cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:07-11-2015
Exécuté par GILBERT (administrateur) sur PC-DE-GILBERT (15-11-2015 10:24:04)
Exécuté depuis C:\Users\GILBERT\Desktop
Profils chargés: GILBERT (Profils disponibles: GILBERT & marijo)
Platform: Windows Vista (TM) Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 7 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSMA32.EXE
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fsgk32.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSHDLL32.EXE
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccsvchst.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSHDLL64.EXE
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugincontainer.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
() C:\Program Files (x86)\Common Files\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\updater.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Windows\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Java\jre1.6.0_01\bin\jusched.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\FWES\program\fsdfwd.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fssm32.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\ORSP Client\fsorsp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Hewlett-Packard Company) C:\hp\KBD\kbd.exe
(F-Secure Corporation) C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fsav32.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\2\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\4\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\7\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\5\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\3\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\8\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\6\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\12\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\7\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\3\Plugin.exe
() C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugins\12\Plugin.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ieuser.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Farbar) C:\Users\GILBERT\Desktop\FRST64 (1).exe
(Microsoft Corporation) C:\Windows\System32\conime.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1584184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RAVCpl64.exe [6150656 2008-03-26] (Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdSync.exe [225792 2008-01-21] (Microsoft Corporation)
HKLM-x32\...\Run: [KBD] => C:\HP\KBD\KbdStub.EXE [65536 2006-12-08] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Java\jre1.6.0_01\bin\jusched.exe [132760 2007-04-07] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SSDMonitor] => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe [105120 2012-08-21] (PC Tools)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\system32\ezShellStart.exe [X]
HKU\S-1-5-21-2777120483-1920346385-1472508067-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-2777120483-1920346385-1472508067-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2777120483-1920346385-1472508067-1000\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-2777120483-1920346385-1472508067-1000\...\Policies\Explorer: [NoLogoff] 0
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [49152 2008-12-25] (EasyBits Software Corp.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-19] (AVAST Software)
Startup: C:\Users\GILBERT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2008-12-30]
ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog9 01 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 02 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 03 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 04 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 05 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 06 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 07 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 08 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 09 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 10 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9 21 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\FSLSP.DLL [189352 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 01 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 02 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 03 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 04 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 05 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 06 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 07 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 08 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 09 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 10 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Winsock: Catalog9-x64 21 C:\Program Files (x86)\Orange\Antivirus Firewall\FSPS\program\fslsp_x64.dll [219560 2009-11-18] (F-Secure Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{2768C3CF-C43C-4AE4-AC5E-55E8EA8B4FCE}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggUdg9ZB1hJGBgUcQsLTA0SQFAOeF1eWBRGFARGIQhbBw1GEVEFIk0FA1ADB0VXfVBdFElXTwhqLk1dE1cUVWVRL15KAFQ=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=83&bd=Pavilion&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-2777120483-1920346385-1472508067-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-2777120483-1920346385-1472508067-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggUdg9ZB1hJGBgUcQsLTA0SQFAOeF1eWBRGFARGIQhbBw1GEVEFIk0FA1ADB0VXfVBdFElXTwhqLk1dE1cUVWVRL15KAFQ=
HKU\S-1-5-21-2777120483-1920346385-1472508067-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4OV1gXQA0abQ4JUwpcFVZCJRQABV9IDAIWcVxZUFoXFQITJB9aFQQTSEcFME0FCFwEURNNfXBWFVwDT1BXEEtXBksQTA==&q={searchTerms}
SearchScopes: HKLM -> {0E4AEAD3-3324-4746-85A8-32CB1C24F757} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4OV1gXQA0abQ4JUwpcFVZCJRQABV9IDAIWcVxZUFoXFQITJB9aFQQTSEcFME0FCFwEURNNfXBWFVwDT1BXEEtXBksQTA==&q={searchTerms}
SearchScopes: HKLM -> {C5265FE4-5080-4D5E-A289-A0BE9B00727F} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1156&query={searchTerms}&invocationType=tb50hpcndtie7-fr-fr
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {0E4AEAD3-3324-4746-85A8-32CB1C24F757} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKLM-x32 -> {C5265FE4-5080-4D5E-A289-A0BE9B00727F} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1156&query={searchTerms}&invocationType=tb50hpcndtie7-fr-fr
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4OV1gXQA0abQ4JUwpcFVZCJRQABV9IDAIWcVxZUFoXFQITJB9aFQQTSEcFME0FCFwEURNNfXBWFVwDT1BXEEtXBksQTA==&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> {0E4AEAD3-3324-4746-85A8-32CB1C24F757} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://fr.search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bir-is__alt__ddc_dss_bd_com&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> {C5265FE4-5080-4D5E-A289-A0BE9B00727F} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1156&query={searchTerms}&invocationType=tb50hpcndtie7-fr-fr
SearchScopes: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4OV1gXQA0abQ4JUwpcFVZCJRQABV9IDAIWcVxZUFoXFQITJB9aFQQTSEcFME0FCFwEURNNfXBWFVwDT1BXEEtXBksQTA==&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> {EC644A48-026D-4780-84C3-83229A26FA0F} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4OV1gXQA0abQ4JUwpcFVZCJRQABV9IDAIWcVxZUFoXFQITJB9aFQQTSEcFME0FCFwEURNNfXBWFVwDT1BXEEtXBksQTA==&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-19] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-26] (Google Inc.)
