Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23-02-2017 01
Exécuté par chris (administrateur) sur CHRIS (24-02-2017 09:01:54)
Exécuté depuis C:\Users\chris\Desktop
Profils chargés: chris (Profils disponibles: chris)
Platform: Windows 8.1 Pro (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Stéphane Mitermite) C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-11-12] (IvoSoft)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [438784 2010-12-17] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16407296 2015-12-25] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-02-20] (AVAST Software)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems Inc.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [EaseUS Cleanup] => "C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\CleanUpUI.exe" 10 300
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26220296 2017-02-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [FreeMi UPnP Media Server] => C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe [279552 2016-05-24] (Stéphane Mitermite)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2017-02-10] (Glarysoft Ltd)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104288 2015-09-24] (Adobe Systems Incorporated)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [CyberGhost] => "C:\Program Files\CyberGhost 6\CyberGhost.exe" /autostart /min
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [Glary Memory Optimizer] => C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe [129488 2017-02-10] (Glarysoft Ltd)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: N - "N:\Autoplay.exe" -auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {430ea867-ad27-11e5-8266-00221582139e} - "N:\SETUP.EXE"
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {9328d9ac-b2fe-11e5-827b-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {9328d9bb-b2fe-11e5-827b-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {d42435f9-ee5d-11e5-82ae-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {d7ad1d55-4d9d-11e6-82c5-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {fbc5c1b7-ab3e-11e5-8260-00221582139e} - "O:\Autoplay.exe" -auto
HKU\S-1-5-18\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-18\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 1
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-20] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-20] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2015-12-28]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar988.lnk [2017-02-24]
ShortcutTarget: Sidebar988.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{7339C5F5-F691-4BAC-B384-AAC7F872D127}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{E49A6700-EFFA-4791-8AA4-BBD5B6E94B26}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-20] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (BitComet)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-20] (AVAST Software)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
IE Session Restore: HKU\S-1-5-21-1017623708-2040877482-2343804200-1003 -> est activé.
FireFox:
========
FF DefaultProfile: 7zmwh8sv.default
FF ProfilePath: C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default [2017-02-24]
FF Homepage: Mozilla\Firefox\Profiles\7zmwh8sv.default -> www.google.fr
FF Session Restore: Mozilla\Firefox\Profiles\7zmwh8sv.default -> est activé.
FF Extension: (Firefox Hotfix) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30]
FF Extension: (S3.Google Translator) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\Extensions\s3google@translator.xpi [2016-10-19]
FF Extension: (Torrent Finder Toolbar) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\Extensions\TFToolbarX@torrent-finder.xpi [2016-04-28]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\features\{c1b1ce3f-3adf-4372-a363-cecb75c4bc51}\disableSHA1rollout@mozilla.org.xpi [2017-02-19]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-02-20]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-02-20]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2016-05-17] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-20] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-20] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default [2017-02-24]
CHR Extension: (Google Slides) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-25]
CHR Extension: (Traducteur pour toutes les langues) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2015-12-25]
CHR Extension: (Google Docs) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-25]
CHR Extension: (Google Drive) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-25]
CHR Extension: (YouTube) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-25]
CHR Extension: (Recherche Google) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-25]
CHR Extension: (Email This Page) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkfkjckpdlhaiifglhkakloaghafbhdo [2015-12-25]
CHR Extension: (Adobe Acrobat) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-31]
CHR Extension: (Avast Passwords) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-02-20]
CHR Extension: (Google Sheets) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-15]
