Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-04-2020 Exécuté par Franck (administrateur) sur FRANCK-PC (ACER Aspire T650 ) (02-05-2020 15:12:32) Exécuté depuis C:\Users\Franck\Desktop Profils chargés: Franck (Profils disponibles: Franck) Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Safe Mode (with Networking) Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [108216 2020-04-30] (Avast Software s.r.o. -> AVAST Software) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-3766261931-1034866844-1695699937-1001\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [30720 2010-11-20] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-3766261931-1034866844-1695699937-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Startup: C:\Users\Franck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 2510 series.lnk [2020-05-02] ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 2510 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN31O3JJBM05QX;CONNECTION=USB;MONITOR=1; FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {29F82CC1-5B47-4BDC-9D06-FE0EB0ED30A4} - System32\Tasks\{81D7F298-5A90-463C-AE38-1836C7B96582} => C:\Windows\system32\pcalua.exe -a E:\setup.exe -d E:\ Task: {3D635970-06FF-402A-83E7-3FA57C3C0D10} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [3325032 2020-04-30] (Avast Software s.r.o. -> AVAST Software) Task: {46DD66C3-36D0-445B-8C57-0F56BB41951E} - \CCleanerSkipUAC -> Pas de fichier <==== ATTENTION Task: {4A6C4F33-F29C-4789-AB6E-594A36EF4AFA} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-14] (Adobe Inc. -> Adobe) Task: {4BD2928A-0B89-4CC4-860C-9317DC64073E} - System32\Tasks\HP AR Program Upload - 45d9c35340fd44679de8bebfb5db28052f5e1fa3cf0b4d7e859c0b5943a10aa7 => C:\Program Files\HP\HP Deskjet 2510 series\bin\HPRewards.exe [3513960 2012-10-02] (Hewlett Packard -> TODO: ) Task: {4E7C422A-983E-4365-A5E0-C9CCCA987DE8} - System32\Tasks\HP AR Program Upload - d79498e0356340fda94fa2d67a5d788f748ef4ed0fc24e68a69435bfe83dd0cf => C:\Program Files\HP\HP Deskjet 2510 series\bin\HPRewards.exe [3513960 2012-10-02] (Hewlett Packard -> TODO: ) Task: {5635A23B-DCFD-43ED-88A2-3AACB964A90C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-04-14] (Adobe Inc. -> Adobe) Task: {69C553E6-63E3-4900-93CB-25F5501DECB9} - System32\Tasks\{BD5424F1-62CC-45A2-8625-E25423609265} => C:\Program Files\HP\HP Deskjet 2510 series\Bin\HP Deskjet 2510 series.exe [5420136 2012-10-02] (Hewlett Packard -> Hewlett-Packard Co.) Task: {6E29E602-921E-444F-99AA-A369E81CEB89} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [134008 2020-03-25] (HP Inc. -> HP Inc.) Task: {7A4EC817-F2FF-4F7F-B93D-460FAD8AA8BE} - System32\Tasks\HP AR Program Upload - a72fee77dd1c4456b2ba37d08be3124f7f79bbc2b894437a8af5403985c31362 => C:\Program Files\HP\HP Deskjet 2510 series\bin\HPRewards.exe [3513960 2012-10-02] (Hewlett Packard -> TODO: ) Task: {8533D66D-FE48-4A00-8275-7446E394E7EF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {9246F379-62D0-43F1-A902-D50ADBEF7439} - System32\Tasks\HP AR Program Upload - cf7cd12955274868ab9eff788cbe9f1bf756d221577740429d305ab1532c5abe => C:\Program Files\HP\HP Deskjet 2510 series\bin\HPRewards.exe [3513960 2012-10-02] (Hewlett Packard -> TODO: ) Task: {990D073B-BF9C-440F-887B-599411741863} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.) Task: {A23C642C-E387-4C1C-98B5-7D9321A7B994} - System32\Tasks\{D8C495B3-DA4D-438C-A10A-8BE83A778A7F} => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd -> Piriform Ltd) Task: {DA810FCA-F113-4C72-A247-CE80EE218AAF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems) Task: {EFBB43ED-AB23-494F-8196-29CEFC52E871} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [110792 2020-04-09] (Mozilla Corporation -> Mozilla Foundation) Task: {F33692A4-4EA5-4035-BF1A-22BBD978B4B8} - System32\Tasks\{43211D0D-4AF7-4523-BBFD-9748ACD92C53} => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd -> Piriform Ltd) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{A7F84F19-A36B-4BC7-98A8-79A4D891DAAB}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/ HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/ SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3766261931-1034866844-1695699937-1001 -> DefaultScope {CF8C8124-D0C8-4BFA-BD75-2AFD54A56D18} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} SearchScopes: HKU\S-1-5-21-3766261931-1034866844-1695699937-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D102718-N0400A21ABFDD9D88F4162B1F&form=CONBDF&conlogo=CT3332016&q={searchTerms} SearchScopes: HKU\S-1-5-21-3766261931-1034866844-1695699937-1001 -> {CF8C8124-D0C8-4BFA-BD75-2AFD54A56D18} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-04-29] (Skype Software Sarl -> Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-04-29] (Skype Software Sarl -> Microsoft Corporation) Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-04-29] (Skype Software Sarl -> Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-04-29] (Skype Software Sarl -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: qhx1hevv.default-1495914256750 FF ProfilePath: C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750 [2020-05-02] FF Homepage: Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750 -> hxxps://www.orange.fr/portail FF NewTab: Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750 -> hxxp://www.bing.com/?pc=COSP&ptag=D102718-N0300A21ABFDD9D88F4162B1F&form=CONMHP&conlogo=CT3332016 FF NetworkProxy: Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750 -> type", 0 FF Extension: (Protection Web Avira) - C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\Extensions\abs@avira.com.xpi [2019-01-10] [UpdateUrl:hxxps://download.avira.com/package/absnooffers/firefox/update_webext_no_offers.rdf] FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\Extensions\sp@avast.com.xpi [2020-05-01] FF Extension: (Avast Online Security) - C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\Extensions\wrc@avast.com.xpi [2020-04-17] FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2019-12-03] FF Extension: (Video DownloadHelper) - C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-31] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-04-01] FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2019-08-19] FF SearchPlugin: C:\Users\Franck\AppData\Roaming\Mozilla\Firefox\Profiles\qhx1hevv.default-1495914256750\searchplugins\bing-lavasoft-ff59.xml [2018-10-28] FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_363.dll [2020-04-14] (Adobe Inc. -> ) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3766261931-1034866844-1695699937-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Franck\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP) Chrome: ======= CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [5504928 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [345384 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S4 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-04-29] (Skype Software Sarl -> Microsoft Corporation) S4 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-04-29] (Skype Software Sarl -> Microsoft Corporation) S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [378744 2020-03-31] (HP Inc. -> HP Inc.) S2 LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [173344 2007-02-06] (Logitech Inc -> Logitech Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) S2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37856 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206120 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234776 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178968 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60696 2020-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42984 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175920 2020-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [500960 2020-04-30] (Avast Software s.r.o. -> AVAST Software) R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-30] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109480 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85056 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851808 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S1 aswSP; C:\Windows\System32\drivers\aswSP.sys [459408 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235696 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317280 2020-04-30] (Avast Software s.r.o. -> AVAST Software) S3 LVcKap64; C:\Windows\System32\DRIVERS\LVcKap64.sys [1013024 2007-02-06] (Logitech Inc -> Logitech Inc.) S3 LVMVDrv; C:\Windows\System32\DRIVERS\LVMVDrv.sys [2346016 2007-02-06] (Logitech Inc -> Logitech Inc.) S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2Mon.sys [31520 2007-02-06] (Logitech Inc -> ) R0 mv91cons; C:\Windows\System32\DRIVERS\mv91cons.sys [28008 2012-06-07] (Marvell Semiconductor -> Marvell Semiconductor Inc.) S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2020-03-18] (Avira Operations GmbH & Co. KG -> The OpenVPN Project) S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Windows -> Microsoft Corporation) R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 WacHidRouterPro; system32\DRIVERS\wachidrouter.sys [X] S3 wacomrouterfilter; system32\DRIVERS\wacomrouterfilter.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) =================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-05-02 15:12 - 2020-05-02 15:13 - 000019759 _____ C:\Users\Franck\Desktop\FRST.txt 2020-05-02 15:12 - 2020-05-02 15:13 - 000000000 ____D C:\FRST 2020-05-02 15:01 - 2020-05-02 15:02 - 002283520 _____ (Farbar) C:\Users\Franck\Desktop\FRST64.exe 2020-05-01 20:18 - 2020-05-02 15:11 - 000099798 _____ C:\Windows\ntbtlog.txt 2020-05-01 19:00 - 2020-05-01 19:00 - 000062759 _____ C:\Users\Franck\Downloads\correction_des_questions_sur_Edward_aux_mains_d_argent.pdf 2020-05-01 19:00 - 2020-05-01 19:00 - 000062759 _____ C:\Users\Franck\Downloads\correction_des_questions_sur_Edward_aux_mains_d_argent(1).pdf 2020-05-01 18:58 - 2020-05-01 18:58 - 000167306 _____ C:\Users\Franck\Downloads\Semaine_4_-_activit__du_lundi_27_avril_-_correction_-_fiche_activit__de_vocabulaire_-_6eB.pdf 2020-05-01 18:17 - 2020-05-01 18:17 - 000266905 _____ C:\Users\Franck\Downloads\Séance 2020-05-01 18:16 - 2020-05-01 18:16 - 001980016 _____ (Malwarebytes) C:\Users\Franck\Desktop\MBSetup.exe 2020-04-30 19:43 - 2020-04-30 19:43 - 000002079 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk 2020-04-30 19:43 - 2020-04-30 19:43 - 000002079 _____ C:\ProgramData\Desktop\Avast Antivirus Gratuit.lnk 2020-04-30 19:43 - 2020-04-30 19:43 - 000000000 ____D C:\Users\Franck\AppData\Roaming\Avast Software 2020-04-30 19:43 - 2020-04-30 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2020-04-30 19:39 - 2020-05-01 17:38 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2020-04-30 19:38 - 2020-04-30 19:39 - 000500960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys 2020-04-30 19:38 - 2020-04-30 19:39 - 000459408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000337048 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2020-04-30 19:38 - 2020-04-30 19:38 - 000317280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000235696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000175920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000109480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000085056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000042984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys 2020-04-30 19:38 - 2020-04-30 19:38 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2020-04-30 19:38 - 2020-04-30 19:37 - 000851808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2020-04-30 19:38 - 2020-04-30 19:37 - 000234776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2020-04-30 19:38 - 2020-04-30 19:37 - 000206120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2020-04-30 19:38 - 2020-04-30 19:37 - 000178968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2020-04-30 19:38 - 2020-04-30 19:37 - 000060696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2020-04-30 19:38 - 2020-04-30 19:37 - 000037856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2020-04-30 19:35 - 2020-04-30 19:35 - 000000000 ____D C:\Program Files\Avast Software 2020-04-30 19:34 - 2020-04-30 19:34 - 000230080 _____ (AVAST Software) C:\Users\Franck\Desktop\avast_free_antivirus_setup_online.exe 2020-04-30 19:02 - 2020-04-30 19:02 - 000000000 ____D C:\ProgramData\SecuritySuite 2020-04-30 19:01 - 2020-04-30 19:02 - 000000000 ____D C:\ProgramData\TotalAV 2020-04-30 17:39 - 2020-04-30 17:39 - 000543742 _____ C:\Users\Franck\Downloads\activité 2 - jeudi 30 avril - chapitre aventure.pdf 2020-04-24 21:42 - 2020-04-24 21:43 - 000271644 _____ C:\Windows\SysWOW64\tmp 2020-04-17 20:37 - 2020-04-17 20:37 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf 2020-04-17 19:47 - 2020-04-17 19:47 - 010899784 _____ (AVAST Software) C:\Users\Franck\Downloads\avastclear.exe 2020-04-17 15:03 - 2020-04-17 15:03 - 000001270 _____ C:\Users\Public\Desktop\Skype.lnk 2020-04-17 15:03 - 2020-04-17 15:03 - 000001270 _____ C:\ProgramData\Desktop\Skype.lnk 2020-04-17 15:03 - 2020-04-17 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-04-17 15:02 - 2020-04-17 15:02 - 000001030 _____ C:\Users\Public\Desktop\VLC media player.lnk 2020-04-17 15:02 - 2020-04-17 15:02 - 000001030 _____ C:\ProgramData\Desktop\VLC media player.lnk 2020-04-17 14:35 - 2020-04-30 19:35 - 000000000 ____D C:\ProgramData\Avast Software 2020-04-17 13:43 - 2020-04-17 13:43 - 000000000 ____D C:\Users\Franck\AppData\Local\AviraSpeedup 2020-04-17 13:35 - 2020-04-17 13:35 - 000000000 ____D C:\Windows\system32\Tasks\Avira 2020-04-16 21:55 - 2020-04-16 21:55 - 000000000 ____D C:\Users\Public\Security Sessions 2020-04-16 21:38 - 2020-04-16 21:55 - 000000000 ____D C:\Users\Franck\AppData\Local\Avira 2020-04-14 16:26 - 2020-04-14 16:26 - 000429017 _____ C:\Users\Franck\Downloads\sortie.pdf 2020-04-10 16:52 - 2020-04-10 16:52 - 000535814 _____ C:\Users\Franck\Downloads\parcours éducatifs - métier et avenir.pdf 2020-04-10 16:44 - 2020-04-10 16:50 - 000000000 ____D C:\Users\Franck\Downloads\TRAVAIL A FAIRE 2020-04-09 16:22 - 2020-04-09 16:22 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2020-04-09 14:46 - 2020-04-10 09:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-05-02 15:04 - 2016-12-22 10:39 - 000000000 ____D C:\Users\Franck\AppData\LocalLow\Mozilla 2020-05-02 11:28 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-05-01 20:25 - 2009-07-14 17:24 - 000747320 _____ C:\Windows\system32\perfh00C.dat 2020-05-01 20:25 - 2009-07-14 17:24 - 000149844 _____ C:\Windows\system32\perfc00C.dat 2020-05-01 20:25 - 2009-07-14 07:13 - 001668256 _____ C:\Windows\system32\PerfStringBackup.INI 2020-05-01 20:25 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2020-05-01 20:20 - 2020-03-15 10:11 - 000000000 ____D C:\Program Files\Evolus 2020-05-01 19:06 - 2020-03-23 17:00 - 000000000 ____D C:\Users\Franck\Downloads\2 MATH 2020-04-30 19:38 - 2009-07-14 06:45 - 000030064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-04-30 19:38 - 2009-07-14 06:45 - 000030064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-04-30 18:55 - 2016-06-27 10:15 - 000000000 ____D C:\ProgramData\Package Cache 2020-04-30 18:55 - 2016-06-27 10:15 - 000000000 ____D C:\ProgramData\Avira 2020-04-30 18:02 - 2020-03-23 17:04 - 000000000 ____D C:\Users\Franck\Downloads\8 ALLEMAND 2020-04-30 18:02 - 2020-03-23 17:01 - 000000000 ____D C:\Users\Franck\Downloads\5 TECHNO 2020-04-30 18:02 - 2020-03-23 17:00 - 000000000 ____D C:\Users\Franck\Downloads\3 ANGLAIS 2020-04-30 18:01 - 2020-03-23 17:04 - 000000000 ____D C:\Users\Franck\Downloads\9 SVT 2020-04-30 18:01 - 2020-03-23 17:02 - 000000000 ____D C:\Users\Franck\Downloads\6 HIST. GEO 2020-04-30 18:01 - 2020-03-23 17:00 - 000000000 ____D C:\Users\Franck\Downloads\1 FRANCAIS 2020-04-29 16:26 - 2014-11-19 16:51 - 000000000 ____D C:\Users\Franck\Documents\franck 2020-04-17 15:04 - 2016-05-16 21:33 - 000000000 ____D C:\Users\Franck\AppData\Roaming\Skype 2020-04-17 15:03 - 2016-05-16 21:32 - 000000000 ___RD C:\Program Files (x86)\Skype 2020-04-17 15:03 - 2016-05-16 21:32 - 000000000 ____D C:\ProgramData\Skype 2020-04-17 14:57 - 2016-05-20 09:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2020-04-17 14:57 - 2016-05-20 09:30 - 000000000 ____D C:\Program Files (x86)\7-Zip 2020-04-17 13:30 - 2009-07-14 06:45 - 000350848 _____ C:\Windows\system32\FNTCACHE.DAT 2020-04-16 21:59 - 2016-04-24 16:27 - 000082352 _____ C:\Users\Franck\AppData\Local\GDIPFONTCACHEV1.DAT 2020-04-14 16:05 - 2018-03-13 13:19 - 000004638 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-04-14 16:05 - 2016-10-03 20:58 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2020-04-14 16:05 - 2016-10-03 20:58 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2020-04-14 16:05 - 2016-10-03 20:58 - 000004484 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater 2020-04-14 16:04 - 2016-10-03 20:57 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2020-04-14 16:04 - 2016-10-03 20:57 - 000000000 ____D C:\Windows\system32\Macromed 2020-04-11 15:38 - 2017-05-05 13:42 - 000000000 ____D C:\Users\Franck\Downloads\Documents FRANCK 2020-04-11 15:16 - 2020-03-30 19:14 - 000000000 ____D C:\Users\Franck\Downloads\dessin 2020-04-10 09:34 - 2017-09-14 20:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-04-09 18:58 - 2020-03-23 17:03 - 000000000 ____D C:\Users\Franck\Downloads\7 ARTS PLAST 2020-04-06 19:00 - 2020-03-23 17:01 - 000000000 ____D C:\Users\Franck\Downloads\4 SCIENCE PHYS 2020-04-02 01:49 - 2016-04-24 15:36 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe ==================== Fichiers à la racine de certains dossiers ======== 2018-10-28 00:22 - 2018-10-28 00:22 - 000214432 _____ () C:\Users\Franck\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt 2016-05-16 11:45 - 2016-08-17 17:23 - 000007599 _____ () C:\Users\Franck\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) LastRegBack: 2020-04-27 11:02 ==================== Fin de FRST.txt ========================