BHO-x32: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coIEPlg.dll [2012-05-10] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\IPS\IPSBHO.DLL [2012-03-29] (Symantec Corporation)
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.6.0_01\bin\ssv.dll [2007-04-07] (Sun Microsystems, Inc.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-19] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-26] (Google Inc.)
BHO-x32: Browsing Protection Class -> {C6867EB7-8350-4856-877F-93CF8AE3DC9C} -> C:\Program Files (x86)\Orange\Antivirus Firewall\NRS\iescript\baselitmus.dll [2014-04-25] (F-Secure Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-26] (Google Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\coIEPlg.dll [2012-05-10] (Symantec Corporation)
Toolbar: HKLM-x32 - secure-surf Toolbar - {9EDFF826-787E-422A-BB78-A0D654F030D0} - C:\Program Files (x86)\secure-surf\Toolbar\secure-surf.dll [2014-05-05] (DM73)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-26] (Google Inc.)
Toolbar: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-26] (Google Inc.)
Toolbar: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> Pas de nom - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Pas de fichier
Toolbar: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll [2011-04-21] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> Pas de nom - {D3028143-6145-4318-99D3-3EDCE54A95A9} - Pas de fichier
Toolbar: HKU\S-1-5-21-2777120483-1920346385-1472508067-1000 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
DPF: HKLM-x32 {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-04-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2011-04-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-04-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2011-04-21] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [Pas de fichier]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2009-03-26] (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-19] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2015-07-08] ()
FF Plugin HKU\S-1-5-21-2777120483-1920346385-1472508067-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\GILBERT\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-03] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [litmus-ff@f-secure.com] - C:\Program Files (x86)\Orange\Antivirus Firewall\NRS\litmus-ff@f-secure.com
FF Extension: Browsing Protection - C:\Program Files (x86)\Orange\Antivirus Firewall\NRS\litmus-ff@f-secure.com [2014-04-25] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn [2012-04-16] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn
FF Extension: Pas de nom - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn [2012-08-26] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-19] [non signé]

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com/?trackid=sp-006
CHR RestoreOnStartup: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggUdg9ZB1hJGBgUcQsLTA0SQFAOeF1eWBRGFARGIQhbBw1GEVEFIk0FA1oDB0VXfV5bFElXTwhqLk1dE1cUVWVRL15KAFQ="
CHR StartupUrls: Default -> "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggUdg9ZB1hJGBgUcQsLTA0SQFAOeF1eWBRGFARGIQhbBw1GEVEFIk0FA1oDB0VXfV5bFElXTwhqLk1dE1cUVWVRL15KAFQ="
CHR DefaultSearchURL: Default -> hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQ4OV1gXQA0abQ4JUwpcFVZCJRQABV9IDAIWcVxZUFoXFQITJB9aFQQTQkcFME0FBloEURNNfXBWFVwDT1BXEEtXBksQTA==&q={searchTerms}
CHR DefaultSearchKeyword: Default -> searchinterneat-a.akamaihd.net
CHR DefaultNewTabURL: Default -> hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAIVdlheAAFIDAIScgoVVVoQRBgbJF8BTA5EEFBCcVpeVQ5BRRNBNARaAktXUUEeJ1pNER8fHHxNNFxKD1wFcUdMJ0tZDA==
CHR Profile: C:\Users\GILBERT\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\GILBERT\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-13]
CHR Extension: (Avast Online Security) - C:\Users\GILBERT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-13]