CHR Extension: (Traducteur Français vers Anglais) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmbniahcmboobknlmjmcidaalmfmjngh [2015-12-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-25]
CHR Extension: (Gmail) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-25]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
Opera:
=======
OPR Extension: (Google™ Translator (web-extension)) - C:\Users\chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\jgnebchahhepphmokjeohhoebakpfggp [2017-02-24]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7142136 2017-02-20] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-20] (AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-05] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-02-07] (Dropbox, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-10-13] (NVIDIA Corporation)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2664568 2016-12-26] (AnchorFree Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-10-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-10-13] (NVIDIA Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 CG6Service; "C:\Program Files\CyberGhost 6\CyberGhost.Service.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AFTrafMgr1.1; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_1_64.sys [54712 2016-12-26] (AnchorFree Inc.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [309784 2017-02-20] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-02-20] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334600 2017-02-20] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-02-20] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-02-20] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32088 2017-02-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [126088 2017-02-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [100640 2017-02-20] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [74680 2017-02-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [991496 2017-02-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [547904 2017-02-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162528 2017-02-20] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [337080 2017-02-20] (AVAST Software)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-25] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2015-12-25] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-12-28] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77416 2017-01-20] ()
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-12-25] (Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-12-25] (REALiX(tm))
S1 ISODisk; C:\Windows\SysWow64\Drivers\ISODisk.sys [9600 2006-04-26] () [Fichier non signé]
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [176584 2017-02-22] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [110536 2017-02-24] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-02-24] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [251848 2017-02-24] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [91584 2017-02-24] (Malwarebytes)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2541200 2017-01-17] (MediaTek Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-10-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2017-01-17] (NVIDIA Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [418784 2017-01-17] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2017-01-17] (Synaptics Incorporated)
R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42064 2016-12-26] (Anchorfree Inc.)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [121248 2016-09-12] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [195936 2016-09-12] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [135824 2016-09-12] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-24 08:27 - 2017-02-24 09:02 - 00030152 _____ C:\Users\chris\Desktop\FRST.txt
2017-02-24 08:26 - 2017-02-24 09:01 - 00000000 ____D C:\FRST
2017-02-24 08:25 - 2017-02-24 08:25 - 02423296 _____ (Farbar) C:\Users\chris\Desktop\FRST64.exe
2017-02-24 08:14 - 2017-02-24 08:14 - 00000000 ____D C:\Users\chris\AppData\Local\CrashRpt
2017-02-23 15:54 - 2017-02-23 15:54 - 00000193 _____ C:\Windows\WORDPAD.INI
2017-02-23 07:53 - 2017-02-23 07:54 - 16761896 _____ C:\Users\chris\Downloads\Glary_Utilities_v5.69.0.90.exe
2017-02-22 23:58 - 2017-02-24 08:20 - 00091584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-02-22 23:58 - 2017-02-24 08:14 - 00251848 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-22 23:58 - 2017-02-24 08:14 - 00110536 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-02-22 23:58 - 2017-02-24 08:14 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-02-22 23:58 - 2017-02-22 23:58 - 00176584 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-02-22 23:57 - 2017-02-22 23:57 - 00001853 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-02-22 23:57 - 2017-02-22 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-22 23:57 - 2017-02-22 23:57 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-22 23:57 - 2017-02-22 23:57 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-22 23:57 - 2017-01-20 07:47 - 00077416 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-20 20:33 - 2017-02-20 20:33 - 00000000 ____D C:\Users\chris\AppData\Local\AVAST Software
