Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-10-2016
Exécuté par marie (administrateur) sur PC-MAISON (29-10-2016 13:24:02)
Exécuté depuis C:\Users\marie\Desktop
Profils chargés: marie (Profils disponibles: marie & Invité)
Platform: Windows 8.1 Connected (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\n360.exe
(Bitdefender) C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\n360.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Bitdefender) C:\Program Files\Bitdefender\60-Second Virus Scanner\pdiface.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.EXE
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe


==================== Registre (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13663448 2014-01-11] (Realtek Semiconductor)
HKLM\...\Run: [EasySettingBox] => C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe [594944 2013-12-26] ()
HKLM\...\Run: [Windows Mobile Device Center] => C:\windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (l'élément de données a 36 caractères en plus).
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-01-24] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [EasySettingBox] => C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe [594944 2013-12-26] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [Monitor] => C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [124536 2014-09-09] (LeapFrog Enterprises, Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25424008 2016-10-24] (Dropbox, Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-16] (Hewlett-Packard)
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\...\Run: [Bitdefender Wallet Agent] => "C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe"
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\...\Run: [UnicoBrowser] => "C:\Users\marie\AppData\Local\UnicoBrowser\Application\unicobrowser.exe"
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\...\Run: [CrashService] => "C:\Users\marie\AppData\Local\UnicoBrowser\Application\crash_service.exe" --max-reports=50 --no-window
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\...\Run: [pdiface] => C:\Program Files\Bitdefender\60-Second Virus Scanner\pdiface.exe [283608 2013-10-30] (Bitdefender)
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27021952 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\...\RunOnce: [Application Restart #4] => C:\Users\marie\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resour (l'élément de données a 583 caractères en plus).
AppInit_DLLs-x32: C:/PROGRA~3/{9DBD7~1/171~1.0/moso.dll => Pas de fichier
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.1.0.dll [2016-10-24] (Dropbox, Inc.)
Startup: C:\Users\marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2016-09-25]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyEnable: [.DEFAULT] => Proxy est activé.
ProxyServer: [.DEFAULT] => http=127.0.0.1:64178;https=127.0.0.1:64178
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{8166F5A4-A957-4685-A354-230983B1EE9B}: [NameServer] 31.168.224.106,5.135.12.52
Tcpip\..\Interfaces\{8166F5A4-A957-4685-A354-230983B1EE9B}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=N360&pvid=22.5.2.15
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=N360&pvid=22.5.2.15
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=N360&pvid=22.5.2.15
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=fr-FR&Src=MSRT&Tid=80033373&OHP=about%3Ablank&OSP=http%3A%2F%2Ffeed.safefinder.com%2F%3Fp%3DmKO%5FAwFzXIpYRak5VLd2%2DqQdkN5729vVFWx880JXKe86%5FrD3Q32s3cw1K4ZX36ZPD0pV5lCue5NQHa5LdSUS1M7ajPC5z5kxbRscjlWF%2DTrdjy334%2DVluW1%5F3jhGCoAWlxUozQhsb5YsnKGOEqgpaT8yELWy4cRo%2DtEPF3IFyAnUEakUigp2zzyuu8UHHwgiQOJ6HR3JlgEFGg%2C%2C%26q%3D%7BsearchTerms%7D
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=N360&pvid=22.5.2.15
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=N360&pvid=22.5.2.15
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE07&ocid=UE07DHP
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=5.5&ar=msnhome
HKU\S-1-5-21-4256841975-2126417351-81735468-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope la valeur est absente
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_coinis_15_01_ch&cd=2XzuyEtN2Y1L1QzuyEtD0Azz0FtDyDyC0D0FzztDyDzy0E0AtN0D0Tzu0StCtDzyyDtN1L2XzutAtFyCtFtCyCtFyCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StDtAyEyB0D0FzztCtGyE0FyCtAtG0F0AtCzztG0B0DtA0DtGyB0CzztCzz0FyByC0EzzyBzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCtAtDtCyBtCzyyBtG0AzztA0BtGyE0Ezz0FtG0A0ByDtCtGyB0F0A0FyDyC0FyE0Dzz0EyC2Q&cr=1161963363&ir=
SearchScopes: HKLM -> {DBB19510-BAFE-41BC-A81E-31504957614F} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKLM-x32 -> {DBB19510-BAFE-41BC-A81E-31504957614F} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-4256841975-2126417351-81735468-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NSBU&chn=32080&geo=FR&ver=22&locale=fr_FR&gct=kwd&qsrc=2869
SearchScopes: HKU\S-1-5-21-4256841975-2126417351-81735468-1001 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-04-29] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-29] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-23] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll Pas de fichier
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-4256841975-2126417351-81735468-1001 -> Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll Pas de fichier
Toolbar: HKU\S-1-5-21-4256841975-2126417351-81735468-1001 -> Pas de nom - {4F524A2D-5350-4500-76A7-7A786E7484D7} - Pas de fichier
Toolbar: HKU\S-1-5-21-4256841975-2126417351-81735468-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKU\S-1-5-21-4256841975-2126417351-81735468-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default [2016-10-29]
FF user.js: detected! => C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default\user.js [2015-10-05]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\cv4gb2r5.default -> Web Search
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\cv4gb2r5.default -> Web Search
FF Homepage: Mozilla\Firefox\Profiles\cv4gb2r5.default -> hxxps://www.google.com/search?q=&ie=utf-8&oe=utf-8&client=firefox-b
FF Extension: (HQProVideo 1.6V06.11) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default\Extensions\2766e15f58d04887a1e82c7d6e3b@ac00a7ac7e9047c683f498.com [2014-11-06] [non signé]
FF Extension: (Cinemax_version2.0) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default\Extensions\9d2db1ce83264e61a7ee63d4f@f932995ed00643899218cf824d695.com [2014-11-06] [non signé]
FF Extension: (savernet) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default\Extensions\GsXIIcKT@m.com [2014-11-16] [non signé]
FF Extension: (jid1OY8Xu5BsKZQa6Ajetpack) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack [2014-09-03] [non signé]
FF Extension: (35106bca6c7848c7ac2856df30b51d2a) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a} [2014-11-09] [non signé]
FF Extension: (Adblock Plus) - C:\Users\marie\AppData\Roaming\Mozilla\Firefox\Profiles\cv4gb2r5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-28]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon [2016-10-17]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-12-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-04-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.Software.com/Software Update;version=3 -> C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll [Pas de fichier]
FF Plugin-x32: @tools.Software.com/Software Update;version=9 -> C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-02-17] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4256841975-2126417351-81735468-1001: SkypePlugin -> C:\Users\marie\AppData\Local\SkypePlugin\7.3.0.483\npGatewayNpapi.dll [2015-05-15] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-4256841975-2126417351-81735468-1001: SkypePlugin64 -> C:\Users\marie\AppData\Local\SkypePlugin\7.3.0.483\npGatewayNpapi-x64.dll [2015-05-15] (Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=fr-fr
CHR StartupUrls: Default -> "hxxp://homepage-web.com/?s=hp&m=start"
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default [2016-10-29]
CHR Extension: (Google Docs) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-12]
CHR Extension: (Google Drive) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-05]
CHR Extension: (YouTube) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-05]
CHR Extension: (Norton Security Toolbar) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-10-03]
CHR Extension: (Recherche Google) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-14]
CHR Extension: (Crazy Shopperama) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmjmfnkoodejjanochmokpkjdhhdfngj [2015-05-27]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2016-06-13]
CHR Extension: (Bing) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-09-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-05]
CHR Extension: (Norton Identity Safe) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-03-18]
CHR Extension: (Fluctuatetrue) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfclalcofelnjnbgjfachdfebddcibjl [2016-10-28]
CHR Extension: (Big Phat Sports) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfioofndlomjineecdglfdbhckkfpbni [2015-05-28]
CHR Extension: (Fall Forest Theme [FVD]) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mckefofnddhejpkanffhkgfgfhajbkom [2016-10-03]
CHR Extension: (mkjcjbkackpifmmpmhjfojjindefnffk) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkjcjbkackpifmmpmhjfojjindefnffk [2014-11-12]
CHR Extension: (Spring Sporting Games) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\monpennifgclhopkmgdbcnaagkgdemch [2015-05-28]
CHR Extension: (Norton Safe) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2016-10-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-13]
CHR Extension: (Gmail) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-14]
CHR Extension: (Chrome Media Router) - C:\Users\marie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-25]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\Exts\Chrome.crx [2016-10-01]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [oilkkkefbalmbfppgjmgjoefbclebkce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4256841975-2126417351-81735468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4256841975-2126417351-81735468-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [oilkkkefbalmbfppgjmgjoefbclebkce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\Exts\Chrome.crx [2016-10-01]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [oilkkkefbalmbfppgjmgjoefbclebkce] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2911464 2016-04-29] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-09] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-09] (Dropbox, Inc.)
R2 DbxSvc; C:\windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
R2 LPDSVC; C:\windows\system32\lpdsvc.dll [48128 2015-10-06] (Microsoft Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\22.8.0.50\N360.exe [289080 2016-09-24] (Symantec Corporation)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [202288 2016-04-28] (Microsoft Corporation) [Fichier non signé]
R2 pdserv; C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe [1445424 2013-11-11] (Bitdefender)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-11] (Realtek Semiconductor)
S3 vmicvss; C:\windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S3 McAPExe; "C:\Program Files\McAfee\MSC\McAPExe.exe" [X]
S4 McMPFSvc; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\BASHDefs\20161027.001\BHDrvx64.sys [1854712 2016-08-18] (Symantec Corporation)
R1 ccSet_N360; C:\windows\system32\drivers\N360x64\1608000.032\ccSetx64.sys [174328 2016-06-02] (Symantec Corporation)
S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 ebdrv; C:\windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-10-04] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-10-04] (Symantec Corporation)
R3 GemCCID; C:\windows\system32\DRIVERS\GemCCID.sys [130944 2014-11-10] (Gemalto)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\IPSDefs\20161028.001\IDSvia64.sys [1012952 2016-10-28] (Symantec Corporation)
R1 SRTSP; C:\windows\System32\Drivers\N360x64\1608000.032\SRTSP64.SYS [784624 2016-09-23] (Symantec Corporation)
R1 SRTSPX; C:\windows\system32\drivers\N360x64\1608000.032\SRTSPX64.SYS [49400 2016-09-23] (Symantec Corporation)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\windows\System32\drivers\N360x64\1608000.032\SYMEFASI64.SYS [1628888 2016-09-23] (Symantec Corporation)
S0 SymELAM; C:\windows\System32\drivers\N360x64\1608000.032\SymELAM.sys [24192 2015-07-11] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2016-10-16] (Symantec Corporation)
R1 SymIRON; C:\windows\system32\drivers\N360x64\1608000.032\Ironx64.SYS [289520 2016-09-23] (Symantec Corporation)
R1 SymNetS; C:\windows\System32\Drivers\N360x64\1608000.032\SYMNETS.SYS [567512 2016-09-23] (Symantec Corporation)
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 EraserUtilDrv11510; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11510.sys [X]
S1 hhsrohrd; \??\C:\windows\system32\drivers\hhsrohrd.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\SDSDefs\20160627.008\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\SDSDefs\20160627.008\EX64.SYS [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-10-29 13:24 - 2016-10-29 13:24 - 00035563 _____ C:\Users\marie\Desktop\FRST.txt
2016-10-29 13:23 - 2016-10-29 13:24 - 00000000 ____D C:\FRST
2016-10-29 13:21 - 2016-10-29 13:21 - 02408448 _____ (Farbar) C:\Users\marie\Desktop\FRST64.exe
2016-10-28 13:41 - 2016-10-28 23:08 - 00000000 ____D C:\Users\marie\Downloads\2. Colonnes de douche-1
2016-10-28 13:40 - 2016-10-28 13:40 - 01720059 _____ C:\Users\marie\Downloads\2. Colonnes de douche-selected.zip
2016-10-28 12:58 - 2016-10-28 12:59 - 00000000 ____D C:\Users\marie\Downloads\1. Cabines de douche-5
2016-10-28 12:58 - 2016-10-28 12:58 - 05173584 _____ C:\Users\marie\Downloads\1. Cabines de douche-selected (4).zip
2016-10-28 08:23 - 2016-10-28 08:23 - 00000000 ____D C:\Users\marie\Downloads\1. Cabines de douche-4
2016-10-28 08:22 - 2016-10-28 08:23 - 07748369 _____ C:\Users\marie\Downloads\1. Cabines de douche-selected (3).zip
2016-10-28 08:21 - 2016-10-28 08:22 - 00000000 ____D C:\Users\marie\Downloads\1. Cabines de douche-3
2016-10-28 08:21 - 2016-10-28 08:21 - 05680583 _____ C:\Users\marie\Downloads\1. Cabines de douche-selected (2).zip
2016-10-27 21:46 - 2016-10-27 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-10-27 15:22 - 2016-10-27 15:22 - 00000000 ____D C:\Users\marie\Downloads\1. Cabines de douche-selected 2
2016-10-27 15:21 - 2016-10-27 15:21 - 02945373 _____ C:\Users\marie\Downloads\1. Cabines de douche-selected (1).zip
2016-10-27 08:05 - 2016-10-27 09:10 - 00000000 ____D C:\Users\marie\Downloads\1. Cabines de douche-1
2016-10-27 08:04 - 2016-10-27 08:05 - 04010130 _____ C:\Users\marie\Downloads\1. Cabines de douche-selected.zip
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-stable.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-dev.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00075888 _____ (Dropbox, Inc.) C:\windows\system32\Drivers\dbx-canary.sys
2016-10-24 15:06 - 2016-10-24 15:06 - 00041576 _____ (Dropbox, Inc.) C:\windows\system32\DbxSvc.exe
2016-10-23 15:08 - 2016-10-27 09:07 - 00000000 ____D C:\Users\marie\Downloads\result Batch 3-selected 8
2016-10-23 15:07 - 2016-10-23 15:08 - 00196633 _____ C:\Users\marie\Downloads\result Batch 3-selected (6).zip
2016-10-23 14:41 - 2016-10-27 09:07 - 00000000 ____D C:\Users\marie\Downloads\result Batch 3-selected 7
2016-10-23 14:41 - 2016-10-23 14:41 - 00175534 _____ C:\Users\marie\Downloads\result Batch 3-selected (5).zip
2016-10-23 14:30 - 2016-10-27 08:05 - 00000000 ____D C:\Users\marie\Downloads\result Batch 3-selected 6
2016-10-23 14:30 - 2016-10-23 14:30 - 00153211 _____ C:\Users\marie\Downloads\result Batch 3-selected (4).zip
2016-10-23 14:07 - 2016-10-27 08:05 - 00000000 ____D C:\Users\marie\Downloads\result Batch 3-selected (3)
2016-10-23 14:06 - 2016-10-23 14:06 - 00212933 _____ C:\Users\marie\Downloads\result Batch 3-selected (3).zip
2016-10-23 13:38 - 2016-10-23 13:38 - 00136033 _____ C:\Users\marie\Downloads\result Batch 3-selected (2).zip
2016-10-23 13:25 - 2016-10-23 13:25 - 00170188 _____ C:\Users\marie\Downloads\result Batch 3-selected (1).zip
2016-10-23 13:16 - 2016-10-27 08:05 - 00000000 ____D C:\Users\marie\Downloads\result Batch 3-selected
2016-10-23 13:16 - 2016-10-23 13:16 - 00170188 _____ C:\Users\marie\Downloads\result Batch 3-selected.zip
2016-10-21 16:27 - 2016-10-21 16:27 - 00235136 _____ C:\Users\marie\Documents\IMG_20161021_0002.pdf
2016-10-21 16:15 - 2016-10-21 16:15 - 00231430 _____ C:\Users\marie\Documents\IMG_20161021_0001.pdf
2016-10-21 06:21 - 2016-10-25 08:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-20 14:47 - 2016-10-20 14:49 - 127783229 _____ C:\Users\marie\Downloads\SANITARY.xlsx
2016-10-19 10:32 - 2016-10-19 10:32 - 00071856 _____ C:\Users\marie\Documents\IMG_20161019_0002.pdf
2016-10-19 09:48 - 2016-10-19 09:48 - 00237355 _____ C:\Users\marie\Documents\IMG_20161019_0001.pdf
2016-10-18 15:35 - 2016-10-18 15:36 - 00179474 _____ C:\Users\marie\Documents\IMG_20161018_0003.pdf
2016-10-17 20:41 - 2016-10-17 20:41 - 00000000 ____D C:\windows\System32\Tasks\Norton 360
2016-10-17 20:35 - 2016-10-17 20:35 - 00003206 _____ C:\windows\System32\Tasks\Norton WSC Integration
2016-10-12 19:48 - 2016-10-24 23:54 - 00828408 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-10-12 19:48 - 2016-10-24 23:54 - 00176632 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-12 08:49 - 2016-10-01 02:22 - 07444312 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-10-12 08:49 - 2016-09-30 09:55 - 25765376 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-10-12 08:49 - 2016-09-30 08:25 - 02895360 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-10-12 08:49 - 2016-09-30 08:25 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-10-12 08:49 - 2016-09-30 08:12 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-10-12 08:49 - 2016-09-30 08:09 - 06048256 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-10-12 08:49 - 2016-09-30 07:47 - 20306944 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-10-12 08:49 - 2016-09-30 07:42 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-10-12 08:49 - 2016-09-30 07:41 - 01033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-10-12 08:49 - 2016-09-30 07:38 - 02286592 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-10-12 08:49 - 2016-09-30 07:33 - 00724992 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-10-12 08:49 - 2016-09-30 07:33 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-10-12 08:49 - 2016-09-30 07:32 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-10-12 08:49 - 2016-09-30 07:32 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-10-12 08:49 - 2016-09-30 07:31 - 02131456 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-10-12 08:49 - 2016-09-30 07:21 - 15257088 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-10-12 08:49 - 2016-09-30 07:17 - 02920960 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-10-12 08:49 - 2016-09-30 07:12 - 04608512 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-10-12 08:49 - 2016-09-30 07:11 - 00880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2016-10-12 08:49 - 2016-09-30 07:06 - 00330752 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2016-10-12 08:49 - 2016-09-30 07:05 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-10-12 08:49 - 2016-09-30 07:05 - 01544192 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-10-12 08:49 - 2016-09-30 07:05 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-10-12 08:49 - 2016-09-30 07:03 - 13653504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-10-12 08:49 - 2016-09-30 06:54 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-10-12 08:49 - 2016-09-30 06:46 - 02444288 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-10-12 08:49 - 2016-09-30 06:43 - 01312768 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-10-12 08:49 - 2016-09-30 06:42 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-10-12 08:49 - 2016-09-17 20:16 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\adsmsext.dll
2016-10-12 08:49 - 2016-09-17 19:53 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-10-12 08:49 - 2016-09-17 19:21 - 00089600 _____ (Microsoft Corporation) C:\windows\SysWOW64\adsmsext.dll
2016-10-12 08:49 - 2016-09-17 19:03 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-10-12 08:49 - 2016-09-17 19:02 - 01446400 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-10-12 08:49 - 2016-09-14 03:53 - 01663184 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2016-10-12 08:49 - 2016-09-14 03:53 - 01523208 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2016-10-12 08:49 - 2016-09-14 03:53 - 01490112 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2016-10-12 08:49 - 2016-09-14 03:53 - 01358952 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2016-10-12 08:49 - 2016-09-13 00:03 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\offreg.dll
2016-10-12 08:49 - 2016-09-12 23:01 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\offreg.dll
2016-10-12 08:49 - 2016-09-09 16:17 - 04170752 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-10-12 08:49 - 2016-09-08 22:41 - 00121176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tm.sys
2016-10-12 08:49 - 2016-09-08 16:00 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2016-10-12 08:49 - 2016-09-08 16:00 - 00138240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2016-10-12 08:49 - 2016-09-08 00:07 - 01988096 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2016-10-12 08:49 - 2016-09-07 23:59 - 01754112 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2016-10-12 08:49 - 2016-09-07 23:59 - 01377792 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2016-10-12 08:49 - 2016-09-07 23:57 - 01560064 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2016-10-12 08:49 - 2016-09-07 23:56 - 01491456 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2016-10-12 08:49 - 2016-08-31 19:22 - 03754496 _____ (Microsoft Corporation) C:\windows\system32\MSVidCtl.dll
2016-10-12 08:49 - 2016-08-31 18:33 - 02410496 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSVidCtl.dll
2016-10-12 08:49 - 2016-08-25 22:50 - 00747008 _____ (Microsoft Corporation) C:\windows\system32\ntshrui.dll
2016-10-12 08:49 - 2016-08-25 21:40 - 00678400 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntshrui.dll
2016-10-12 08:49 - 2016-08-13 02:05 - 09323008 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2016-10-12 08:49 - 2016-08-13 02:03 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vwifibus.sys
2016-10-12 08:49 - 2016-08-13 02:02 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vwififlt.sys
2016-10-12 08:49 - 2016-08-13 02:01 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vwifimp.sys
2016-10-12 08:49 - 2016-08-13 00:35 - 00222208 _____ (Microsoft Corporation) C:\windows\system32\rastapi.dll
2016-10-12 08:49 - 2016-08-13 00:19 - 09323008 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2016-10-12 08:49 - 2016-08-12 23:47 - 15431168 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2016-10-12 08:49 - 2016-08-12 23:17 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastapi.dll
2016-10-12 08:49 - 2016-08-12 22:52 - 13317120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2016-10-12 08:49 - 2016-08-12 03:58 - 02315496 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2016-10-12 08:49 - 2016-08-12 03:58 - 01946176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2016-10-12 08:49 - 2016-08-11 20:33 - 00096256 ____C (Microsoft Corporation) C:\windows\system32\Drivers\parport.sys
2016-10-12 08:49 - 2016-08-11 20:33 - 00083456 ____C (Microsoft Corporation) C:\windows\system32\Drivers\serial.sys
2016-10-12 08:49 - 2016-08-11 20:33 - 00023040 ____C (Microsoft Corporation) C:\windows\system32\Drivers\serenum.sys
2016-10-12 08:49 - 2016-08-11 19:17 - 01574912 _____ (Microsoft Corporation) C:\windows\system32\wbengine.exe
2016-10-12 08:49 - 2016-08-11 15:39 - 00445765 _____ C:\windows\system32\ApnDatabase.xml
2016-10-12 08:49 - 2016-08-11 07:46 - 00420184 ____C (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2016-10-12 08:49 - 2016-08-03 17:42 - 01317888 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Streaming.dll
2016-10-12 08:49 - 2016-08-03 17:36 - 01102848 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Streaming.dll
2016-10-12 08:49 - 2016-08-03 17:36 - 00289792 _____ (Microsoft Corporation) C:\windows\system32\PlayToDevice.dll
2016-10-12 08:49 - 2016-08-03 17:33 - 00215552 _____ (Microsoft Corporation) C:\windows\SysWOW64\PlayToDevice.dll
2016-10-12 08:49 - 2016-07-30 19:12 - 02896384 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2016-10-12 08:49 - 2016-07-30 18:36 - 02537472 _____ (Microsoft Corporation) C:\windows\SysWOW64\esent.dll
2016-10-12 08:49 - 2016-07-26 15:40 - 00162850 _____ C:\windows\SysWOW64\C_932.NLS
2016-10-12 08:49 - 2016-07-26 15:40 - 00162850 _____ C:\windows\system32\C_932.NLS
2016-10-12 08:49 - 2016-07-23 20:18 - 01220096 _____ (Microsoft Corporation) C:\windows\system32\twinui.appcore.dll
2016-10-12 08:49 - 2016-07-23 20:12 - 00954880 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.appcore.dll
2016-10-12 08:47 - 2016-09-13 01:48 - 00085680 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-10-12 08:47 - 2016-09-09 15:38 - 01629184 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-10-12 08:47 - 2016-09-09 15:38 - 01226752 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-10-12 08:47 - 2016-09-09 15:38 - 00586752 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-10-12 08:47 - 2016-09-09 15:38 - 00575488 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-10-12 08:47 - 2016-09-09 15:38 - 00314368 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-10-12 08:47 - 2016-09-09 15:38 - 00273408 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-10-12 08:47 - 2016-09-09 15:38 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2016-10-12 08:47 - 2016-09-09 15:38 - 00129024 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-10-12 08:46 - 2016-08-27 21:44 - 22360288 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2016-10-12 08:46 - 2016-08-27 21:44 - 02755504 _____ (Microsoft Corporation) C:\windows\explorer.exe
2016-10-12 08:46 - 2016-08-27 21:44 - 00133256 _____ (Microsoft Corporation) C:\windows\system32\RestoreOptIn.exe
2016-10-12 08:46 - 2016-08-27 20:26 - 19789232 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2016-10-12 08:46 - 2016-08-27 20:26 - 02411048 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2016-10-12 08:46 - 2016-08-27 20:26 - 00113656 _____ (Microsoft Corporation) C:\windows\SysWOW64\RestoreOptIn.exe
2016-10-12 08:46 - 2016-08-27 18:33 - 02881536 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2016-10-12 08:46 - 2016-08-27 18:11 - 01049600 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2016-10-12 08:46 - 2016-08-27 18:09 - 14466560 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2016-10-12 08:46 - 2016-08-27 17:55 - 12879360 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2016-10-12 08:46 - 2016-08-21 00:24 - 02778624 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-10-12 08:46 - 2016-08-21 00:12 - 02463744 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2016-10-10 12:31 - 2016-10-10 12:31 - 01293357 _____ C:\Users\marie\Desktop\discours scan.pdf
2016-10-09 20:57 - 2016-10-09 20:57 - 00069538 _____ C:\Users\marie\Downloads\COMPTEDEDEPOTS_07633191980_20160405.pdf
2016-10-05 11:47 - 2016-10-05 11:48 - 01698555 _____ C:\Users\marie\Desktop\fiche incription joelucas 2016 2017.pdf
2016-10-04 10:35 - 2016-10-04 10:35 - 00540931 _____ C:\Users\marie\Documents\IMG_20161004_0003.pdf
2016-10-04 10:15 - 2016-10-04 10:16 - 00539319 _____ C:\Users\marie\Documents\IMG_20161004_0002.pdf
2016-10-04 10:13 - 2016-10-04 10:13 - 00551653 _____ C:\Users\marie\Documents\IMG_20161004_0001.pdf
2016-10-04 09:07 - 2016-10-04 09:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-10-03 11:00 - 2016-10-28 12:23 - 00000000 ____D C:\Users\marie\Desktop\bathroom accessories
2016-10-03 10:36 - 2016-10-03 10:36 - 01065376 _____ (Google Inc.) C:\Users\marie\Downloads\ChromeSetup(1).exe
2016-09-29 19:24 - 2016-09-29 19:24 - 00000000 ____D C:\Users\marie\Desktop\titre sejour travail
2016-09-29 19:24 - 2016-09-29 19:24 - 00000000 ____D C:\Users\marie\Desktop\Nouveau dossier

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-10-29 13:21 - 2014-08-24 23:16 - 00001096 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA1cfbfe0a4420113.job
2016-10-29 13:17 - 2014-08-24 07:38 - 00003940 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{C976BD42-02E2-424E-AA60-1C1B0E8B20E1}
2016-10-29 13:15 - 2014-08-24 23:10 - 00000916 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-29 13:09 - 2014-08-31 11:07 - 00001002 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-10-29 13:08 - 2016-08-09 00:02 - 00001204 _____ C:\windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-10-29 12:41 - 2014-08-24 23:10 - 00000000 ____D C:\Users\marie\AppData\Local\Google
2016-10-29 12:39 - 2014-11-22 04:37 - 00001096 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA1d005fd43d6f4b9.job
2016-10-29 12:30 - 2015-01-16 00:21 - 00000000 ____D C:\Users\marie\AppData\Roaming\Skype
2016-10-29 12:26 - 2014-10-18 14:21 - 00001096 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA1cfeacef9b0263.job
2016-10-29 10:12 - 2014-08-24 07:38 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4256841975-2126417351-81735468-1001
2016-10-29 09:40 - 2016-06-02 16:45 - 00000000 ____D C:\windows\System32\Tasks\Remediation
2016-10-29 09:31 - 2016-08-09 00:14 - 00000000 ___RD C:\Users\marie\Dropbox
2016-10-29 09:31 - 2016-02-08 21:55 - 00000000 ___DO C:\Users\marie\OneDrive
2016-10-29 09:29 - 2014-11-22 04:37 - 00001092 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1d005fd40a94dbf.job
2016-10-29 09:29 - 2014-10-18 14:21 - 00001092 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1cfeacee5f97a7.job
2016-10-29 09:29 - 2014-08-24 23:16 - 00001092 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1cfbfe0a1b76d1c.job
2016-10-29 09:29 - 2014-08-24 23:10 - 00000912 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-29 09:28 - 2016-08-09 00:02 - 00001200 _____ C:\windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-10-29 09:28 - 2014-08-24 23:12 - 00000292 _____ C:\windows\Tasks\SpeedUpMyPC Startup.job
2016-10-28 21:48 - 2015-08-27 08:59 - 00540160 ___SH C:\Users\marie\Desktop\Thumbs.db
2016-10-28 21:46 - 2016-09-08 09:07 - 00000352 _____ C:\windows\Tasks\HPCeeScheduleFormarie.job
2016-10-28 21:46 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-10-28 21:45 - 2013-08-22 15:25 - 00524288 ___SH C:\windows\system32\config\BBI
2016-10-28 20:43 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2016-10-28 12:34 - 2015-01-16 00:20 - 00000000 ____D C:\ProgramData\Skype
2016-10-28 10:31 - 2014-08-27 09:51 - 01239552 ___SH C:\Users\marie\Downloads\Thumbs.db
2016-10-27 21:54 - 2016-01-11 07:33 - 00000000 ____D C:\Users\marie\Desktop\Dossier travail avocat
2016-10-27 21:46 - 2016-08-09 00:00 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-10-27 07:33 - 2016-03-21 10:53 - 00000000 ____D C:\Users\marie\AppData\Local\CrashDumps
2016-10-26 21:38 - 2016-09-08 09:07 - 00003166 _____ C:\windows\System32\Tasks\HPCeeScheduleFormarie
2016-10-26 21:38 - 2014-07-25 03:51 - 00800448 _____ C:\windows\system32\perfh00C.dat
2016-10-26 21:38 - 2014-07-25 03:51 - 00174332 _____ C:\windows\system32\perfc00C.dat
2016-10-26 21:38 - 2014-03-18 17:32 - 01828306 _____ C:\windows\system32\PerfStringBackup.INI
2016-10-26 21:38 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2016-10-26 15:10 - 2014-08-31 11:07 - 00003890 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-10-26 15:09 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-10-26 15:09 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\Macromed
2016-10-25 10:11 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2016-10-25 10:06 - 2014-08-24 07:32 - 00000000 ____D C:\Users\marie\AppData\Local\Packages
2016-10-25 10:00 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-25 08:40 - 2013-08-22 15:25 - 00262144 ___SH C:\windows\system32\config\ELAM
2016-10-25 08:39 - 2016-01-06 05:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-25 05:48 - 2014-11-22 04:38 - 00002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-24 14:57 - 2015-01-16 00:20 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-24 14:13 - 2014-08-27 09:43 - 00000000 _____ C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2016-10-22 14:49 - 2016-01-11 07:41 - 00000000 ____D C:\Users\marie\Desktop\Dossier perso
2016-10-21 06:36 - 2016-01-11 07:35 - 00000000 ____D C:\Users\marie\Desktop\Dossier CV et projet enseignement
2016-10-18 23:00 - 2013-08-22 17:36 - 00000000 ____D C:\windows\ELAMBKUP
2016-10-18 14:47 - 2016-01-12 20:27 - 00000000 ____D C:\ProgramData\CanonIJPLM
2016-10-18 01:19 - 2014-08-24 07:32 - 00000000 ____D C:\Users\marie
2016-10-17 20:35 - 2016-06-28 09:54 - 00002224 _____ C:\Users\Public\Desktop\Norton 360.lnk
2016-10-17 20:35 - 2016-03-19 11:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2016-10-17 20:35 - 2016-03-19 11:29 - 00000000 ____D C:\windows\system32\Drivers\N360x64
2016-10-16 23:49 - 2016-03-19 11:42 - 00100592 _____ (Symantec Corporation) C:\windows\system32\Drivers\SYMEVENT64x86.SYS
2016-10-16 23:49 - 2016-03-19 11:42 - 00008319 _____ C:\windows\system32\Drivers\SYMEVENT64x86.CAT
2016-10-13 15:20 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2016-10-12 19:47 - 2013-08-22 16:44 - 00492248 _____ C:\windows\system32\FNTCACHE.DAT
2016-10-12 19:38 - 2015-04-17 07:46 - 00000000 ____D C:\windows\system32\appraiser
2016-10-12 19:38 - 2015-04-06 14:42 - 00000000 ___SD C:\windows\system32\CompatTel
2016-10-12 19:38 - 2013-08-22 17:36 - 00000000 ___RD C:\windows\ToastData
2016-10-12 11:15 - 2015-03-29 20:34 - 00474112 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2016-10-12 09:52 - 2014-08-28 21:33 - 00000000 ____D C:\windows\system32\MRT
2016-10-12 09:29 - 2014-08-28 21:32 - 143495576 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-10-09 19:38 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\FxsTmp
2016-10-05 17:48 - 2014-11-23 10:24 - 00000000 ____D C:\Users\marie\AppData\Local\Microsoft Help
2016-10-04 09:07 - 2015-01-16 00:21 - 00000000 ____D C:\Users\marie\AppData\Local\Skype
2016-09-30 21:26 - 2016-08-09 00:00 - 00000000 ____D C:\Users\marie\AppData\Local\Dropbox

==================== Fichiers à la racine de certains dossiers =======

2016-03-18 11:32 - 2016-03-18 11:32 - 0303978 _____ () C:\ProgramData\1458293143.bdinstall.bin
2016-03-18 11:32 - 2016-03-18 11:32 - 0050054 _____ () C:\ProgramData\1458293514.bdinstall.bin

Certains fichiers dans TEMP:
====================
C:\Users\marie\AppData\Local\Temp\pkcs11wrapper7783812956564140885.dll


==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\windows\system32\wininit.exe => Le fichier est signé numériquement
C:\windows\explorer.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\windows\system32\svchost.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\windows\system32\services.exe => Le fichier est signé numériquement
C:\windows\system32\User32.dll => Le fichier est signé numériquement
C:\windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\windows\system32\userinit.exe => Le fichier est signé numériquement
C:\windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-10-23 17:19

==================== Fin de FRST.txt ============================