CHR Extension: (Internet Program) - C:\Users\GILBERT\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjjbahfchkicneodcahadkochbagfmpo [2015-11-14] [UpdateUrl: hxxp://cdn.myinternetprogram.com/update] <==== ATTENTION
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\GILBERT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-13]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-09-19]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-19]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\Exts\Chrome.crx

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-19] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-09-19] (AVAST Software)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [Fichier non signé]
R2 F-Secure Gatekeeper Handler Starter; C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe [221608 2009-11-18] (F-Secure Corporation)
R3 FSDFWD; C:\Program Files (x86)\Orange\Antivirus Firewall\FWES\Program\fsdfwd.exe [846248 2009-11-18] (F-Secure Corporation)
R2 FSMA; C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSMA32.EXE [188840 2009-11-18] (F-Secure Corporation)
R3 FSORSPClient; C:\Program Files (x86)\Orange\Antivirus Firewall\ORSP Client\fsorsp.exe [60352 2013-06-07] (F-Secure Corporation)
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-07-08] (WildTangent)
R2 HP Health Check Service; c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-03-14] (Hewlett-Packard) [Fichier non signé]
R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2008-03-17] (Hewlett-Packard Company) [Fichier non signé]
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe [138232 2012-03-28] (Symantec Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [794272 2012-08-21] (PC Tools)
R2 Service Mgr InternetProgram; C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\plugincontainer.exe [637664 2015-11-15] () <==== ATTENTION
R2 Update Mgr InternetProgram; C:\Program Files (x86)\Common Files\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9\updater.exe [546016 2015-11-14] () <==== ATTENTION
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-19] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-09-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-19] (AVAST Software)
R0 aswNdis; C:\Windows\System32\DRIVERS\aswNdis.sys [12368 2015-09-19] (ALWIL Software)
R0 aswNdis2; C:\Windows\System32\Drivers\aswNdis2.sys [334024 2015-09-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [64712 2015-09-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-19] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [206816 2015-09-19] (AVAST Software)
S3 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65224 2015-09-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-19] (AVAST Software)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120507.001\BHDrvx64.sys [1160824 2012-04-02] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys [167048 2011-11-29] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [482936 2012-04-16] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138360 2012-04-16] (Symantec Corporation)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\minifilter\fsgk.sys [202176 2013-07-11] (F-Secure Corporation)
R1 F-Secure HIPS; C:\Program Files (x86)\Orange\Antivirus Firewall\HIPS\drivers\fshs.sys [59784 2009-11-18] (F-Secure Corporation)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2012-10-27] ()
R0 fsbts; C:\Windows\SysWOW64\Drivers\fsbts.sys [42672 2011-08-17] ()
S1 FSES; C:\Windows\System32\drivers\fses.sys [50384 2011-09-07] (F-Secure Corporation)
R1 FSFW; C:\Windows\System32\drivers\fsdfw.sys [94024 2009-11-18] (F-Secure Corporation)
R1 fsvista; C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\minifilter\fsvista.sys [16768 2009-11-18] ()
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120511.001\IDSvia64.sys [488568 2012-04-28] (Symantec Corporation)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-04-30] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-04-30] ()
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120513.007\ENG64.SYS [117880 2012-05-14] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120513.007\EX64.SYS [2048632 2012-05-14] (Symantec Corporation)