2017-02-20 20:27 - 2017-02-20 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-02-20 19:47 - 2017-02-20 19:47 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-02-20 19:47 - 2017-02-20 19:46 - 00398408 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-02-20 19:47 - 2017-02-20 19:46 - 00334600 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-02-20 19:47 - 2017-02-20 19:46 - 00309784 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-02-20 19:47 - 2017-02-20 19:46 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-02-20 19:47 - 2017-02-20 19:46 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-02-13 12:33 - 2017-02-13 12:33 - 00000053 _____ C:\Users\chris\Downloads\google5be6e85d7f80f813.html
2017-02-12 18:36 - 2017-02-12 18:36 - 02078720 _____ C:\Users\chris\Downloads\putty-0.67-installer.msi
2017-02-11 14:00 - 2017-02-11 14:00 - 00002900 _____ C:\Users\chris\Downloads\cup_1.3.zip
2017-02-08 00:50 - 2017-02-08 00:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-07 05:38 - 2017-02-07 05:38 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-02-05 17:25 - 2017-02-05 17:25 - 00010323 _____ C:\Users\chris\Downloads\P2066210001 (3).pdf
2017-02-05 17:24 - 2017-02-05 17:24 - 00010323 _____ C:\Users\chris\Downloads\P2066210001.pdf
2017-02-05 17:24 - 2017-02-05 17:24 - 00010323 _____ C:\Users\chris\Downloads\P2066210001 (2).pdf
2017-02-05 17:24 - 2017-02-05 17:24 - 00010323 _____ C:\Users\chris\Downloads\P2066210001 (1).pdf
2017-02-04 17:42 - 2017-02-04 17:42 - 00249589 _____ C:\Users\chris\Downloads\CustomSTMT2014févr.04_2014mars29.PDF
2017-02-02 20:27 - 2017-02-02 20:27 - 00000012 _____ C:\Users\chris\AppData\Roaming\Network Meter_Usage.ini
2017-02-02 20:26 - 2017-02-24 00:32 - 00000137 _____ C:\Users\chris\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2017-02-02 20:26 - 2017-02-02 20:26 - 00000041 _____ C:\Users\chris\IP_Log_Data.js
2017-01-31 17:33 - 2017-01-31 17:33 - 00003496 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-CHRIS-chris
2017-01-28 16:36 - 2017-01-28 16:36 - 00362226 _____ C:\Users\chris\Documents\Demande-de-devis-2016.pdf
2017-01-28 16:12 - 2017-01-28 16:12 - 00412857 _____ C:\Users\chris\Downloads\cn-fiche-imitation-bois-a-lasurer-2013.pdf
2017-01-28 16:11 - 2017-01-28 16:11 - 01109609 _____ C:\Users\chris\Downloads\cn-fiche-modula-lames-bois-2013.pdf
2017-01-28 16:10 - 2017-01-28 16:10 - 00360740 _____ C:\Users\chris\Downloads\cn-fiche imitation clin et poteau differe.pdf
2017-01-25 08:19 - 2017-01-25 08:14 - 00110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-24 08:57 - 2015-12-25 16:37 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1017623708-2040877482-2343804200-1003
2017-02-24 08:51 - 2015-12-25 17:26 - 00000000 ____D C:\ProgramData\ProductData
2017-02-24 08:27 - 2015-12-25 16:17 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-24 08:22 - 2015-12-25 18:49 - 00000000 ____D C:\Users\chris\AppData\Local\Clipboarder
2017-02-24 08:21 - 2015-12-25 21:08 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
2017-02-24 08:19 - 2016-06-25 19:41 - 00002880 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (chris)
2017-02-24 08:17 - 2016-11-19 09:02 - 00000000 ____D C:\Users\chris\AppData\LocalLow\Mozilla
2017-02-24 08:16 - 2017-01-05 19:02 - 00000000 ___RD C:\Users\chris\Dropbox
2017-02-24 08:15 - 2015-12-27 09:47 - 00000000 ____D C:\Users\chris\Documents\Fichiers Outlook
2017-02-24 08:15 - 2015-12-25 18:10 - 00000000 ____D C:\Users\chris\AppData\Local\Sidebar7
2017-02-24 08:13 - 2017-01-05 18:56 - 00001192 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-02-24 08:13 - 2016-08-25 22:52 - 00000000 ____D C:\Program Files\CyberGhost 6
2017-02-24 08:13 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-24 00:07 - 2017-01-05 18:56 - 00001196 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-02-23 15:50 - 2015-12-25 19:12 - 00000000 ____D C:\Users\chris\AppData\Roaming\IrfanView
2017-02-23 11:34 - 2015-12-25 18:02 - 00000000 ____D C:\Users\chris\AppData\Local\ClassicShell
2017-02-23 08:46 - 2015-12-25 16:08 - 00003866 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1451056112
2017-02-23 08:46 - 2015-12-25 16:08 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-02-23 08:46 - 2015-12-25 16:08 - 00000000 ____D C:\Program Files (x86)\Opera
2017-02-23 07:56 - 2016-01-12 07:12 - 00001112 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2017-02-23 07:56 - 2015-12-25 21:08 - 00003306 _____ C:\Windows\System32\Tasks\GlaryInitialize 5
2017-02-23 07:56 - 2015-12-25 21:08 - 00002966 _____ C:\Windows\System32\Tasks\GU5SkipUAC
2017-02-23 07:56 - 2015-12-25 21:08 - 00001124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2017-02-23 07:47 - 2016-02-20 09:47 - 00000000 ____D C:\ProgramData\Ashampoo
2017-02-22 23:50 - 2016-01-10 15:14 - 00533504 ___SH C:\Users\chris\Desktop\Thumbs.db
2017-02-22 17:47 - 2015-12-26 20:59 - 00059904 ___SH C:\Users\chris\Downloads\Thumbs.db
2017-02-21 18:01 - 2015-04-10 02:09 - 00811108 _____ C:\Windows\system32\perfh00C.dat
2017-02-21 18:01 - 2015-04-10 02:09 - 00159206 _____ C:\Windows\system32\perfc00C.dat
2017-02-21 18:01 - 2014-11-21 08:38 - 01824138 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-21 18:01 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2017-02-21 09:37 - 2015-12-25 16:27 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-20 22:42 - 2016-07-04 14:17 - 00003912 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458686730
2017-02-20 22:42 - 2016-03-22 23:45 - 00001029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-02-20 20:28 - 2016-07-24 15:09 - 00000000 ____D C:\Users\chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-20 20:28 - 2015-12-25 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-20 20:28 - 2015-12-25 16:12 - 00000000 ____D C:\Program Files\WinRAR
2017-02-20 20:27 - 2015-12-25 16:29 - 00000000 ____D C:\Program Files\7-Zip
2017-02-20 19:47 - 2015-12-25 16:28 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-02-20 19:47 - 2015-12-25 16:28 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148761644364004
2017-02-20 19:47 - 2015-12-25 16:28 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-02-20 19:47 - 2015-12-25 16:28 - 00162528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-02-20 19:47 - 2015-12-25 16:28 - 00074680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-02-20 19:46 - 2016-03-22 23:45 - 00032088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00991496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00126088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00100640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-02-20 17:14 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-02-19 20:32 - 2016-01-06 21:04 - 00000600 _____ C:\Users\chris\AppData\Roaming\winscp.rnd
2017-02-17 17:57 - 2016-01-03 09:20 - 00000000 ____D C:\Users\chris\Documents\envoi
2017-02-15 12:22 - 2017-01-01 19:07 - 00000600 _____ C:\Users\chris\AppData\Local\PUTTY.RND
2017-02-14 15:21 - 2016-12-15 14:15 - 00036352 ___SH C:\Users\chris\Documents\Thumbs.db
2017-02-12 11:07 - 2017-01-05 18:56 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-11 12:13 - 2016-09-20 09:08 - 00000000 ____D C:\Users\chris\.VirtualBox
2017-02-06 23:44 - 2015-12-25 16:10 - 00002229 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-05 11:31 - 2016-07-27 20:17 - 00000000 ____D C:\Users\chris\AppData\Roaming\vlc
2017-02-04 10:25 - 2016-01-10 15:15 - 00000128 _____ C:\Users\chris\Desktop\acminfo_maven.url
2017-02-02 20:26 - 2015-12-25 16:31 - 00000000 ____D C:\Users\chris
2017-02-02 19:38 - 2017-01-01 10:27 - 00000000 ____D C:\Users\chris\AppData\Roaming\FileZilla
2017-02-02 19:37 - 2017-01-08 23:12 - 00000000 ____D C:\Users\chris\AppData\Local\CrashDumps
2017-02-01 08:38 - 2015-12-25 16:17 - 00000000 ____D C:\ProgramData\Adobe
2017-01-31 17:41 - 2015-12-25 21:25 - 00000000 ____D C:\Users\chris\AppData\Local\Adobe
2017-01-30 07:41 - 2015-12-25 16:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-29 19:19 - 2016-12-13 20:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-28 11:35 - 2016-03-17 22:53 - 00000000 ____D C:\Users\chris\Documents\Bati-Resi Suite
2017-01-25 08:19 - 2015-12-25 16:43 - 00000000 ____D C:\Program Files (x86)\Java
2017-01-25 08:19 - 2015-12-25 16:12 - 00000000 ____D C:\Program Files\Java
2017-01-25 08:19 - 2015-12-25 16:11 - 00000000 ____D C:\ProgramData\Oracle
2017-01-25 08:19 - 2015-12-25 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-25 08:14 - 2015-12-25 16:12 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-25 08:13 - 2015-12-25 16:44 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-01-25 08:12 - 2015-12-25 17:26 - 00000000 ____D C:\Users\chris\AppData\Roaming\IObit
==================== Fichiers à la racine de certains dossiers =======
2017-02-02 20:27 - 2017-02-02 20:27 - 0000012 _____ () C:\Users\chris\AppData\Roaming\Network Meter_Usage.ini
2017-02-02 20:26 - 2017-02-24 00:32 - 0000137 _____ () C:\Users\chris\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2016-01-06 21:04 - 2017-02-19 20:32 - 0000600 _____ () C:\Users\chris\AppData\Roaming\winscp.rnd
2017-01-01 19:07 - 2017-02-15 12:22 - 0000600 _____ () C:\Users\chris\AppData\Local\PUTTY.RND
2015-12-28 19:49 - 2015-12-28 19:49 - 0001060 _____ () C:\Users\chris\AppData\Local\recently-used.xbel
2016-07-16 10:24 - 2017-01-08 23:43 - 0007597 _____ () C:\Users\chris\AppData\Local\resmon.resmoncfg
2016-07-09 07:05 - 2016-12-10 17:57 - 0001326 _____ () C:\Users\chris\AppData\Local\TempIM-Config.xml
2015-12-25 17:50 - 2015-12-25 17:50 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Fichiers à déplacer ou supprimer:
====================
C:\Users\chris\IP_Log_Data.js
Certains fichiers dans TEMP:
====================
2017-02-23 15:50 - 2017-02-20 20:28 - 0036312 _____ (Irfan Skiljan, IrfanView) C:\Users\chris\AppData\Local\Temp\iv_uninstall.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-22 03:38
==================== Fin de FRST.txt ============================
Exécuté par chris (administrateur) sur CHRIS (24-02-2017 09:01:54)
Exécuté depuis C:\Users\chris\Desktop
Profils chargés: chris (Profils disponibles: chris)
Platform: Windows 8.1 Pro (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Stéphane Mitermite) C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-11-12] (IvoSoft)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [438784 2010-12-17] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16407296 2015-12-25] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-02-20] (AVAST Software)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems Inc.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [EaseUS Cleanup] => "C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\CleanUpUI.exe" 10 300
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26220296 2017-02-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [FreeMi UPnP Media Server] => C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe [279552 2016-05-24] (Stéphane Mitermite)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2017-02-10] (Glarysoft Ltd)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104288 2015-09-24] (Adobe Systems Incorporated)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [CyberGhost] => "C:\Program Files\CyberGhost 6\CyberGhost.exe" /autostart /min
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [Glary Memory Optimizer] => C:\Program Files (x86)\Glary Utilities 5\memdefrag.exe [129488 2017-02-10] (Glarysoft Ltd)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: N - "N:\Autoplay.exe" -auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {430ea867-ad27-11e5-8266-00221582139e} - "N:\SETUP.EXE"
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {9328d9ac-b2fe-11e5-827b-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {9328d9bb-b2fe-11e5-827b-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {d42435f9-ee5d-11e5-82ae-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {d7ad1d55-4d9d-11e6-82c5-00221582139e} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL O:\autorun.exe /auto
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\...\MountPoints2: {fbc5c1b7-ab3e-11e5-8260-00221582139e} - "O:\Autoplay.exe" -auto
HKU\S-1-5-18\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-18\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 1
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-20] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-20] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2015-12-28]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar988.lnk [2017-02-24]
ShortcutTarget: Sidebar988.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{7339C5F5-F691-4BAC-B384-AAC7F872D127}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{E49A6700-EFFA-4791-8AA4-BBD5B6E94B26}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKU\S-1-5-21-1017623708-2040877482-2343804200-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-20] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (BitComet)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-20] (AVAST Software)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
IE Session Restore: HKU\S-1-5-21-1017623708-2040877482-2343804200-1003 -> est activé.
FireFox:
========
FF DefaultProfile: 7zmwh8sv.default
FF ProfilePath: C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default [2017-02-24]
FF Homepage: Mozilla\Firefox\Profiles\7zmwh8sv.default -> www.google.fr
FF Session Restore: Mozilla\Firefox\Profiles\7zmwh8sv.default -> est activé.
FF Extension: (Firefox Hotfix) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30]
FF Extension: (S3.Google Translator) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\Extensions\s3google@translator.xpi [2016-10-19]
FF Extension: (Torrent Finder Toolbar) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\Extensions\TFToolbarX@torrent-finder.xpi [2016-04-28]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\chris\AppData\Roaming\Mozilla\Firefox\Profiles\7zmwh8sv.default\features\{c1b1ce3f-3adf-4372-a363-cecb75c4bc51}\disableSHA1rollout@mozilla.org.xpi [2017-02-19]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-02-20]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-02-20]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2016-05-17] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-20] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-20] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default [2017-02-24]
CHR Extension: (Google Slides) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-25]
CHR Extension: (Traducteur pour toutes les langues) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2015-12-25]
CHR Extension: (Google Docs) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-25]
CHR Extension: (Google Drive) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-25]
CHR Extension: (YouTube) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-25]
CHR Extension: (Recherche Google) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-25]
CHR Extension: (Email This Page) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkfkjckpdlhaiifglhkakloaghafbhdo [2015-12-25]
CHR Extension: (Adobe Acrobat) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-31]
CHR Extension: (Avast Passwords) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-02-20]
CHR Extension: (Google Sheets) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-15]
CHR Extension: (Traducteur Français vers Anglais) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmbniahcmboobknlmjmcidaalmfmjngh [2015-12-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-25]
CHR Extension: (Gmail) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-25]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
Opera:
=======
OPR Extension: (Google™ Translator (web-extension)) - C:\Users\chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\jgnebchahhepphmokjeohhoebakpfggp [2017-02-24]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7142136 2017-02-20] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-20] (AVAST Software)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-05] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-02-07] (Dropbox, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-10-13] (NVIDIA Corporation)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2664568 2016-12-26] (AnchorFree Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-10-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-10-13] (NVIDIA Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 CG6Service; "C:\Program Files\CyberGhost 6\CyberGhost.Service.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AFTrafMgr1.1; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_1_64.sys [54712 2016-12-26] (AnchorFree Inc.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [309784 2017-02-20] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-02-20] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334600 2017-02-20] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-02-20] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-02-20] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32088 2017-02-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [126088 2017-02-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [100640 2017-02-20] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [74680 2017-02-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [991496 2017-02-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [547904 2017-02-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162528 2017-02-20] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [337080 2017-02-20] (AVAST Software)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-25] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2015-12-25] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-12-28] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77416 2017-01-20] ()
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-12-25] (Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-12-25] (REALiX(tm))
S1 ISODisk; C:\Windows\SysWow64\Drivers\ISODisk.sys [9600 2006-04-26] () [Fichier non signé]
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [176584 2017-02-22] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [110536 2017-02-24] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-02-24] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [251848 2017-02-24] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [91584 2017-02-24] (Malwarebytes)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2541200 2017-01-17] (MediaTek Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-10-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2017-01-17] (NVIDIA Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [418784 2017-01-17] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2017-01-17] (Synaptics Incorporated)
R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42064 2016-12-26] (Anchorfree Inc.)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [121248 2016-09-12] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [195936 2016-09-12] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [135824 2016-09-12] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44024 2015-02-04] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [264000 2015-02-04] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-24 08:27 - 2017-02-24 09:02 - 00030152 _____ C:\Users\chris\Desktop\FRST.txt
2017-02-24 08:26 - 2017-02-24 09:01 - 00000000 ____D C:\FRST
2017-02-24 08:25 - 2017-02-24 08:25 - 02423296 _____ (Farbar) C:\Users\chris\Desktop\FRST64.exe
2017-02-24 08:14 - 2017-02-24 08:14 - 00000000 ____D C:\Users\chris\AppData\Local\CrashRpt
2017-02-23 15:54 - 2017-02-23 15:54 - 00000193 _____ C:\Windows\WORDPAD.INI
2017-02-23 07:53 - 2017-02-23 07:54 - 16761896 _____ C:\Users\chris\Downloads\Glary_Utilities_v5.69.0.90.exe
2017-02-22 23:58 - 2017-02-24 08:20 - 00091584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-02-22 23:58 - 2017-02-24 08:14 - 00251848 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-22 23:58 - 2017-02-24 08:14 - 00110536 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-02-22 23:58 - 2017-02-24 08:14 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-02-22 23:58 - 2017-02-22 23:58 - 00176584 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-02-22 23:57 - 2017-02-22 23:57 - 00001853 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-02-22 23:57 - 2017-02-22 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-22 23:57 - 2017-02-22 23:57 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-22 23:57 - 2017-02-22 23:57 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-22 23:57 - 2017-01-20 07:47 - 00077416 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-20 20:33 - 2017-02-20 20:33 - 00000000 ____D C:\Users\chris\AppData\Local\AVAST Software
2017-02-20 20:27 - 2017-02-20 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-02-20 19:47 - 2017-02-20 19:47 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-02-20 19:47 - 2017-02-20 19:46 - 00398408 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-02-20 19:47 - 2017-02-20 19:46 - 00334600 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-02-20 19:47 - 2017-02-20 19:46 - 00309784 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-02-20 19:47 - 2017-02-20 19:46 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-02-20 19:47 - 2017-02-20 19:46 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-02-13 12:33 - 2017-02-13 12:33 - 00000053 _____ C:\Users\chris\Downloads\google5be6e85d7f80f813.html
2017-02-12 18:36 - 2017-02-12 18:36 - 02078720 _____ C:\Users\chris\Downloads\putty-0.67-installer.msi
2017-02-11 14:00 - 2017-02-11 14:00 - 00002900 _____ C:\Users\chris\Downloads\cup_1.3.zip
2017-02-08 00:50 - 2017-02-08 00:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-07 05:38 - 2017-02-07 05:38 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-02-05 17:25 - 2017-02-05 17:25 - 00010323 _____ C:\Users\chris\Downloads\P2066210001 (3).pdf
2017-02-05 17:24 - 2017-02-05 17:24 - 00010323 _____ C:\Users\chris\Downloads\P2066210001.pdf
2017-02-05 17:24 - 2017-02-05 17:24 - 00010323 _____ C:\Users\chris\Downloads\P2066210001 (2).pdf
2017-02-05 17:24 - 2017-02-05 17:24 - 00010323 _____ C:\Users\chris\Downloads\P2066210001 (1).pdf
2017-02-04 17:42 - 2017-02-04 17:42 - 00249589 _____ C:\Users\chris\Downloads\CustomSTMT2014févr.04_2014mars29.PDF
2017-02-02 20:27 - 2017-02-02 20:27 - 00000012 _____ C:\Users\chris\AppData\Roaming\Network Meter_Usage.ini
2017-02-02 20:26 - 2017-02-24 00:32 - 00000137 _____ C:\Users\chris\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2017-02-02 20:26 - 2017-02-02 20:26 - 00000041 _____ C:\Users\chris\IP_Log_Data.js
2017-01-31 17:33 - 2017-01-31 17:33 - 00003496 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-CHRIS-chris
2017-01-28 16:36 - 2017-01-28 16:36 - 00362226 _____ C:\Users\chris\Documents\Demande-de-devis-2016.pdf
2017-01-28 16:12 - 2017-01-28 16:12 - 00412857 _____ C:\Users\chris\Downloads\cn-fiche-imitation-bois-a-lasurer-2013.pdf
2017-01-28 16:11 - 2017-01-28 16:11 - 01109609 _____ C:\Users\chris\Downloads\cn-fiche-modula-lames-bois-2013.pdf
2017-01-28 16:10 - 2017-01-28 16:10 - 00360740 _____ C:\Users\chris\Downloads\cn-fiche imitation clin et poteau differe.pdf
2017-01-25 08:19 - 2017-01-25 08:14 - 00110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-24 08:57 - 2015-12-25 16:37 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1017623708-2040877482-2343804200-1003
2017-02-24 08:51 - 2015-12-25 17:26 - 00000000 ____D C:\ProgramData\ProductData
2017-02-24 08:27 - 2015-12-25 16:17 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-24 08:22 - 2015-12-25 18:49 - 00000000 ____D C:\Users\chris\AppData\Local\Clipboarder
2017-02-24 08:21 - 2015-12-25 21:08 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
2017-02-24 08:19 - 2016-06-25 19:41 - 00002880 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (chris)
2017-02-24 08:17 - 2016-11-19 09:02 - 00000000 ____D C:\Users\chris\AppData\LocalLow\Mozilla
2017-02-24 08:16 - 2017-01-05 19:02 - 00000000 ___RD C:\Users\chris\Dropbox
2017-02-24 08:15 - 2015-12-27 09:47 - 00000000 ____D C:\Users\chris\Documents\Fichiers Outlook
2017-02-24 08:15 - 2015-12-25 18:10 - 00000000 ____D C:\Users\chris\AppData\Local\Sidebar7
2017-02-24 08:13 - 2017-01-05 18:56 - 00001192 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-02-24 08:13 - 2016-08-25 22:52 - 00000000 ____D C:\Program Files\CyberGhost 6
2017-02-24 08:13 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-24 00:07 - 2017-01-05 18:56 - 00001196 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-02-23 15:50 - 2015-12-25 19:12 - 00000000 ____D C:\Users\chris\AppData\Roaming\IrfanView
2017-02-23 11:34 - 2015-12-25 18:02 - 00000000 ____D C:\Users\chris\AppData\Local\ClassicShell
2017-02-23 08:46 - 2015-12-25 16:08 - 00003866 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1451056112
2017-02-23 08:46 - 2015-12-25 16:08 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-02-23 08:46 - 2015-12-25 16:08 - 00000000 ____D C:\Program Files (x86)\Opera
2017-02-23 07:56 - 2016-01-12 07:12 - 00001112 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2017-02-23 07:56 - 2015-12-25 21:08 - 00003306 _____ C:\Windows\System32\Tasks\GlaryInitialize 5
2017-02-23 07:56 - 2015-12-25 21:08 - 00002966 _____ C:\Windows\System32\Tasks\GU5SkipUAC
2017-02-23 07:56 - 2015-12-25 21:08 - 00001124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2017-02-23 07:47 - 2016-02-20 09:47 - 00000000 ____D C:\ProgramData\Ashampoo
2017-02-22 23:50 - 2016-01-10 15:14 - 00533504 ___SH C:\Users\chris\Desktop\Thumbs.db
2017-02-22 17:47 - 2015-12-26 20:59 - 00059904 ___SH C:\Users\chris\Downloads\Thumbs.db
2017-02-21 18:01 - 2015-04-10 02:09 - 00811108 _____ C:\Windows\system32\perfh00C.dat
2017-02-21 18:01 - 2015-04-10 02:09 - 00159206 _____ C:\Windows\system32\perfc00C.dat
2017-02-21 18:01 - 2014-11-21 08:38 - 01824138 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-21 18:01 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2017-02-21 09:37 - 2015-12-25 16:27 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-20 22:42 - 2016-07-04 14:17 - 00003912 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458686730
2017-02-20 22:42 - 2016-03-22 23:45 - 00001029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-02-20 20:28 - 2016-07-24 15:09 - 00000000 ____D C:\Users\chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-20 20:28 - 2015-12-25 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-20 20:28 - 2015-12-25 16:12 - 00000000 ____D C:\Program Files\WinRAR
2017-02-20 20:27 - 2015-12-25 16:29 - 00000000 ____D C:\Program Files\7-Zip
2017-02-20 19:47 - 2015-12-25 16:28 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-02-20 19:47 - 2015-12-25 16:28 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148761644364004
2017-02-20 19:47 - 2015-12-25 16:28 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-02-20 19:47 - 2015-12-25 16:28 - 00162528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-02-20 19:47 - 2015-12-25 16:28 - 00074680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-02-20 19:46 - 2016-03-22 23:45 - 00032088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00991496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00126088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00100640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-02-20 19:46 - 2015-12-25 16:28 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-02-20 17:14 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-02-19 20:32 - 2016-01-06 21:04 - 00000600 _____ C:\Users\chris\AppData\Roaming\winscp.rnd
2017-02-17 17:57 - 2016-01-03 09:20 - 00000000 ____D C:\Users\chris\Documents\envoi
2017-02-15 12:22 - 2017-01-01 19:07 - 00000600 _____ C:\Users\chris\AppData\Local\PUTTY.RND
2017-02-14 15:21 - 2016-12-15 14:15 - 00036352 ___SH C:\Users\chris\Documents\Thumbs.db
2017-02-12 11:07 - 2017-01-05 18:56 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-11 12:13 - 2016-09-20 09:08 - 00000000 ____D C:\Users\chris\.VirtualBox
2017-02-06 23:44 - 2015-12-25 16:10 - 00002229 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-05 11:31 - 2016-07-27 20:17 - 00000000 ____D C:\Users\chris\AppData\Roaming\vlc
2017-02-04 10:25 - 2016-01-10 15:15 - 00000128 _____ C:\Users\chris\Desktop\acminfo_maven.url
2017-02-02 20:26 - 2015-12-25 16:31 - 00000000 ____D C:\Users\chris
2017-02-02 19:38 - 2017-01-01 10:27 - 00000000 ____D C:\Users\chris\AppData\Roaming\FileZilla
2017-02-02 19:37 - 2017-01-08 23:12 - 00000000 ____D C:\Users\chris\AppData\Local\CrashDumps
2017-02-01 08:38 - 2015-12-25 16:17 - 00000000 ____D C:\ProgramData\Adobe
2017-01-31 17:41 - 2015-12-25 21:25 - 00000000 ____D C:\Users\chris\AppData\Local\Adobe
2017-01-30 07:41 - 2015-12-25 16:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-29 19:19 - 2016-12-13 20:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-28 11:35 - 2016-03-17 22:53 - 00000000 ____D C:\Users\chris\Documents\Bati-Resi Suite
2017-01-25 08:19 - 2015-12-25 16:43 - 00000000 ____D C:\Program Files (x86)\Java
2017-01-25 08:19 - 2015-12-25 16:12 - 00000000 ____D C:\Program Files\Java
2017-01-25 08:19 - 2015-12-25 16:11 - 00000000 ____D C:\ProgramData\Oracle
2017-01-25 08:19 - 2015-12-25 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-25 08:14 - 2015-12-25 16:12 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-01-25 08:13 - 2015-12-25 16:44 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-01-25 08:12 - 2015-12-25 17:26 - 00000000 ____D C:\Users\chris\AppData\Roaming\IObit
==================== Fichiers à la racine de certains dossiers =======
2017-02-02 20:27 - 2017-02-02 20:27 - 0000012 _____ () C:\Users\chris\AppData\Roaming\Network Meter_Usage.ini
2017-02-02 20:26 - 2017-02-24 00:32 - 0000137 _____ () C:\Users\chris\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2016-01-06 21:04 - 2017-02-19 20:32 - 0000600 _____ () C:\Users\chris\AppData\Roaming\winscp.rnd
2017-01-01 19:07 - 2017-02-15 12:22 - 0000600 _____ () C:\Users\chris\AppData\Local\PUTTY.RND
2015-12-28 19:49 - 2015-12-28 19:49 - 0001060 _____ () C:\Users\chris\AppData\Local\recently-used.xbel
2016-07-16 10:24 - 2017-01-08 23:43 - 0007597 _____ () C:\Users\chris\AppData\Local\resmon.resmoncfg
2016-07-09 07:05 - 2016-12-10 17:57 - 0001326 _____ () C:\Users\chris\AppData\Local\TempIM-Config.xml
2015-12-25 17:50 - 2015-12-25 17:50 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Fichiers à déplacer ou supprimer:
====================
C:\Users\chris\IP_Log_Data.js
Certains fichiers dans TEMP:
====================
2017-02-23 15:50 - 2017-02-20 20:28 - 0036312 _____ (Irfan Skiljan, IrfanView) C:\Users\chris\AppData\Local\Temp\iv_uninstall.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-22 03:38
==================== Fin de FRST.txt ============================