Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017
Exécuté par Louise (administrateur) sur LOUIS-LOUISE (28-12-2017 13:34:08)
Exécuté depuis C:\Users\Louise\Desktop
Profils chargés: Louise (Profils disponibles: Louise & margo_000 & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Users\Louise\AppData\Roaming\cacaoweb\cacaoweb.exe
(f.lux Software LLC) C:\Users\Louise\AppData\Local\FluxSoftware\Flux\flux.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [302744 2017-11-27] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-24] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-07-21] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [580512 2012-07-31] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2011-08-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [cacaoweb] => C:\Users\Louise\AppData\Roaming\cacaoweb\cacaoweb.exe [568624 2017-12-08] ()
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [f.lux] => C:\Users\Louise\AppData\Local\FluxSoftware\Flux\flux.exe [1678840 2017-10-10] (f.lux Software LLC)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\MountPoints2: {5149ce72-cd16-11e7-be7d-38eaa7d794f2} - "E:\setup.exe"
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\MountPoints2: {5149d2fb-cd16-11e7-be7d-38eaa7d794f2} - "G:\setup.exe"
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\MountPoints2: {6bcf2ec7-ccb3-11e7-be7c-38eaa7d794f2} - "F:\Launcher.exe"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1E36EBD5-D7C4-46E1-9BDC-05DE61713FDD}: [DhcpNameServer] 40.21.1.201 40.21.1.202
Tcpip\..\Interfaces\{A8192D9A-015A-48C8-80E3-905C78D30338}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/3
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/3
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/3
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/3
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM -> {E6AE7BD3-51DE-4A17-AE79-74E3520DCBBD} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {E6AE7BD3-51DE-4A17-AE79-74E3520DCBBD} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1765742889-4063860362-2666746338-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKU\S-1-5-21-1765742889-4063860362-2666746338-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-1765742889-4063860362-2666746338-1001 -> {E6AE7BD3-51DE-4A17-AE79-74E3520DCBBD} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09] (Hewlett-Packard)
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.fr/
CHR NewTab: Default -> Active:"chrome-extension://mfifcboiomeogenbbmnbeiobeplcmdhm/pages/home.html"
CHR Profile: C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default [2017-12-28]
CHR Extension: (Slides) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-29]
CHR Extension: (Docs) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-29]
CHR Extension: (Google Drive) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-29]
CHR Extension: (Adguard AdBlocker) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-10-29]
CHR Extension: (YouTube) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-29]
CHR Extension: (Save Tabs) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjepfldodmdfmdidhhgamnklbdibndi [2017-11-13]
CHR Extension: (Adobe Acrobat) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-11-12]
CHR Extension: (Sheets) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-29]
CHR Extension: (Cleanfox) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpejofmgechlgfomhbgjglkboeoobnma [2017-10-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-10-30]
CHR Extension: (Google Keep – Notes et listes) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-12-14]
CHR Extension: (Lilo Search) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldhcdlnondjolfdmlagafpjnhglkfefl [2017-10-29]
CHR Extension: (Lilo Tab) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfifcboiomeogenbbmnbeiobeplcmdhm [2017-10-29]
CHR Extension: (Pursued) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\mglmffkipgdhdkolbbkofkfhappinpin [2017-10-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-29]
CHR Extension: (Lilo.org) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejnkhmeilmiplpmenkegjaibnjbappo [2017-10-29]
CHR Extension: (Gmail) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-10-29]
CHR Extension: (Chrome Media Router) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-10]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ikaooahnheaoeceaipjcmnamnoleeblk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [282536 2017-11-27] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7600584 2017-11-27] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-10-31] (AVG Technologies CZ, s.r.o.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [85504 2012-08-10] (Hewlett-Packard Company) [Fichier non signé]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-07-21] (IDT, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-11-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-11-03] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [176000 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdiska.sys [166624 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdrivera.sys [314640 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsha.sys [192584 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\System32\drivers\avgbloga.sys [336896 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniva.sys [51336 2017-11-27] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [39424 2017-11-27] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [140704 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [102792 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 AvgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [76832 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1018648 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [447800 2017-11-27] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [196392 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [356880 2017-11-27] (AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-11-19] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-11-19] (Disc Soft Ltd)
S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [269968 2012-07-03] (Realtek Semiconductor Corp.)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-24] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-24] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-11-03] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-11-03] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-11-03] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20288 2012-08-03] (Hewlett-Packard Development Company, L.P.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 13:32 - 2017-12-28 13:33 - 000041688 _____ C:\Users\Louise\Desktop\Addition.txt
2017-12-28 13:30 - 2017-12-28 13:34 - 000019789 _____ C:\Users\Louise\Desktop\FRST.txt
2017-12-28 13:29 - 2017-12-28 13:34 - 000000000 ____D C:\FRST
2017-12-28 13:28 - 2017-12-28 13:28 - 002391552 _____ (Farbar) C:\Users\Louise\Desktop\FRST64.exe
2017-12-28 12:13 - 2017-12-28 12:15 - 000000600 _____ C:\DelFix.txt
2017-12-23 11:59 - 2017-12-23 11:59 - 000013066 _____ C:\Users\Louise\Downloads\DetailRS.pdf
2017-12-21 15:45 - 2017-12-21 15:45 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVG
2017-12-21 15:45 - 2017-12-21 15:45 - 000000000 ____D C:\Program Files\Common Files\AVG
2017-12-18 14:18 - 2017-12-18 14:18 - 000000476 _____ C:\Users\Louise\Downloads\url.htm
2017-12-16 10:41 - 2017-12-16 10:41 - 000000000 ____D C:\Users\Louise\Desktop\Elise
2017-12-15 18:56 - 2017-12-15 18:56 - 000034345 _____ C:\Users\Louise\Downloads\facture202509649422.pdf
2017-12-15 17:33 - 2017-12-15 17:33 - 000064973 _____ C:\Users\Louise\Downloads\budget-excel-gerer-mon-budget.fr.xlsx
2017-12-14 12:23 - 2017-12-14 12:23 - 000006953 _____ C:\Users\Louise\Downloads\iban_MLE_MARGOT_LEBLANC_00021082601.pdf
2017-12-14 11:49 - 2017-12-14 12:42 - 000000000 ____D C:\Users\Louise\Desktop\COREP
2017-12-13 06:59 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-12-13 06:59 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-12-13 06:58 - 2017-11-17 16:37 - 004168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-12-13 06:58 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-12-13 06:58 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-12-13 06:58 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-12-13 06:58 - 2017-11-14 03:55 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-12-13 06:58 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-12-13 06:58 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-12-13 06:58 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-12-13 06:58 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-12-13 06:58 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-12-13 06:58 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-12-13 06:58 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-12-13 06:58 - 2017-11-08 16:55 - 000032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-12-13 06:58 - 2017-11-07 22:15 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 06:58 - 2017-11-07 21:49 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 06:58 - 2017-11-07 21:46 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 06:58 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-12-13 06:58 - 2017-11-07 21:29 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-12-13 06:58 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-12-13 06:58 - 2017-11-07 21:27 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 06:58 - 2017-11-07 21:22 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-12-13 06:58 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-12-13 06:58 - 2017-11-07 21:08 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-12-13 06:58 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-12-13 06:58 - 2017-11-07 21:02 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-12-13 06:58 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-12-13 06:58 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-12-13 06:58 - 2017-10-18 18:14 - 000136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-12-13 06:58 - 2017-10-14 08:55 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-12-13 06:58 - 2017-10-14 08:29 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-12-13 06:58 - 2017-10-14 08:23 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-12-13 06:58 - 2017-10-14 08:17 - 003717632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-12-13 06:58 - 2017-10-14 07:41 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-12-13 06:58 - 2017-10-14 07:19 - 000780800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-12-13 06:58 - 2017-10-10 17:39 - 001192960 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2017-12-13 06:58 - 2017-10-10 17:29 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2017-12-13 06:58 - 2017-10-10 16:42 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2017-12-13 06:58 - 2017-10-10 15:58 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2017-12-10 18:15 - 2017-12-10 18:15 - 000766552 _____ C:\Users\Louise\Downloads\flux-setup.exe
2017-12-10 18:15 - 2017-12-10 18:15 - 000002142 _____ C:\Users\Louise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2017-12-10 18:15 - 2017-12-10 18:15 - 000000000 ____D C:\Users\Louise\AppData\Local\FluxSoftware
2017-12-08 18:05 - 2017-12-28 13:35 - 000000000 ____D C:\Users\Louise\AppData\Roaming\cacaoweb
2017-12-08 18:05 - 2017-12-08 18:05 - 000568624 _____ C:\Users\Louise\Downloads\cacaoweb.exe
2017-12-05 11:50 - 2017-12-05 11:50 - 000838799 _____ C:\Users\Louise\Downloads\badge_bis2018.pdf
2017-12-04 11:07 - 2017-12-04 11:07 - 005453843 _____ C:\Users\Louise\Downloads\Adobe Cracks.zip
2017-12-04 11:07 - 2017-12-04 11:07 - 000000000 ____D C:\Users\Louise\Downloads\Adobe Cracks
2017-12-03 16:56 - 2017-12-03 16:56 - 000000000 ____D C:\Users\Louise\Downloads\Dossier mécénat général
2017-12-03 16:54 - 2017-12-03 16:55 - 032279204 _____ C:\Users\Louise\Downloads\Dossier mécénat général.zip
2017-12-03 16:52 - 2017-12-03 16:52 - 000003512 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-louiseyacine@hotmail.com
2017-12-03 16:48 - 2017-12-03 16:48 - 000001044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign CC 2018.lnk
2017-12-03 16:48 - 2017-12-03 16:48 - 000000000 ____D C:\Program Files\Common Files\Adobe
2017-12-03 16:43 - 2017-12-15 19:57 - 000000000 ___RD C:\Users\Louise\Creative Cloud Files
2017-12-03 16:42 - 2017-12-03 16:48 - 000000000 ____D C:\Program Files\Adobe
2017-12-03 16:36 - 2017-12-03 16:36 - 000001245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 13:33 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2017-12-28 12:16 - 2013-03-23 14:05 - 005878272 ___SH C:\Users\Louise\Downloads\Thumbs.db
2017-12-28 10:34 - 2017-11-18 21:09 - 000003956 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{94B1A6D1-B2BD-4546-96BC-C9C58452C7FA}
2017-12-28 10:34 - 2017-11-12 14:34 - 000000000 ____D C:\Users\Louise\AppData\Local\Adobe
2017-12-28 00:29 - 2017-10-29 13:46 - 000003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-12-26 23:24 - 2017-11-11 10:56 - 000000000 ____D C:\Users\Louise\AppData\LocalLow\Mozilla
2017-12-26 19:50 - 2014-11-20 23:46 - 002027818 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-26 19:50 - 2014-11-20 23:03 - 000887118 _____ C:\WINDOWS\system32\perfh00C.dat
2017-12-26 19:50 - 2014-11-20 23:03 - 000192248 _____ C:\WINDOWS\system32\perfc00C.dat
2017-12-26 19:44 - 2017-11-03 22:24 - 000000000 ___RD C:\Users\Louise\OneDrive
2017-12-26 19:43 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-26 19:35 - 2017-11-03 20:34 - 000000000 ____D C:\Users\Louise
2017-12-23 23:39 - 2014-02-20 11:49 - 002234368 ___SH C:\Users\Louise\Desktop\Thumbs.db
2017-12-23 15:21 - 2017-10-30 15:12 - 000000000 ____D C:\Users\Louise\AppData\Roaming\vlc
2017-12-17 09:58 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-14 19:25 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2017-12-14 18:32 - 2013-08-22 15:44 - 000377368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-13 07:49 - 2012-07-26 08:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-13 06:14 - 2017-10-31 15:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 06:08 - 2017-10-31 15:45 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 06:08 - 2017-10-31 15:45 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-10 20:06 - 2017-10-29 13:28 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1765742889-4063860362-2666746338-1001
2017-12-10 17:59 - 2017-11-14 16:20 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-12-09 01:23 - 2017-11-18 21:13 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-07 14:51 - 2017-11-04 10:01 - 000000000 ____D C:\Program Files (x86)\Steam
2017-12-04 17:23 - 2017-11-07 11:23 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-12-04 17:23 - 2017-11-07 11:23 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-04 12:48 - 2017-11-12 15:05 - 000000000 ____D C:\Users\Louise\Downloads\Musicogite
2017-12-03 17:36 - 2017-10-29 13:23 - 000000000 ____D C:\Users\Louise\AppData\Roaming\Adobe
2017-12-03 16:48 - 2017-11-12 14:37 - 000000000 ____D C:\ProgramData\Adobe
2017-12-03 16:42 - 2017-11-12 14:38 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-12-03 16:35 - 2017-11-08 13:16 - 000000000 ____D C:\ProgramData\Package Cache
2017-12-03 02:13 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-03 01:53 - 2017-11-03 20:34 - 000000000 ____D C:\Users\margo_000
2017-12-03 01:53 - 2017-11-03 20:34 - 000000000 ____D C:\Users\Administrator
2017-12-03 01:46 - 2017-11-12 14:39 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 18:48 - 2017-11-18 23:48 - 000011537 _____ C:\Users\Louise\Downloads\Sans nom 1.odt
Certains fichiers dans TEMP:
====================
2017-11-19 11:47 - 2017-11-19 12:05 - 000065536 _____ (Sony DADC Austria AG) C:\Users\Louise\AppData\Local\Temp\drm_dialogs.dll
2017-11-19 12:10 - 2017-11-19 12:10 - 000000000 ____D () C:\Users\Louise\AppData\Local\Temp\LEGOLOTR.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-19 15:45
==================== Fin de FRST.txt ============================
Exécuté par Louise (administrateur) sur LOUIS-LOUISE (28-12-2017 13:34:08)
Exécuté depuis C:\Users\Louise\Desktop
Profils chargés: Louise (Profils disponibles: Louise & margo_000 & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Users\Louise\AppData\Roaming\cacaoweb\cacaoweb.exe
(f.lux Software LLC) C:\Users\Louise\AppData\Local\FluxSoftware\Flux\flux.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [302744 2017-11-27] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-24] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-07-21] (IDT, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [580512 2012-07-31] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2011-08-26] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [cacaoweb] => C:\Users\Louise\AppData\Roaming\cacaoweb\cacaoweb.exe [568624 2017-12-08] ()
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\Run: [f.lux] => C:\Users\Louise\AppData\Local\FluxSoftware\Flux\flux.exe [1678840 2017-10-10] (f.lux Software LLC)
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\MountPoints2: {5149ce72-cd16-11e7-be7d-38eaa7d794f2} - "E:\setup.exe"
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\MountPoints2: {5149d2fb-cd16-11e7-be7d-38eaa7d794f2} - "G:\setup.exe"
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\...\MountPoints2: {6bcf2ec7-ccb3-11e7-be7c-38eaa7d794f2} - "F:\Launcher.exe"
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1E36EBD5-D7C4-46E1-9BDC-05DE61713FDD}: [DhcpNameServer] 40.21.1.201 40.21.1.202
Tcpip\..\Interfaces\{A8192D9A-015A-48C8-80E3-905C78D30338}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/3
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/3
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/3
HKU\S-1-5-21-1765742889-4063860362-2666746338-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/3
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM -> {E6AE7BD3-51DE-4A17-AE79-74E3520DCBBD} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {E6AE7BD3-51DE-4A17-AE79-74E3520DCBBD} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1765742889-4063860362-2666746338-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKU\S-1-5-21-1765742889-4063860362-2666746338-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-29563-11896-9/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-1765742889-4063860362-2666746338-1001 -> {E6AE7BD3-51DE-4A17-AE79-74E3520DCBBD} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09] (Hewlett-Packard)
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.fr/
CHR NewTab: Default -> Active:"chrome-extension://mfifcboiomeogenbbmnbeiobeplcmdhm/pages/home.html"
CHR Profile: C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default [2017-12-28]
CHR Extension: (Slides) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-29]
CHR Extension: (Docs) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-29]
CHR Extension: (Google Drive) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-29]
CHR Extension: (Adguard AdBlocker) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-10-29]
CHR Extension: (YouTube) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-29]
CHR Extension: (Save Tabs) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjepfldodmdfmdidhhgamnklbdibndi [2017-11-13]
CHR Extension: (Adobe Acrobat) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-11-12]
CHR Extension: (Sheets) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-29]
CHR Extension: (Cleanfox) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\fpejofmgechlgfomhbgjglkboeoobnma [2017-10-29]
CHR Extension: (Google Docs hors connexion) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-10-30]
CHR Extension: (Google Keep – Notes et listes) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-12-14]
CHR Extension: (Lilo Search) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldhcdlnondjolfdmlagafpjnhglkfefl [2017-10-29]
CHR Extension: (Lilo Tab) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfifcboiomeogenbbmnbeiobeplcmdhm [2017-10-29]
CHR Extension: (Pursued) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\mglmffkipgdhdkolbbkofkfhappinpin [2017-10-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-29]
CHR Extension: (Lilo.org) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejnkhmeilmiplpmenkegjaibnjbappo [2017-10-29]
CHR Extension: (Gmail) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-10-29]
CHR Extension: (Chrome Media Router) - C:\Users\Louise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-10]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ikaooahnheaoeceaipjcmnamnoleeblk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [282536 2017-11-27] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7600584 2017-11-27] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-10-31] (AVG Technologies CZ, s.r.o.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [85504 2012-08-10] (Hewlett-Packard Company) [Fichier non signé]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-14] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [321536 2012-07-21] (IDT, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-11-03] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-11-03] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [176000 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdiska.sys [166624 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdrivera.sys [314640 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsha.sys [192584 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\System32\drivers\avgbloga.sys [336896 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniva.sys [51336 2017-11-27] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [39424 2017-11-27] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [140704 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [102792 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 AvgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [76832 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1018648 2017-11-27] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [447800 2017-11-27] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [196392 2017-11-27] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [356880 2017-11-27] (AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-11-19] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-11-19] (Disc Soft Ltd)
S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [269968 2012-07-03] (Realtek Semiconductor Corp.)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-24] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-24] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-11-03] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-11-03] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-11-03] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20288 2012-08-03] (Hewlett-Packard Development Company, L.P.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 13:32 - 2017-12-28 13:33 - 000041688 _____ C:\Users\Louise\Desktop\Addition.txt
2017-12-28 13:30 - 2017-12-28 13:34 - 000019789 _____ C:\Users\Louise\Desktop\FRST.txt
2017-12-28 13:29 - 2017-12-28 13:34 - 000000000 ____D C:\FRST
2017-12-28 13:28 - 2017-12-28 13:28 - 002391552 _____ (Farbar) C:\Users\Louise\Desktop\FRST64.exe
2017-12-28 12:13 - 2017-12-28 12:15 - 000000600 _____ C:\DelFix.txt
2017-12-23 11:59 - 2017-12-23 11:59 - 000013066 _____ C:\Users\Louise\Downloads\DetailRS.pdf
2017-12-21 15:45 - 2017-12-21 15:45 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVG
2017-12-21 15:45 - 2017-12-21 15:45 - 000000000 ____D C:\Program Files\Common Files\AVG
2017-12-18 14:18 - 2017-12-18 14:18 - 000000476 _____ C:\Users\Louise\Downloads\url.htm
2017-12-16 10:41 - 2017-12-16 10:41 - 000000000 ____D C:\Users\Louise\Desktop\Elise
2017-12-15 18:56 - 2017-12-15 18:56 - 000034345 _____ C:\Users\Louise\Downloads\facture202509649422.pdf
2017-12-15 17:33 - 2017-12-15 17:33 - 000064973 _____ C:\Users\Louise\Downloads\budget-excel-gerer-mon-budget.fr.xlsx
2017-12-14 12:23 - 2017-12-14 12:23 - 000006953 _____ C:\Users\Louise\Downloads\iban_MLE_MARGOT_LEBLANC_00021082601.pdf
2017-12-14 11:49 - 2017-12-14 12:42 - 000000000 ____D C:\Users\Louise\Desktop\COREP
2017-12-13 06:59 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-12-13 06:59 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-12-13 06:58 - 2017-11-17 16:37 - 004168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-12-13 06:58 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-12-13 06:58 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-12-13 06:58 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-12-13 06:58 - 2017-11-14 03:55 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-12-13 06:58 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-12-13 06:58 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-12-13 06:58 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-12-13 06:58 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-12-13 06:58 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-12-13 06:58 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-12-13 06:58 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-12-13 06:58 - 2017-11-08 16:55 - 000032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-12-13 06:58 - 2017-11-07 22:15 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 06:58 - 2017-11-07 21:49 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 06:58 - 2017-11-07 21:46 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 06:58 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-12-13 06:58 - 2017-11-07 21:29 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-12-13 06:58 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-12-13 06:58 - 2017-11-07 21:27 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 06:58 - 2017-11-07 21:22 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-12-13 06:58 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-12-13 06:58 - 2017-11-07 21:08 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-12-13 06:58 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-12-13 06:58 - 2017-11-07 21:02 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-12-13 06:58 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-12-13 06:58 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-12-13 06:58 - 2017-10-18 18:14 - 000136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-12-13 06:58 - 2017-10-14 08:55 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-12-13 06:58 - 2017-10-14 08:29 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-12-13 06:58 - 2017-10-14 08:23 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-12-13 06:58 - 2017-10-14 08:17 - 003717632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-12-13 06:58 - 2017-10-14 07:41 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-12-13 06:58 - 2017-10-14 07:19 - 000780800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-12-13 06:58 - 2017-10-10 17:39 - 001192960 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2017-12-13 06:58 - 2017-10-10 17:29 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2017-12-13 06:58 - 2017-10-10 16:42 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2017-12-13 06:58 - 2017-10-10 15:58 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2017-12-10 18:15 - 2017-12-10 18:15 - 000766552 _____ C:\Users\Louise\Downloads\flux-setup.exe
2017-12-10 18:15 - 2017-12-10 18:15 - 000002142 _____ C:\Users\Louise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2017-12-10 18:15 - 2017-12-10 18:15 - 000000000 ____D C:\Users\Louise\AppData\Local\FluxSoftware
2017-12-08 18:05 - 2017-12-28 13:35 - 000000000 ____D C:\Users\Louise\AppData\Roaming\cacaoweb
2017-12-08 18:05 - 2017-12-08 18:05 - 000568624 _____ C:\Users\Louise\Downloads\cacaoweb.exe
2017-12-05 11:50 - 2017-12-05 11:50 - 000838799 _____ C:\Users\Louise\Downloads\badge_bis2018.pdf
2017-12-04 11:07 - 2017-12-04 11:07 - 005453843 _____ C:\Users\Louise\Downloads\Adobe Cracks.zip
2017-12-04 11:07 - 2017-12-04 11:07 - 000000000 ____D C:\Users\Louise\Downloads\Adobe Cracks
2017-12-03 16:56 - 2017-12-03 16:56 - 000000000 ____D C:\Users\Louise\Downloads\Dossier mécénat général
2017-12-03 16:54 - 2017-12-03 16:55 - 032279204 _____ C:\Users\Louise\Downloads\Dossier mécénat général.zip
2017-12-03 16:52 - 2017-12-03 16:52 - 000003512 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-louiseyacine@hotmail.com
2017-12-03 16:48 - 2017-12-03 16:48 - 000001044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe InDesign CC 2018.lnk
2017-12-03 16:48 - 2017-12-03 16:48 - 000000000 ____D C:\Program Files\Common Files\Adobe
2017-12-03 16:43 - 2017-12-15 19:57 - 000000000 ___RD C:\Users\Louise\Creative Cloud Files
2017-12-03 16:42 - 2017-12-03 16:48 - 000000000 ____D C:\Program Files\Adobe
2017-12-03 16:36 - 2017-12-03 16:36 - 000001245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 13:33 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2017-12-28 12:16 - 2013-03-23 14:05 - 005878272 ___SH C:\Users\Louise\Downloads\Thumbs.db
2017-12-28 10:34 - 2017-11-18 21:09 - 000003956 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{94B1A6D1-B2BD-4546-96BC-C9C58452C7FA}
2017-12-28 10:34 - 2017-11-12 14:34 - 000000000 ____D C:\Users\Louise\AppData\Local\Adobe
2017-12-28 00:29 - 2017-10-29 13:46 - 000003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-12-26 23:24 - 2017-11-11 10:56 - 000000000 ____D C:\Users\Louise\AppData\LocalLow\Mozilla
2017-12-26 19:50 - 2014-11-20 23:46 - 002027818 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-26 19:50 - 2014-11-20 23:03 - 000887118 _____ C:\WINDOWS\system32\perfh00C.dat
2017-12-26 19:50 - 2014-11-20 23:03 - 000192248 _____ C:\WINDOWS\system32\perfc00C.dat
2017-12-26 19:44 - 2017-11-03 22:24 - 000000000 ___RD C:\Users\Louise\OneDrive
2017-12-26 19:43 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-26 19:35 - 2017-11-03 20:34 - 000000000 ____D C:\Users\Louise
2017-12-23 23:39 - 2014-02-20 11:49 - 002234368 ___SH C:\Users\Louise\Desktop\Thumbs.db
2017-12-23 15:21 - 2017-10-30 15:12 - 000000000 ____D C:\Users\Louise\AppData\Roaming\vlc
2017-12-17 09:58 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-14 19:25 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2017-12-14 18:32 - 2013-08-22 15:44 - 000377368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-13 07:49 - 2012-07-26 08:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-13 06:14 - 2017-10-31 15:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 06:08 - 2017-10-31 15:45 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 06:08 - 2017-10-31 15:45 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-10 20:06 - 2017-10-29 13:28 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1765742889-4063860362-2666746338-1001
2017-12-10 17:59 - 2017-11-14 16:20 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-12-09 01:23 - 2017-11-18 21:13 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-07 14:51 - 2017-11-04 10:01 - 000000000 ____D C:\Program Files (x86)\Steam
2017-12-04 17:23 - 2017-11-07 11:23 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-12-04 17:23 - 2017-11-07 11:23 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-04 12:48 - 2017-11-12 15:05 - 000000000 ____D C:\Users\Louise\Downloads\Musicogite
2017-12-03 17:36 - 2017-10-29 13:23 - 000000000 ____D C:\Users\Louise\AppData\Roaming\Adobe
2017-12-03 16:48 - 2017-11-12 14:37 - 000000000 ____D C:\ProgramData\Adobe
2017-12-03 16:42 - 2017-11-12 14:38 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-12-03 16:35 - 2017-11-08 13:16 - 000000000 ____D C:\ProgramData\Package Cache
2017-12-03 02:13 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-03 01:53 - 2017-11-03 20:34 - 000000000 ____D C:\Users\margo_000
2017-12-03 01:53 - 2017-11-03 20:34 - 000000000 ____D C:\Users\Administrator
2017-12-03 01:46 - 2017-11-12 14:39 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 18:48 - 2017-11-18 23:48 - 000011537 _____ C:\Users\Louise\Downloads\Sans nom 1.odt
Certains fichiers dans TEMP:
====================
2017-11-19 11:47 - 2017-11-19 12:05 - 000065536 _____ (Sony DADC Austria AG) C:\Users\Louise\AppData\Local\Temp\drm_dialogs.dll
2017-11-19 12:10 - 2017-11-19 12:10 - 000000000 ____D () C:\Users\Louise\AppData\Local\Temp\LEGOLOTR.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-19 15:45
==================== Fin de FRST.txt ============================