R3 Ps2; C:\Windows\System32\DRIVERS\PS2.sys [21504 2006-09-07] ()
S0 PxHlpa64; C:\Windows\SysWOW64\Drivers\PxHlpa64.sys [26720 2004-09-23] (Sonic Solutions) [Fichier non signé]
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1307010.005\SRTSP64.SYS [737912 2012-03-29] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1307010.005\SRTSPX64.SYS [37496 2012-03-29] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1307010.005\SYMDS64.SYS [451192 2011-07-25] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1307010.005\SYMEFA64.SYS [1092728 2012-03-29] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [175736 2012-04-16] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS [190072 2012-03-29] (Symantec Corporation)
R1 SYMTDIv; C:\Windows\System32\Drivers\NISx64\1307010.005\SYMTDIV.SYS [445560 2012-03-29] (Symantec Corporation)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 PCAMp50a64; System32\Drivers\PCAMp50a64.sys [X]
S3 PCASp50a64; System32\Drivers\PCASp50a64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-11-15 10:24 - 2015-11-15 10:24 - 00031869 _____ C:\Users\GILBERT\Desktop\FRST.txt
2015-11-15 10:23 - 2015-11-15 10:24 - 00000000 ____D C:\FRST
2015-11-15 10:22 - 2015-11-15 10:18 - 02198528 _____ (Farbar) C:\Users\GILBERT\Desktop\FRST64 (1).exe
2015-10-25 15:01 - 2015-10-25 15:50 - 00000000 ____D C:\Windows\SysWOW64\15102502_stream

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-11-15 10:23 - 2008-05-28 20:23 - 00692920 _____ C:\Windows\system32\perfh00C.dat
2015-11-15 10:23 - 2008-05-28 20:23 - 00132958 _____ C:\Windows\system32\perfc00C.dat
2015-11-15 10:23 - 2006-11-02 13:46 - 01538270 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-15 10:21 - 2015-01-31 10:00 - 00000695 _____ C:\Windows\setupact.log
2015-11-15 10:10 - 2008-07-15 13:08 - 01089404 _____ C:\Windows\WindowsUpdate.log
2015-11-15 10:09 - 2015-09-20 17:59 - 00000000 ___SD C:\Users\GILBERT\AppData\LocalLow\Temp
2015-11-15 10:07 - 2013-01-03 19:00 - 00000288 _____ C:\Windows\Tasks\RMAutoUpdate.job
2015-11-15 10:06 - 2013-01-02 20:48 - 00000000 ____D C:\ProgramData\TEMP
2015-11-15 10:05 - 2014-10-26 11:41 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-11-15 10:05 - 2013-01-02 20:48 - 00000000 ____D C:\Program Files (x86)\PC Tools Registry Mechanic
2015-11-15 10:05 - 2010-01-31 21:54 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-15 10:04 - 2014-12-24 10:30 - 00278296 _____ C:\Windows\PFRO.log
2015-11-15 10:04 - 2009-12-28 12:27 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2015-11-15 10:04 - 2006-11-02 16:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-15 10:04 - 2006-11-02 16:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-15 10:04 - 2006-11-02 16:22 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-15 10:01 - 2014-12-24 10:09 - 00000000 ____D C:\ProgramData\6fb1f30a-cea7-4ccf-bff8-acbecbfe46f9
2015-11-15 09:58 - 2010-11-11 17:44 - 00003998 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{D4896BE0-5A01-4E50-BC41-9186B244EABB}
2015-11-15 09:58 - 2010-11-11 17:44 - 00000438 ____H C:\Windows\Tasks\User_Feed_Synchronization-{D4896BE0-5A01-4E50-BC41-9186B244EABB}.job
2015-11-15 09:58 - 2010-01-31 21:54 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-14 21:11 - 2006-11-02 16:42 - 00032500 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-11-14 18:38 - 2014-12-24 10:09 - 00000000 ____D C:\Program Files (x86)\Internet Program
2015-11-14 16:42 - 2015-06-10 10:08 - 00002013 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-11-14 16:42 - 2008-05-28 11:09 - 00000943 _____ C:\Users\Public\Desktop\Internet Explorer.lnk
2015-11-14 15:51 - 2013-07-16 14:46 - 00000936 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2777120483-1920346385-1472508067-1000UA.job
2015-11-14 15:51 - 2013-07-16 14:46 - 00000914 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2777120483-1920346385-1472508067-1000Core.job
2015-11-13 20:04 - 2013-01-03 19:00 - 00000418 _____ C:\Windows\SysWOW64\AppLog.log
2015-11-13 20:04 - 2013-01-02 20:49 - 00000288 _____ C:\Windows\Tasks\RMSchedule.job
2015-11-13 13:26 - 2014-11-02 17:56 - 00019240 _____ C:\Windows\system32\spsys.log
2015-11-11 21:22 - 2008-12-25 16:25 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-06 17:17 - 2014-10-26 11:36 - 01059656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-11-06 17:17 - 2014-10-26 11:36 - 00449992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys

==================== Fichiers à la racine de certains dossiers =======

2013-07-28 10:24 - 2013-08-15 14:24 - 0000071 _____ () C:\Users\GILBERT\AppData\Roaming\WB.CFG
2013-07-18 11:24 - 2013-08-19 13:25 - 0000005 _____ () C:\Users\GILBERT\AppData\Roaming\WBPU-Q5-TTL.DAT
2013-07-16 17:24 - 2013-08-24 13:24 - 0000005 _____ () C:\Users\GILBERT\AppData\Roaming\WBPU-TTL.DAT
2008-12-25 16:26 - 2015-02-24 14:16 - 0001464 _____ () C:\Users\GILBERT\AppData\Roaming\wklnhst.dat
2011-07-20 20:54 - 2013-06-27 19:58 - 0000680 _____ () C:\Users\GILBERT\AppData\Local\d3d9caps.dat
2009-10-31 20:23 - 2013-01-02 12:32 - 0006656 _____ () C:\Users\GILBERT\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-11-11 11:09 - 2010-11-11 11:10 - 0429836 _____ () C:\Users\GILBERT\AppData\Local\dd_vcredistMSI3B8F.txt
2010-11-11 11:09 - 2010-11-11 11:10 - 0013878 _____ () C:\Users\GILBERT\AppData\Local\dd_vcredistUI3B8F.txt
2012-04-14 12:55 - 2012-04-14 12:56 - 0015340 _____ () C:\Users\GILBERT\AppData\Local\dd_vcredistUI4202.txt
2013-08-15 14:24 - 2013-08-15 14:24 - 0051157 _____ () C:\Users\GILBERT\AppData\Local\InfoBirdPro.crx
2013-08-19 13:25 - 2013-08-19 13:25 - 0059145 _____ () C:\Users\GILBERT\AppData\Local\RealSummerSale.crx

Certains fichiers dans TEMP:
====================
C:\Users\GILBERT\AppData\Local\Temp\aeb5724c-8e46-4e21-8478-082312f0e06c.exe
C:\Users\GILBERT\AppData\Local\Temp\d23ea916-fa82-43c4-a194-ae26b71990b0.exe
C:\Users\GILBERT\AppData\Local\Temp\d2ee02db-e815-4aa1-a992-0a2eedf05795.exe
C:\Users\GILBERT\AppData\Local\Temp\f8761fe9-65c4-4d0d-b4c7-83c7cbf534be.exe
C:\Users\GILBERT\AppData\Local\Temp\fb87391c-d8a9-47cc-b364-9a91db8f950f.exe
C:\Users\GILBERT\AppData\Local\Temp\{0FC995FF-8F18-4160-932D-3645F366512E}.dll
C:\Users\GILBERT\AppData\Local\Temp\{20A0FC7B-92AA-4B79-AD2D-BA93A4727AD9}.dll
C:\Users\GILBERT\AppData\Local\Temp\{28D3B2C4-F7C3-4BDC-AC93-94213E8A3F56}.dll
C:\Users\GILBERT\AppData\Local\Temp\{2CBEE76C-C5EB-4741-AF77-B4390002B078}.dll
C:\Users\GILBERT\AppData\Local\Temp\{425B5D5F-7635-4546-9171-5A4FB50152D2}.dll
C:\Users\GILBERT\AppData\Local\Temp\{485F275B-5FB1-4C6C-8FF0-AF2AFECDBA16}.dll
C:\Users\GILBERT\AppData\Local\Temp\{50A675D3-2967-413A-BCD1-90E15723DD61}.dll
C:\Users\GILBERT\AppData\Local\Temp\{5294501D-1869-4FEB-9CB3-74F491F57F9F}.dll
C:\Users\GILBERT\AppData\Local\Temp\{83869BFA-579A-498E-90D4-39C19C0E9241}.dll
C:\Users\GILBERT\AppData\Local\Temp\{8B0DBCA5-9E39-4761-BB61-C365777F456E}.dll
C:\Users\GILBERT\AppData\Local\Temp\{922991D6-98AE-475D-8959-DF61DED41B02}.dll
C:\Users\GILBERT\AppData\Local\Temp\{94590FC0-31B6-46F7-8D2F-B7958C494503}.dll
C:\Users\GILBERT\AppData\Local\Temp\{95C63712-8807-4D22-9F8C-A2417424B530}.dll
C:\Users\GILBERT\AppData\Local\Temp\{A1E655F7-C152-4BEF-9A12-95AF3DF58643}.dll
C:\Users\GILBERT\AppData\Local\Temp\{A5971C96-2AF8-478E-BA15-95ABB2714F71}.dll
C:\Users\GILBERT\AppData\Local\Temp\{B23F041B-7E86-451E-8A8E-906284CDDEC8}.dll
C:\Users\GILBERT\AppData\Local\Temp\{BEB35CDD-634D-4ECB-AB51-CC79A6985349}.dll
C:\Users\GILBERT\AppData\Local\Temp\{E38E7CB7-7EBF-47E5-B911-69AD4BFF8ADC}.dll
C:\Users\GILBERT\AppData\Local\Temp\{E6DDD644-3BCB-46D4-A54B-AC7E58E8470A}.dll
C:\Users\GILBERT\AppData\Local\Temp\{EC408139-053B-4A4A-BB3F-24B9A210318C}.dll
C:\Users\GILBERT\AppData\Local\Temp\{EDFA2BE4-D88C-4A91-9AE5-0176EE506D62}.dll
C:\Users\GILBERT\AppData\Local\Temp\{FB4392DC-3147-44E4-965C-C537C7096A7B}.dll


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-11-15 10:12

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité