Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2017
Exécuté par allan (administrateur) sur ALLAN-PC (12-10-2017 21:51:26)
Exécuté depuis C:\Users\allan\Desktop
Profils chargés: allan (Profils disponibles: allan)
Platform: Windows 7 Professional N (X64) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(DTS) C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe
(DEVGURU Co., LTD.) D:\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Razer USA Ltd.) C:\Program Files (x86)\Razer\Tarantula\razerhid.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\Razer\Tarantula\razertra.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Piriform Ltd) D:\CCleaner\CCleaner64.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Cm108Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm108.dll,CMICtrlWnd
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [282288 2015-02-04] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-05] (AVAST Software)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613536 2010-10-27] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-10-27] (Atheros Commnucations)
HKLM-x32\...\Run: [Tarantula] => C:\Program Files (x86)\Razer\Tarantula\razerhid.exe [159744 2007-05-07] (Razer USA Ltd.)
HKLM-x32\...\RunOnce: [Demidahulah] => C:\Windows\SysWOW64\wscript.exe /E:vbscript /B "C:\Users\allan\AppData\Roaming\Nebelu"
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\Run: [CCleaner Monitoring] => D:\CCleaner\CCleaner64.exe [9856176 2017-09-22] (Piriform Ltd)
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {1f02fda0-4643-11e4-8c77-f46d04972d48} - E:\Startme.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {28649212-8275-11e2-bc71-f46d04972d48} - F:\cdstart.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {31a4c707-9338-11e5-b310-f46d04972d48} - E:\setup.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {3ebeb75b-9332-11e5-a065-f46d04972d48} - E:\setup.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {7d19041d-9782-11e5-a815-f46d04972d48} - E:\setup.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {80df9e00-d8fd-11e2-b748-f46d04972d48} - E:\cdstart.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {e6b0557a-9082-11e2-9641-f46d04972d48} - H:\Startme.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\...\MountPoints2: {f4fdd825-a99a-11e5-8a4a-f46d04972d48} - E:\startme.exe
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> none
ShellExecuteHooks-x32: Pas de nom - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> Pas de fichier
BootExecute: autocheck autochk * BootDefrag.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0A0B1612-3A64-4043-A674-F333CE1724CA}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{28A0AE37-E8DE-4845-8B2A-E12AD5FE6E89}: [DhcpNameServer] 172.20.2.39 172.20.2.10
Tcpip\..\Interfaces\{A6260D74-2F37-4FE2-9322-18E2BC4EC945}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp
HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/
SearchScopes: HKLM -> DefaultScope la valeur est absente
SearchScopes: HKLM -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEzyyBtB0DyEzztDyEzztDtN0D0Tzu0StCyBzytCtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StA0E0DyB0CtBzy0EtGtDzztDyCtGtBzytByBtGtByD0EzytG0C0D0D0EtB0E0A0B0B0FyDzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzyyCtDyC0FtDzz0AtGzzzy0FtCtGyEzz0C0CtG0B0A0CtBtGyC0AtC0B0C0C0Dzy0AzzyCtC2QtN0A0LzuyE%26cr%3D1979011902%26a%3Dwbf_fsvideosft_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional%2BN&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEzyyBtB0DyEzztDyEzztDtN0D0Tzu0StCyBzytCtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StA0E0DyB0CtBzy0EtGtDzztDyCtGtBzytByBtGtByD0EzytG0C0D0D0EtB0E0A0B0B0FyDzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzyyCtDyC0FtDzz0AtGzzzy0FtCtGyEzz0C0CtG0B0A0CtBtGyC0AtC0B0C0C0Dzy0AzzyCtC2QtN0A0LzuyE%26cr%3D1979011902%26a%3Dwbf_fsvideosft_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional%2BN&p={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-3476291330-2914774241-2250673402-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3476291330-2914774241-2250673402-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3476291330-2914774241-2250673402-1000 -> {556CB696-724F-4ae3-92D7-B9975A60CE0D} URL =
SearchScopes: HKU\S-1-5-21-3476291330-2914774241-2250673402-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEzyyBtB0DyEzztDyEzztDtN0D0Tzu0StCyBzytCtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StA0E0DyB0CtBzy0EtGtDzztDyCtGtBzytByBtGtByD0EzytG0C0D0D0EtB0E0A0B0B0FyDzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzyyCtDyC0FtDzz0AtGzzzy0FtCtGyEzz0C0CtG0B0A0CtBtGyC0AtC0B0C0C0Dzy0AzzyCtC2QtN0A0LzuyE%26cr%3D1979011902%26a%3Dwbf_fsvideosft_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional%2BN&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3476291330-2914774241-2250673402-1000 -> {9B89F7C7-4D35-44a8-A80F-C09B1DE9B42F} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A4067623346&ie=UTF-8&q={searchTerms}&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A4067623346
SearchScopes: HKU\S-1-5-21-3476291330-2914774241-2250673402-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-10-05] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Pas de nom -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> Pas de fichier
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-06] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-10-27] (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-10-05] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-06] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Pas de fichier
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Toolbar: HKLM-x32 - Pas de nom - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Pas de fichier
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1457166182299
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Technologies)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\allan\AppData\Roaming\TomTom\HOME\Profiles\u3ca5d6r.default [2016-09-14]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2016-09-14] [non signé]
FF ProfilePath: C:\Users\allan\AppData\Roaming\Mozilla\Firefox\Profiles\imyrqxsi.default [2017-10-12]
FF NewTab: Mozilla\Firefox\Profiles\imyrqxsi.default -> about:newtab
FF Keyword.URL: Mozilla\Firefox\Profiles\imyrqxsi.default -> user_pref("keyword.URL", true);
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\imyrqxsi.default -> Yahoo! Powered
FF Homepage: Mozilla\Firefox\Profiles\imyrqxsi.default -> hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_fsvideosft_16_47¶m1=1¶m2=f%3D1%26b%3DFirefox%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FyEyC0DtDyEzyyBtB0DyEzztDyEzztDtN0D0Tzu0StCyBzytCtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StA0E0DyB0CtBzy0EtGtDzztDyCtGtBzytByBtGtByD0EzytG0C0D0D0EtB0E0A0B0B0FyDzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SzyyCtDyC0FtDzz0AtGzzzy0FtCtGyEzz0C0CtG0B0A0CtBtGyC0AtC0B0C0C0Dzy0AzzyCtC2QtN0A0LzuyE%26cr%3D1979011902%26a%3Dwbf_fsvideosft_16_47%26os_ver%3D6.1%26os%3DWindows%2B7%2BProfessional%2BN
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\imyrqxsi.default -> Yahoo! Powered
FF Extension: (Visualisateur 3D de 20-20) - C:\Users\allan\AppData\Roaming\Mozilla\Firefox\Profiles\imyrqxsi.default\Extensions\2020Player_WEB@2020Technologies.com [2015-05-17] [non signé]
FF Extension: (Adblock Plus) - C:\Users\allan\AppData\Roaming\Mozilla\Firefox\Profiles\imyrqxsi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-10-18]
FF Extension: (Pas de nom) - C:\Users\allan\AppData\Roaming\Mozilla\Firefox\Profiles\imyrqxsi.default\extensions\deskCutv2@gmail.com [non trouvé(e)]
FF SearchPlugin: C:\Users\allan\AppData\Roaming\Mozilla\Firefox\Profiles\imyrqxsi.default\searchplugins\yahoo! powered.xml [2016-11-26]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} [2011-05-04] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-08-08] ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\Windows\system32\npDeployJava1.dll [2012-08-13] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> D:\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-04-27] (Unity Technologies ApS)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-08-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.)
FF Plugin-x32: @esn/esnlaunch,version=1.102.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.102.0\npesnlaunch.dll [Pas de fichier]
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [Pas de fichier]
FF Plugin-x32: @gametap.com/npdd,version=1.0 -> D:\Downloader\npdd.dll [2012-07-20] (Metaboli)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-06] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-08-10] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-08-10] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-10] (Google Inc.)
FF Plugin-x32: @veetle.com/vbp;version=0.9.18 -> D:\Veetle\VLCBroadcast\npvbp.dll [Pas de fichier]
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> D:\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> D:\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> D:\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3476291330-2914774241-2250673402-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\allan\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2013-11-06] (Skype Limited)
FF Plugin HKU\S-1-5-21-3476291330-2914774241-2250673402-1000: @tools.google.com/Google Update;version=3 -> C:\Users\allan\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3476291330-2914774241-2250673402-1000: @tools.google.com/Google Update;version=9 -> C:\Users\allan\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-03] (Google Inc.)
FF Plugin HKU\S-1-5-21-3476291330-2914774241-2250673402-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\allan\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3476291330-2914774241-2250673402-1000: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2015-11-20] (Sony Network Entertainment International LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-05-04] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2011-09-05] (Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Profile: C:\Users\allan\AppData\Local\Google\Chrome\User Data\Default [2017-10-12]
CHR Extension: (Adblock Plus) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-26]
CHR Extension: (Adobe Acrobat) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Barre de Confiance CM-CIC) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2016-04-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-15]
CHR Profile: C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-12]
CHR Extension: (Google Slides) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-15]
CHR Extension: (Google Docs) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-15]
CHR Extension: (Google Drive) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-15]
CHR Extension: (YouTube) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-15]
CHR Extension: (Recherche Google) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-15]
CHR Extension: (Google Sheets) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-15]
CHR Extension: (Avast Online Security) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-15]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-15]
CHR Extension: (Google Wallet) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-15]
CHR Extension: (Gmail) - C:\Users\allan\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-15]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3476291330-2914774241-2250673402-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files (x86)\Sony\Media Go\MediaGoDetector.crx"
CHR HKLM-x32\...\Chrome\Extension: [iinglghmhcgdgjjlafobajghjamdchik] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
StartMenuInternet: Google Chrome.BYPHXARSOTB6SOKEQGJJQRTW7M - C:\Users\allan\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [918144 2010-11-04] ()
S3 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-05] (AVAST Software s.r.o.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [52896 2010-10-27] (Atheros Commnucations) [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-05] (AVAST Software)
S3 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-26] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-26] (Dropbox, Inc.)
S3 DbxSvc; C:\Windows\system32\DbxSvc.exe [42096 2016-12-21] (Dropbox, Inc.)
S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-08-22] (Digital Wave Ltd.)
R2 DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [210024 2011-05-31] (DTS)
S4 HerculesDJControlMP3; C:\Program Files\Hercules\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [18944 2012-09-06] (Hercules®) [Fichier non signé]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 Microsoft SharePoint Workspace Audit Service; D:\Microsoft Office\Office14\GROOVE.EXE [50942144 2013-12-19] (Microsoft Corporation)
S3 NETGEARGenieDaemon; D:\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [231752 2012-09-25] (NETGEAR)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4032992 2010-09-29] (INCA Internet Co., Ltd.) [Fichier non signé]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-07-26] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-07-26] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-08-10] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-07-26] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2122248 2016-08-20] (Electronic Arts)
S3 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-05-29] ()
R2 SamsungRapidSvc; C:\Windows\System32\RAPID\SamsungRapidSvc.exe [28848 2015-02-04] (Samsung Electronics Co., Ltd.)
S2 SkypeUpdate; D:\Skype\Updater\Updater.exe [317408 2017-07-18] (Skype Technologies)
R2 ss_conn_service; D:\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-08-29] (TeamViewer GmbH)
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2009-07-25] (Microsoft Corporation) [Fichier non signé]
S4 WatAdminSvc; C:\Windows\system32\Wat\WatAdminSvc.exe [1255736 2011-04-15] () [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2205568 2017-02-07] (Sony)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
S3 AKDWC20ET; C:\Windows\System32\Drivers\HDVidvx.sys [186496 2007-10-11] (Guillemont Corporation)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-25] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-05] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-05] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-05] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-05] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-05] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1020536 2017-10-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-05] (AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2014-07-21] (The OpenVPN Project)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-05] (AVAST Software)
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-07-18] (Glarysoft Ltd)
S3 Bulk; C:\Windows\System32\Drivers\HDJBulk.sys [238960 2012-10-30] (© Guillemot R&D, 2012. All rights reserved.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-11-25] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [46392 2015-11-30] (Disc Soft Ltd)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2015-12-23] (Sony Mobile Communications)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-06-12] (Glarysoft Ltd)
S3 hcw17bda; C:\Windows\System32\drivers\hcw17bda.sys [67456 2010-01-27] (Hauppauge Computer Works, Inc.)
S3 HDJMidi; C:\Windows\System32\DRIVERS\HDJMidi.sys [271216 2012-10-30] (© Guillemot R&D, 2012. All rights reserved.)
S3 hxctlflt; C:\Windows\System32\DRIVERS\hxctlflt.sys [111104 2009-02-09] (Guillemot Corporation)
S3 JabraDFU; C:\Windows\System32\Drivers\JabraBcDfuX64.sys [39288 2017-06-17] (GN Netcom A/S)
S3 LGDDCDevice; C:\Program Files (x86)\LG Soft India\forteManager\bin\I2CDriver.sys [14336 2009-04-24] () [Fichier non signé]
S3 LGII2CDevice; C:\Program Files (x86)\LG Soft India\forteManager\bin\PII2CDriver.sys [18432 2009-04-24] () [Fichier non signé]
S3 mt7612US; C:\Windows\System32\DRIVERS\mt7612US.sys [376200 2015-12-08] (MediaTek Inc.)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-05-10] (Apple Inc.) [Fichier non signé]
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2004-12-31] (INCA Internet Co., Ltd.) [Fichier non signé]
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-07-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48064 2017-07-26] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-07-26] (NVIDIA Corporation)
S3 PcaSp50; C:\Windows\System32\Drivers\PcaSp50.sys [45624 2009-08-24] (Printing Communications Assoc., Inc. (PCAUSA))
S3 ptun0901; C:\Windows\System32\DRIVERS\ptun0901.sys [27136 2015-01-26] (The OpenVPN Project)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-06-02] ()
S3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [416768 2009-06-10] (Realtek Semiconductor Corporation )
S3 RZMAELSTROMVADService; C:\Windows\System32\drivers\RzMaelstromVAD.sys [40696 2014-03-06] (Windows (R) Win 7 DDK provider)
R0 SamsungRapidDiskFltr; C:\Windows\System32\DRIVERS\SamsungRapidDiskFltr.sys [271024 2015-02-04] (Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\Windows\System32\DRIVERS\SamsungRapidFSFltr.sys [111280 2015-02-04] (Samsung Electronics Co., Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-11-25] (Duplex Secure Ltd.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [40712 2012-11-01] (Anchorfree Inc.)
R3 TarFltr; C:\Windows\System32\drivers\UsbFltr.sys [49664 2007-04-11] (Razer USA Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [Fichier non signé]
S3 xb1usb; C:\Windows\System32\DRIVERS\xb1usb.sys [42760 2016-02-21] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\DRIVERS\xinputhid.sys [39312 2015-12-08] (Microsoft Corporation) [Fichier non signé]
S3 btath_avdt; system32\drivers\btath_avdt.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-12 21:51 - 2017-10-12 21:51 - 000034898 _____ C:\Users\allan\Desktop\FRST.txt
2017-10-12 21:51 - 2017-10-12 21:51 - 000000000 ____D C:\FRST
2017-10-12 21:50 - 2017-10-12 21:50 - 002401792 _____ (Farbar) C:\Users\allan\Desktop\FRST64.exe
2017-10-12 21:45 - 2017-10-12 21:45 - 000000000 ____D C:\Users\allan\AppData\Roaming\ZHP
2017-10-12 21:45 - 2017-10-12 21:45 - 000000000 ____D C:\Users\allan\AppData\Local\ZHP
2017-10-12 20:47 - 2017-10-12 20:47 - 000111174 _____ C:\Users\allan\Desktop\IR-Avis-PrimTIP-2017-17890692509599.pdf
2017-10-12 20:19 - 2017-10-12 20:19 - 000041513 _____ C:\Users\allan\Desktop\PGP006211088000001.pdf
2017-10-12 19:40 - 2017-10-12 19:40 - 000000000 ___RD C:\Users\allan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2017-10-12 18:39 - 2017-10-12 18:39 - 000154841 _____ C:\Users\allan\Desktop\VEYRY Allan.pdf
2017-10-11 20:31 - 2017-10-11 20:31 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-05 18:09 - 2017-10-05 18:09 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-09-27 22:41 - 2017-10-05 18:09 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2017-09-25 07:09 - 2017-09-25 07:10 - 000000000 ____D C:\Users\allan\Desktop\Moto cross villy
2017-09-22 19:43 - 2017-09-22 19:43 - 000024814 _____ C:\Users\allan\Desktop\sfr-facture-detail-09-B417-014295626.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-12 21:40 - 2009-07-14 06:50 - 000014896 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-12 21:40 - 2009-07-14 06:50 - 000014896 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-12 21:28 - 2016-04-01 14:15 - 000000000 ____D C:\Users\allan\AppData\Roaming\TeamViewer
2017-10-12 21:28 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2017-10-12 20:27 - 2016-12-12 21:46 - 000247296 ___SH C:\Users\allan\Desktop\Thumbs.db
2017-10-12 19:46 - 2015-09-14 11:22 - 000006192 _____ C:\Windows\system32\PerfStringBackup.TMP
2017-10-12 19:42 - 2011-07-30 12:06 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-12 19:40 - 2017-08-23 21:37 - 000000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2017-10-12 19:40 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-12 18:06 - 2015-12-18 15:25 - 000001862 __RSH C:\ProgramData\ntuser.pol
2017-10-11 20:31 - 2013-07-11 06:35 - 000000000 ____D C:\Windows\system32\MRT
2017-10-11 20:31 - 2011-04-16 08:29 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-11 20:30 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-10-08 16:13 - 2017-02-11 10:39 - 000000931 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-10-08 16:13 - 2017-02-11 10:39 - 000000919 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2017-10-08 16:13 - 2016-04-01 14:15 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-10-05 18:09 - 2017-02-07 18:45 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-05 18:09 - 2017-02-07 18:45 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-05 18:09 - 2017-02-07 18:45 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-05 18:09 - 2017-02-07 18:45 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-05 18:09 - 2017-02-07 18:45 - 000003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-05 18:09 - 2014-05-03 09:09 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-05 18:09 - 2014-01-04 09:32 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-05 18:09 - 2013-03-17 15:57 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-05 18:09 - 2013-03-17 15:57 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-05 18:09 - 2012-02-26 21:50 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-05 18:09 - 2011-04-15 19:02 - 001020536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-05 18:09 - 2011-04-15 19:02 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-05 18:09 - 2011-04-15 19:02 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-05 18:09 - 2011-04-15 17:49 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-01 11:43 - 2014-07-26 10:56 - 000000000 ____D C:\Users\allan\AppData\Roaming\DiskDefrag
2017-09-19 20:24 - 2017-04-22 08:23 - 000000550 _____ C:\Users\Public\Desktop\CCleaner.lnk
==================== Fichiers à la racine de certains dossiers =======
2015-04-19 14:20 - 2015-04-19 14:20 - 000005872 _____ () C:\Users\allan\AppData\Roaming\IIoPiFd0iTBUSjDP
2016-11-26 09:47 - 2016-11-26 09:47 - 000019009 _____ () C:\Users\allan\AppData\Roaming\Nebelu
2015-04-14 18:28 - 2015-04-14 18:28 - 000004387 _____ () C:\Users\allan\AppData\Roaming\OVZ8RuWapePu6x4Bj
2013-07-13 17:50 - 2013-07-13 18:30 - 000000231 _____ () C:\Users\allan\AppData\Roaming\Rim.Desktop.Exception.log
2013-07-13 17:49 - 2013-07-13 18:35 - 000001981 _____ () C:\Users\allan\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2013-07-13 17:50 - 2013-07-13 18:30 - 000000231 _____ () C:\Users\allan\AppData\Roaming\Rim.DesktopHelper.Exception.log
2011-05-13 06:17 - 2011-12-27 11:38 - 000003584 _____ () C:\Users\allan\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-05-18 20:10 - 2012-05-18 20:10 - 000000837 _____ () C:\Users\allan\AppData\Local\recently-used.xbel
2011-04-16 09:52 - 2016-02-27 23:48 - 000007610 _____ () C:\Users\allan\AppData\Local\Resmon.ResmonCfg
2015-05-09 11:36 - 2015-05-17 18:22 - 000007406 _____ () C:\Users\allan\AppData\Local\SquareClock.Production_ConforamaIcon.ico
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll
[2009-07-14 01:38] - [2011-04-15 19:20] - 001008640 _____ (Microsoft Corporation) 2C353B6CE0C8D03225CAA2AF33B68D79
C:\Windows\SysWOW64\User32.dll
[2009-07-14 01:24] - [2011-04-15 19:20] - 000833024 _____ (Microsoft Corporation) 861C4346F9281DC0380DE72C8D55D6BE
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-10-03 19:44
==================== Fin de FRST.txt ============================