:08 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2641167238-2069359539-4243239494-1002
2018-02-07 19:03 - 2015-07-29 21:53 - 000002450 _____ C:\Users\jean\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-02-07 18:21 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-02-06 18:07 - 2018-01-07 17:07 - 000000000 ____D C:\ProgramData\KMSAutoS
2018-02-06 03:49 - 2017-09-29 14:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-02-06 03:49 - 2017-09-29 14:49 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-02-04 20:52 - 2017-12-07 19:44 - 000000000 ____D C:\Users\jean\AppData\Local\Packages
2018-02-02 18:45 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-02-02 18:45 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-02-02 18:40 - 2014-10-28 12:35 - 000000000 ____D C:\Program Files\Microsoft Office
2018-01-21 23:21 - 2015-01-16 16:35 - 000000000 ____D C:\ProgramData\Autodesk
2018-01-21 23:20 - 2015-01-16 16:35 - 000000000 ____D C:\Users\jean\AppData\Roaming\Autodesk
2018-01-21 23:20 - 2015-01-16 16:35 - 000000000 ____D C:\Users\jean\AppData\Local\Autodesk
2018-01-20 09:25 - 2017-12-06 20:17 - 000457896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-01-20 09:25 - 2017-12-06 20:17 - 000146648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-01-19 21:47 - 2014-10-25 18:38 - 000000000 ____D C:\ProgramData\Package Cache
2018-01-19 21:17 - 2014-10-22 19:26 - 000000000 ____D C:\Users\jean\AppData\Local\HP
2018-01-19 21:08 - 2015-02-24 19:55 - 000000000 ____D C:\Users\jean\AppData\Local\ElevatedDiagnostics
2018-01-17 19:07 - 2015-11-15 12:42 - 000000000 ____D C:\Users\jean\AppData\Roaming\Skype
2018-01-15 20:37 - 2014-10-21 19:54 - 000000000 ____D C:\Users\jean\AppData\Local\Google

==================== Fichiers à la racine de certains dossiers =======

2018-02-11 21:24 - 2018-02-11 21:24 - 003007360 _____ () C:\Users\jean\ZHPDiag3.exe
2015-06-21 17:05 - 2018-02-12 10:32 - 000000034 _____ () C:\Users\jean\AppData\Roaming\AdobeWLCMCache.dat
2017-09-06 22:39 - 2017-09-06 22:48 - 000000096 _____ () C:\Users\jean\AppData\Roaming\Camdata.ini
2017-09-06 22:39 - 2017-09-06 22:48 - 000000408 _____ () C:\Users\jean\AppData\Roaming\CamLayout.ini
2017-09-06 22:39 - 2017-09-06 22:48 - 000000408 _____ () C:\Users\jean\AppData\Roaming\CamShapes.ini
2017-09-06 22:38 - 2017-09-06 22:48 - 000004517 _____ () C:\Users\jean\AppData\Roaming\CamStudio.cfg
2014-10-21 14:34 - 2017-12-12 20:09 - 000000074 _____ () C:\Users\jean\AppData\Roaming\sp_data.sys

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2018-02-06 20:28

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité