Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
Exécuté par drastef (administrateur) sur FAMILIAL (31-05-2017 18:19:33)
Exécuté depuis C:\Users\drastef\Desktop
Profils chargés: drastef & (Profils disponibles: drastef & MaxKilou)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Acer Group) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(hxxp://www.android-sync.com) C:\Program Files (x86)\Android-Sync\AndroidSync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
() C:\Program Files (x86)\MS200 GAMING MOUSE\rssmon.exe
() C:\Program Files (x86)\Android-Sync\bin\adb.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9643552 2009-12-11] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [325120 2009-10-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [860192 2010-02-05] (Acer Incorporated)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1289296 2010-02-26] (Dritek System Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [912768 2017-05-04] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2012-12-05] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61944 2017-04-11] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707] => C:\Program Files (x86)\National Instruments\Shared\NIUninstaller\InstallValidator.exe [265608 2013-11-21] ()
HKLM-x32\...\Run: [AndroidSync] => C:\Program Files (x86)\Android-Sync\AndroidSync.exe [6201680 2016-03-16] (hxxp://www.android-sync.com)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKLM-x32\...\Run: [GOSTgmmouseRun] => C:\Program Files (x86)\MS200 GAMING MOUSE\rssmon.exe [3367936 2016-10-08] ()
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103071\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-04-02] (Microsoft Corporation)
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024051733\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-04-02] (Microsoft Corporation)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [Google Update] => C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-29] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [Wireless_Multiroom] => C:\Program Files (x86)\Samsung\Samsung Multiroom\WirelessAudio.exe [11208704 2016-12-26] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [Google Update] => C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-29] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [Wireless_Multiroom] => C:\Program Files (x86)\Samsung\Samsung Multiroom\WirelessAudio.exe [11208704 2016-12-26] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [Google Update] => C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-29] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [Wireless_Multiroom] => C:\Program Files (x86)\Samsung\Samsung Multiroom\WirelessAudio.exe [11208704 2016-12-26] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Run: [Google Update] => C:\Users\MaxKilou\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {e9b5f4a9-64be-11df-8945-806e6f6e6963} - D:\autorun.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Packard Bell.scr [453152 2009-12-24] ()
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Run: [Google Update] => C:\Users\MaxKilou\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {e9b5f4a9-64be-11df-8945-806e6f6e6963} - D:\autorun.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Packard Bell.scr [453152 2009-12-24] ()
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-04-02] (Microsoft Corporation)
GroupPolicy\User: Restriction <======= ATTENTION
GroupPolicyUsers\S-1-5-21-912806440-3807322708-308547045-1008\User: Restriction - Chrome <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 platform.wondershare.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{41C45C76-65CD-4F97-8D23-4EAA42C77367}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9F7547AA-0DC6-4D70-9D11-97D11E9135C2}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-912806440-3807322708-308547045-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl#spf=1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl#spf=1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl#spf=1
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_lm86&r=27361210g7b6l0490z1h5f46l1a42n
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.fr/?gws_rd=ssl
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_lm86&r=27361210g7b6l0490z1h5f46l1a42n
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.fr/?gws_rd=ssl
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Module complémentaire de navigateur pour la désactivation de Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files\Google\Google Analytics Opt-Out\gaoptout_x64.dll [2014-04-03] (Google, Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-11-18] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-11-18] (Oracle Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-11-05] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Module complémentaire de navigateur pour la désactivation de Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files (x86)\Google\Google Analytics Opt-Out\gaoptout.dll [2014-04-03] (Google, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://extranet.aeroconseil.com/dana-cached/sc/JuniperSetupClient.cab
DPF: HKLM-x32 {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} hxxps://secure.logmein.com//activex/ractrl.cab?lmi=972
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: l5h9b07q.default-1409468392233
FF ProfilePath: C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233 [2017-05-31]
FF Homepage: Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233 -> hxxps://www.qwant.com?l=fr&h=1&hc=1&a=0&s=1&b=1&i=1&r=FR&sr=fr
FF Extension: (Qwant for Firefox) - C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233\Extensions\qwantcomforfirefox@jetpack.xpi [2017-03-04]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-03-31]
FF Extension: (Adblock Plus) - C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-12-27] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.3.0.27\coFFFw => non trouvé(e)
FF HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-11-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-11-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2012-05-16] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\9\NP_wtapp.dll [2013-01-01] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\drastef\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2012-02-11] (SquareClock SAS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @talk.google.com/O1DPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @tools.google.com/Google Update;version=3 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @tools.google.com/Google Update;version=9 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\drastef\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\drastef\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-07] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\drastef\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2012-02-11] (SquareClock SAS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @talk.google.com/GoogleTalkPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @talk.google.com/O1DPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @tools.google.com/Google Update;version=3 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @tools.google.com/Google Update;version=9 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\drastef\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\drastef\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-07] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\drastef\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2012-02-11] (SquareClock SAS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @talk.google.com/GoogleTalkPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @talk.google.com/O1DPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @tools.google.com/Google Update;version=3 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @tools.google.com/Google Update;version=9 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\drastef\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\drastef\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-07] (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\drastef\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\drastef\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\drastef\AppData\Local\Google\Chrome\User Data\Default [2017-05-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\drastef\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-06]
CHR Extension: (Chrome Media Router) - C:\Users\drastef\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-18]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1119712 2017-05-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [488920 2017-05-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [488920 2017-05-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1520680 2017-05-04] (Avira Operations GmbH & Co. KG)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [551896 2012-07-19] (Protection Technology)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [350120 2017-04-11] (Avira Operations GmbH & Co. KG)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2012-12-05] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2012-12-05] (BlueStack Systems, Inc.)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [865824 2010-02-05] (Acer Incorporated)
R2 Greg_Service; C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496 2009-08-28] (Acer Incorporated)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R2 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [250368 2010-03-09] (NewTech Infosystems, Inc.) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [Fichier non signé]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1050904 2013-12-11] () [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
R2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MirrorGo\DriverInstall.exe [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [3852976 2012-07-19] (Protection Technology)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [176968 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [148104 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [73728 2009-10-02] (ASIX Electronics Corp.)
R3 AX88772; C:\Windows\SysWOW64\DRIVERS\ax88772.sys [42496 2008-06-18] (ASIX Electronics Corp.) [Fichier non signé]
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2012-12-05] (BlueStack Systems)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
S3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [1106944 2006-01-17] (Broadcom Corporation.) [Fichier non signé]
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [62720 2006-01-17] (Broadcom Corporation.) [Fichier non signé]
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-11] (DT Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-05-09] ()
S4 LMIRfsClientNP; pas de ImagePath
S3 Ltn_stk7070P_64; C:\Windows\System32\DRIVERS\Ltn_stk7070P_64.sys [543232 2007-10-19] (LITEON)
S3 Ltn_stkrc_64; C:\Windows\System32\DRIVERS\Ltn_stkrc_64.sys [16256 2007-10-19] (LITEON)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [187320 2017-05-29] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-05-30] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-05-30] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [251832 2017-05-30] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-05-31] (Malwarebytes)
R1 NEOFLTR_817_41041; C:\Windows\system32\Drivers\NEOFLTR_817_41041.SYS [108344 2015-12-18] (Pulse Secure, LLC)
S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2015-01-20] (Realtek Semiconductor Corporation)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
R3 USBPNPA; C:\Windows\SysWOW64\drivers\CM10864.sys [1286656 2008-09-10] (C-Media Electronics Inc)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2009-07-14] (Microsoft Corporation)
R3 wovad_micarray; C:\Windows\System32\drivers\womic.sys [35840 2016-12-20] (Windows (R) Win 7 DDK provider)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2017-05-29] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2017-05-29] (Zemana Ltd.)
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
U2 wuaserv; pas de ImagePath
========================== MD5 Pilotes =======================
C:\Windows\system32\drivers\1394ohci.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ACPI.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\acpipmi.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\adp94xx.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\adpahci.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\adpu320.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\afd.sys 314C17917AC8523EC77A710215012A65
C:\Windows\system32\drivers\agp440.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\aliide.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\amdide.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\amdk8.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\atipmdag.sys 52679612D742BF74CA1BA6AB86DDF431
C:\Windows\System32\DRIVERS\atikmpag.sys 414E0788920A8C856032BE2CBF29F984
C:\Windows\system32\DRIVERS\amdppm.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\amdsata.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\amdsbs.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\amdxata.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\AmUStor.SYS 391887990CDAA83DE5C56C3FDE966DA1
C:\Windows\System32\DRIVERS\Apfiltr.sys FAB590E0FC28CB474B965F8267458E14
C:\Windows\System32\Drivers\appdrv01.sys AC3BF7251A58D5F1E68C85604303B4E7
C:\Windows\system32\drivers\appid.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\arc.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\arcsas.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\asyncmac.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\atapi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\athrx.sys 70260C7C98CC0101316F5B2650C3BB44
C:\Windows\System32\drivers\AtihdW76.sys 770A3B0D78232B0C1054495392A1FBA3
C:\Windows\System32\drivers\AtiHdmi.sys FB7602C5C508BE281368AAE0B61B51C6
C:\Windows\System32\DRIVERS\avgntflt.sys C0B4C2DF426BDFC679F658C442113E9C
C:\Windows\System32\DRIVERS\avipbb.sys AD68D7AC2CABCA09140E4FCEA98BCEF6
C:\Windows\System32\DRIVERS\avkmgr.sys 3E0AB8C453FA433B15A30BAA8BD4B275
C:\Windows\System32\DRIVERS\avnetflt.sys 19B6F9073BD606B7ABEC03A0328FDC1B
C:\Windows\System32\DRIVERS\ax88772.sys D6A9057AAFA59D805740BC74231ADB8A
C:\Windows\SysWOW64\DRIVERS\ax88772.sys 1E3A6DDC31AF74826E29851679CD0C61
C:\Windows\system32\DRIVERS\bxvbda.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\bcmwl664.sys 9E84A931DBEE0292E38ED672F6293A99
C:\Windows\System32\Drivers\Beep.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\blbdrive.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\bowser.sys 91CE0D3DC57DD377E690A2D324022B08
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Brserid.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\BrSerWdm.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\BrUsbSer.sys ==> Le MD5 est légitime
C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys 82D92C0DF7FDA102E10D0E653316EB8A
C:\Windows\System32\DRIVERS\BthAvrcp.sys 832B121E4532919CC49F2438F1DCAA21
C:\Windows\system32\drivers\BthEnum.sys CF98190A94F62E405C8CB255018B2315
C:\Windows\system32\DRIVERS\bthmodem.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\bthpan.sys 02DD601B708DD0667E1331FA8518E9FF
C:\Windows\System32\Drivers\BTHport.sys 0D25B6D300BA26A5F2C3B2A8E96B158B
C:\Windows\System32\Drivers\BTHUSB.sys 1F9912F8EC5BFA53432E71E150636A8A
C:\Windows\System32\DRIVERS\btkrnl.sys 08B32D0EE6F3C88D9B1C03AADC56D638
C:\Windows\System32\Drivers\btwusb.sys 93DA753C17797E5566AB0F682549C267
C:\Windows\System32\DRIVERS\cdfs.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\cdrom.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\circlass.sys ==> Le MD5 est légitime
C:\Windows\System32\CLFS.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\CmBatt.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\cmdide.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\cng.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\compbatt.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\CompositeBus.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\crcdisk.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\bthav.sys DF07C6D98BA7F81D0571E366B1CD6672
C:\Windows\System32\Drivers\dfsc.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\discache.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\disk.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\Dot4.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\Dot4Prt.sys E9F5969233C5D89F3C35E3A66A52A361
C:\Windows\System32\DRIVERS\dot4usb.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\drmkaud.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\dtsoftbus01.sys 46571ED73AE84469DCA53081D33CF3C8
C:\Windows\System32\drivers\dxgkrnl.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\evbda.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\ElbyCDIO.sys BE2902E13CA69383F449B6BF927844FB
C:\Windows\system32\DRIVERS\elxstor.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\errdev.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mbae64.sys 233DB99476B8D1CF61AC1177D0137036
C:\Windows\System32\Drivers\exfat.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\fastfat.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\fdc.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\fileinfo.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\filetrace.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\flpydisk.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\fltmgr.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\FsDepends.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Fs_Rec.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ftdibus.sys 8EC36B9FD3D25687C3F996200BBB8DED
C:\Windows\System32\drivers\ftser2k.sys 535AB1F6600D8384145E4A8521194D3F
C:\Windows\System32\DRIVERS\fvevol.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F
C:\Windows\system32\drivers\hcw85cir.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\system32\drivers\HDAudBus.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\HECIx64.sys B6AC71AAA2B10848F57FC49D55A651AF
C:\Windows\system32\DRIVERS\HidBatt.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\hidbth.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\hidir.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\hidusb.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\HpSAMD.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\HTTP.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\hwpolicy.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\i8042prt.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\iaStor.sys 42E00996DFC13C46366689C0EA8ABC5E
C:\Windows\system32\drivers\iaStorV.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\igdkmd64.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\iirsp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\Impcd.sys 36FDF367A1DABFF903E2214023D71368
C:\Windows\System32\drivers\RTKVHD64.sys 53019327813FF5AB2964B33B2C61307C
C:\Windows\system32\drivers\intelide.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\intelppm.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\IPMIDrv.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ipnat.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\irenum.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\isapnp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\msiscsi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\k57nd60a.sys 9D7EA8C7215D8D4AE7BE110EEE61085D
C:\Windows\system32\drivers\kbdclass.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\kbdhid.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\ksecdd.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\ksecpkg.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\ksthunk.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\L1E62x64.sys 2AC603C3188C704CFCE353659AA7AD71
C:\Windows\System32\DRIVERS\lltdio.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\lmimirr.sys 413ECDCFAD9A82804D3674C8D7EEC24E
C:\Windows\system32\drivers\LMIRfsDriver.sys C57D3FAA50E6F395759FFB7C709BD944
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\Ltn_stk7070P_64.sys 639D24E769BDBEC6145E4C1921669B73
C:\Windows\System32\DRIVERS\Ltn_stkrc_64.sys E028DF5A96827A87898D4D7EB768E3AB
C:\Windows\system32\drivers\luafv.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\MBAMChameleon.sys 4EA73F071D96F376DB3AB9EF81273B28
C:\Windows\system32\drivers\farflt.sys C51267EE2726707D38C489C06DDF01ED
C:\Windows\system32\drivers\mbam.sys 88BD122C3A35DE63D75D382DF75554CE
C:\Windows\System32\drivers\MBAMSwissArmy.sys 53283EB9998AC9350E14C35A880989DB
C:\Windows\system32\drivers\mwac.sys 959A51BEAA6E12B9CF97511071C16084
C:\Windows\system32\DRIVERS\megasas.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\MegaSR.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\modem.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\monitor.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mouclass.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\mouhid.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\mountmgr.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mpio.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\mpsdrv.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mrxdav.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\mrxsmb.sys FAF015B07E3A2874A790A39B7D2C579F
C:\Windows\System32\DRIVERS\mrxsmb10.sys 08E2345DF129082BCDFFDC1440F9C00D
C:\Windows\System32\DRIVERS\mrxsmb20.sys 108D87409C5812EF47D81E22843E8C9D
C:\Windows\system32\drivers\msahci.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\msdsm.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Msfs.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\mshidkmdf.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\msisadrv.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSKSSRV.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSPCLOCK.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSPQM.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\MsRPC.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mssmbios.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSTEE.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\MTConfig.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\mup.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\nwifi.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ndis.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndiscap.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndistapi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndisuio.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndiswan.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\NDProxy.sys ==> Le MD5 est légitime
C:\Windows\system32\Drivers\NEOFLTR_817_41041.SYS 2DD5637039B20562AF7057D0C4F8A178
C:\Windows\System32\DRIVERS\netbios.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\netbt.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\nfrd960.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ccdcmbx64.sys 5FE6F8C05F0769BBB74AFAC11453B182
C:\Windows\System32\drivers\ccdcmbox64.sys 73C929945C0850B8D1FE2FEA05FDF05D
C:\Windows\System32\Drivers\Npfs.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\nsiproxy.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Ntfs.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\NTIDrvr.sys 64DDD0DEE976302F4BD93E5EFCC2F013
C:\Windows\System32\Drivers\Null.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\nvraid.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\nvstor.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\nv_agp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\ohci1394.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\parport.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\partmgr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\pccsmcfdx64.sys BC0018C2D29F655188A0ED3FA94FDB24
C:\Windows\System32\drivers\pci.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\pciide.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\pcmcia.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\pcw.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\peauth.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\raspptp.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\processr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\pacer.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\PxHlpa64.sys 87B04878A6D59D6C79251DC960C674C1
C:\Windows\system32\DRIVERS\ql2300.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\ql40xx.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\qwavedrv.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rasacd.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\raspppoe.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rassstp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rdbss.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\rdpbus.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\rdpencdd.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\rdprefmp.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\RDPWD.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\rdyboost.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rfcomm.sys 3DD798846E2C28102B922C56E71B7932
C:\Windows\System32\DRIVERS\rspndr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\RtkBtfilter.sys 6DF02B4EEF2869B77637EB65DDCED864
C:\Windows\system32\drivers\sbp2port.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\scfilter.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\secdrv.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ser2pl64.sys 2437720D4480523562360B2B6B5864A7
C:\Windows\System32\DRIVERS\serenum.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\serial.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\sermouse.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\sffdisk.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\sffp_mmc.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\sffp_sd.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\sfloppy.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\sisraid4.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\smb.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\spldr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\srv.sys 2098B8556D1CEC2ACA9A29CD479E3692
C:\Windows\System32\DRIVERS\srv2.sys D0F73A42040F21F92FD314B42AC5C9E7
C:\Windows\System32\DRIVERS\srvnet.sys 2BA8F3250828CCDB4204ECF2C6F40B6A
C:\Windows\system32\DRIVERS\stexstor.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\serscan.sys DECACB6921DED1A38642642685D77DAC
C:\Windows\system32\drivers\swenum.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\DRIVERS\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\drivers\tcpipreg.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tdpipe.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tdtcp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\tdx.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\termdd.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\tssecsrv.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tsusbflt.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\tunnel.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\TurboB.sys 825E7A1F48FB8BCFBA27C178AAB4E275
C:\Windows\system32\DRIVERS\uagp35.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\UBHelper.sys 2E22C1FD397A5A9FFEF55E9D1FC96C00
C:\Windows\System32\DRIVERS\udfs.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\uliagpkx.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\umbus.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\umpass.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys 34AFB83C7BBA370E404E52CC2290350C
C:\Windows\System32\Drivers\usbaapl64.sys F957092C63CD71D85903CA0D8370F473
C:\Windows\system32\drivers\usbaudio.sys 82E8F44688E6FAC57B5B7C6FC7ADBC2A
C:\Windows\System32\DRIVERS\usbccgp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbcir.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbehci.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbhub.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbohci.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\CM10864.sys 479CBB48761AD5AD719D66CB0E85D428
C:\Windows\SysWOW64\drivers\CM10864.sys 479CBB48761AD5AD719D66CB0E85D428
C:\Windows\System32\DRIVERS\usbprint.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\usb80236.sys 54EAFFD31C377C8C1055D33E6B6B4B27
C:\Windows\System32\DRIVERS\usbscan.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbser.sys 4ACEE387FA8FD39F83564FCD2FC234F2
C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys AA75E1EFBEE7186B4CBAAACF1F15E6CA
C:\Windows\System32\DRIVERS\USBSTOR.SYS ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbuhci.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\usbvideo.sys 454800C2BC7F3927CE030141EE4F4C50
C:\Windows\System32\DRIVERS\VClone.sys 3EEBF3C348C3DEB4CF6F10F2E6E222CD
C:\Windows\System32\drivers\vdrvroot.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vgapnp.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\vga.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\vhdmp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\viaide.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\volmgr.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\volmgrx.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\volsnap.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\vsmraid.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vwifibus.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vwififlt.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vwifimp.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\wacompen.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\wanarp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\wanarp.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\wd.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\Wdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4
C:\Windows\System32\DRIVERS\wfplwf.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\wimmount.sys ==> Le MD5 est légitime
C:\Windows\SysWOW64\drivers\wimmount.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\womic.sys 5D552D191E5E64C413F5051CA84385AD
C:\Windows\system32\drivers\ws2ifsl.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\WudfPf.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\WUDFRd.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\zam64.sys 21E13F2CB269DEFEAE5E1D09887D47BB
C:\Windows\System32\drivers\zamguard64.sys 21E13F2CB269DEFEAE5E1D09887D47BB
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-31 18:19 - 2017-05-31 18:21 - 00077268 _____ C:\Users\drastef\Desktop\FRST.txt
2017-05-31 18:19 - 2017-05-31 18:19 - 00000000 ____D C:\FRST
2017-05-31 18:18 - 2017-05-31 18:17 - 02429952 _____ (Farbar) C:\Users\drastef\Desktop\FRST64.exe
2017-05-31 18:17 - 2017-05-31 18:17 - 02429952 _____ (Farbar) C:\Users\drastef\Downloads\FRST64.exe
2017-05-31 18:14 - 2017-05-31 18:14 - 00065536 ___HT C:\Users\drastef\~calendrier.pst.tmp
2017-05-29 23:41 - 2017-05-31 18:21 - 04483675 _____ C:\Windows\ZAM.krnl.trace
2017-05-29 23:41 - 2017-05-31 18:21 - 00538219 _____ C:\Windows\ZAM_Guard.krnl.trace
2017-05-29 23:41 - 2017-05-29 23:41 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2017-05-29 23:41 - 2017-05-29 23:41 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2017-05-29 23:41 - 2017-05-29 23:41 - 00001120 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2017-05-29 23:41 - 2017-05-29 23:41 - 00001120 _____ C:\ProgramData\Desktop\Zemana AntiMalware.lnk
2017-05-29 23:41 - 2017-05-29 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2017-05-29 23:41 - 2017-05-29 23:41 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-05-29 23:40 - 2017-05-29 23:40 - 05774688 _____ (Zemana Ltd. ) C:\Users\drastef\Downloads\Zemana.AntiMalware.Setup.exe
2017-05-29 23:40 - 2017-05-29 23:40 - 00000000 ____D C:\Users\drastef\AppData\Local\Zemana
2017-05-29 21:57 - 2017-05-31 15:53 - 00084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-29 21:57 - 2017-05-30 18:42 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-29 21:57 - 2017-05-30 18:42 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-29 21:57 - 2017-05-30 18:42 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-29 21:57 - 2017-05-29 21:57 - 00187320 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-29 21:56 - 2017-05-29 21:56 - 00001879 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-29 21:56 - 2017-05-29 21:56 - 00001879 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2017-05-29 21:56 - 2017-05-29 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-29 21:56 - 2017-05-29 21:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-29 21:56 - 2017-05-29 21:56 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-29 21:56 - 2017-05-09 16:37 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-05-29 21:54 - 2017-05-29 21:56 - 63364552 _____ (Malwarebytes ) C:\Users\drastef\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.122-1.0.1976.exe
2017-05-29 21:32 - 2017-05-29 21:32 - 04110280 _____ C:\Users\drastef\Downloads\adwcleaner_6.047.exe
2017-05-15 18:47 - 2017-05-15 18:48 - 00000000 ____D C:\Users\drastef\AppData\Roaming\.bloodylauncher
2017-05-13 09:04 - 2017-05-30 07:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-11 21:54 - 2017-05-11 21:54 - 00224550 _____ C:\Users\drastef\Desktop\MV2_SSBMYODBW2224_1702203690532_BP.pdf
2017-05-06 19:53 - 2017-05-06 19:53 - 01686016 _____ C:\Users\drastef\Desktop\intro 01.avi
2017-05-06 19:35 - 2017-05-06 19:35 - 00001192 _____ C:\Users\drastef\Desktop\Aurora 3D Animation Maker.lnk
2017-05-06 19:35 - 2017-05-06 19:35 - 00000991 _____ C:\Users\drastef\Desktop\Audacity.lnk
2017-05-05 22:23 - 2017-05-05 22:23 - 00001258 _____ C:\Users\drastef\Desktop\Wondershare Filmora.lnk
2017-05-05 21:59 - 2017-05-05 21:59 - 00000000 ____D C:\Users\drastef\Documents\Aurora3D
2017-05-05 19:21 - 2017-05-06 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aurora 3D Animation Maker
2017-05-05 19:21 - 2017-05-05 19:21 - 00000000 ____D C:\Users\drastef\AppData\Local\Configure
2017-05-05 19:21 - 2017-05-05 19:21 - 00000000 ____D C:\Users\drastef\AppData\Local\Aurora 3D Animation Maker
2017-05-05 19:20 - 2017-05-06 00:13 - 00000000 ____D C:\Program Files (x86)\Aurora3D
2017-05-05 19:20 - 2011-09-13 17:58 - 00581632 _____ (Optima SC Inc.) C:\Windows\SysWOW64\vp8vfw.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-31 18:16 - 2015-01-11 17:13 - 04334592 _____ C:\Users\drastef\calendrier.pst
2017-05-31 18:15 - 2017-03-15 23:53 - 00000000 ____D C:\Users\drastef\AppData\LocalLow\Mozilla
2017-05-31 18:14 - 2010-12-01 22:18 - 00000000 ____D C:\Users\drastef
2017-05-31 17:34 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-31 17:34 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-31 07:18 - 2014-07-12 10:53 - 00000000 ____D C:\AdwCleaner
2017-05-30 22:57 - 2013-08-09 16:10 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-30 22:57 - 2012-05-19 19:56 - 00000000 ____D C:\Windows\Minidump
2017-05-30 22:57 - 2011-12-29 00:29 - 00000000 ____D C:\Users\drastef\AppData\Roaming\Winamp
2017-05-30 21:55 - 2015-09-03 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Architecte 3D Silver Advanced
2017-05-30 21:50 - 2017-04-19 12:41 - 00000000 ____D C:\Users\drastef\AppData\Roaming\FileAdvisor
2017-05-30 19:15 - 2010-05-07 05:19 - 00000000 ____D C:\Program Files\Google
2017-05-30 19:15 - 2010-05-07 05:19 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-30 19:06 - 2001-03-01 22:22 - 00001290 _____ C:\Windows\QUICKEN.INI
2017-05-30 18:40 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-30 07:44 - 2012-07-09 20:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-29 22:56 - 2011-01-07 00:24 - 00002063 _____ C:\Windows\wininit.ini
2017-05-28 18:49 - 2012-07-03 20:31 - 00000000 ____D C:\Users\drastef\AppData\Roaming\Skype
2017-05-28 17:46 - 2010-05-21 21:50 - 00749188 _____ C:\Windows\system32\perfh00C.dat
2017-05-28 17:46 - 2010-05-21 21:50 - 00150330 _____ C:\Windows\system32\perfc00C.dat
2017-05-28 17:46 - 2009-07-14 07:13 - 01672696 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-28 17:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-27 21:35 - 2010-12-03 23:45 - 00000000 ____D C:\Users\drastef\Documents\David
2017-05-22 19:57 - 2017-04-15 15:10 - 00000000 ____D C:\Users\drastef\Desktop\Voyage USA
2017-05-21 22:42 - 2010-12-03 23:45 - 00000000 ____D C:\Users\drastef\Documents\Maison
2017-05-17 20:05 - 2012-05-06 08:59 - 00000000 ____D C:\Users\drastef\AppData\Roaming\.minecraft
2017-05-17 19:17 - 2010-12-04 00:32 - 00000000 ____D C:\Users\drastef\AppData\Local\CrashDumps
2017-05-16 21:39 - 2015-11-15 22:51 - 00057580 _____ C:\Users\drastef\Documents\Database.kdb
2017-05-15 18:50 - 2016-08-21 18:53 - 00000000 ____D C:\Program Files (x86)\Minecraft
2017-05-15 18:47 - 2010-12-05 22:17 - 00000000 ____D C:\Users\drastef\Desktop\Jeux
2017-05-14 19:50 - 2015-11-03 19:20 - 00000000 ____D C:\Users\drastef\Documents\Santé
2017-05-11 23:56 - 2010-12-08 00:50 - 00002165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-10 00:02 - 2014-01-07 12:41 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-05-09 23:21 - 2012-05-19 21:22 - 00803320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-05-09 23:21 - 2012-05-19 21:22 - 00004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-05-09 23:21 - 2011-12-28 10:05 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-09 23:21 - 2011-07-01 07:27 - 00144888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-09 23:21 - 2010-05-07 05:09 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-06 19:59 - 2014-12-18 21:39 - 00000000 ____D C:\Users\drastef\AppData\Roaming\Audacity
2017-05-06 16:18 - 2014-12-23 17:46 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-06 00:20 - 2009-07-14 06:45 - 00558496 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-06 00:17 - 2013-09-15 11:24 - 00000000 ____D C:\Users\drastef\Desktop\Outils
2017-05-05 22:39 - 2010-12-01 22:18 - 00146032 _____ C:\Users\drastef\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-05 19:37 - 2011-05-05 21:51 - 00000000 ____D C:\Users\drastef\Documents\Kilian
2017-05-02 21:01 - 2017-04-24 22:37 - 00000000 ____D C:\Program Files (x86)\SricamPC
==================== Fichiers à la racine de certains dossiers =======
2016-10-05 19:18 - 2016-10-05 19:18 - 0000385 _____ () C:\Users\drastef\AppData\Roaming\AdobeWLCMR2Cache.dat
2012-09-30 12:53 - 2012-09-30 12:54 - 0013274 _____ () C:\Users\drastef\AppData\Roaming\ATOUT p'tit CLIC 4-5 ans
2015-03-11 21:21 - 2015-03-16 19:58 - 0000117 _____ () C:\Users\drastef\AppData\Roaming\D2Info0
2015-03-11 21:21 - 2015-03-13 20:15 - 0000008 _____ () C:\Users\drastef\AppData\Roaming\DofusAppId0_1
2015-03-12 21:15 - 2015-03-16 20:25 - 0000008 _____ () C:\Users\drastef\AppData\Roaming\DofusAppId0_2
2004-02-25 14:48 - 2004-02-25 14:48 - 0001088 _____ () C:\Users\drastef\AppData\Roaming\Enregistrement Hachette
2017-03-25 19:51 - 2017-04-22 18:37 - 0000100 _____ () C:\Users\drastef\AppData\Roaming\infos.properties
2013-01-01 19:01 - 2013-01-01 19:01 - 0038417 _____ () C:\Users\drastef\AppData\Roaming\Microsoft Excel 97-2003.ADR
2015-11-29 20:46 - 2015-11-29 20:46 - 0000036 _____ () C:\Users\drastef\AppData\Roaming\SuYZkvrV.tmp
2012-06-10 11:19 - 2012-06-10 11:20 - 0038438 _____ () C:\Users\drastef\AppData\Roaming\Valeurs séparées par une virgule (DOS).ADR
2014-07-20 12:27 - 2015-01-31 19:08 - 0009307 _____ () C:\Users\drastef\AppData\Roaming\Valeurs séparées par une virgule (DOS).EML
2015-02-26 01:25 - 2016-01-10 12:06 - 0000600 _____ () C:\Users\drastef\AppData\Roaming\winscp.rnd
2010-12-02 01:22 - 2010-12-02 01:22 - 0000000 _____ () C:\Users\drastef\AppData\Roaming\wklnhst.dat
2010-12-08 02:03 - 2015-11-05 21:54 - 0005632 _____ () C:\Users\drastef\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-04-02 19:19 - 2016-04-02 19:19 - 0004096 ____H () C:\Users\drastef\AppData\Local\keyfile3.drm
2015-02-24 20:24 - 2016-12-10 02:35 - 0000600 _____ () C:\Users\drastef\AppData\Local\PUTTY.RND
2017-04-03 14:03 - 2017-04-03 14:03 - 0009153 _____ () C:\Users\drastef\AppData\Local\recently-used.xbel
2011-03-25 20:52 - 2017-04-05 14:20 - 0007596 _____ () C:\Users\drastef\AppData\Local\Resmon.ResmonCfg
2010-12-27 16:39 - 2012-10-04 23:08 - 0003221 _____ () C:\ProgramData\hpzinstall.log
2016-12-05 21:51 - 2016-12-05 21:51 - 0001534 _____ () C:\ProgramData\ss.ini
Certains fichiers dans TEMP:
====================
2017-05-30 21:46 - 2001-11-05 09:30 - 0165376 _____ () C:\Users\drastef\AppData\Local\Temp\GLB1A2B.EXE
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-23 22:06
==================== Fin de FRST.txt ============================
Exécuté par drastef (administrateur) sur FAMILIAL (31-05-2017 18:19:33)
Exécuté depuis C:\Users\drastef\Desktop
Profils chargés: drastef & (Profils disponibles: drastef & MaxKilou)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Acer Group) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(hxxp://www.android-sync.com) C:\Program Files (x86)\Android-Sync\AndroidSync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
() C:\Program Files (x86)\MS200 GAMING MOUSE\rssmon.exe
() C:\Program Files (x86)\Android-Sync\bin\adb.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9643552 2009-12-11] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [325120 2009-10-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [860192 2010-02-05] (Acer Incorporated)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1289296 2010-02-26] (Dritek System Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [912768 2017-05-04] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [597880 2012-12-05] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [61944 2017-04-11] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707] => C:\Program Files (x86)\National Instruments\Shared\NIUninstaller\InstallValidator.exe [265608 2013-11-21] ()
HKLM-x32\...\Run: [AndroidSync] => C:\Program Files (x86)\Android-Sync\AndroidSync.exe [6201680 2016-03-16] (hxxp://www.android-sync.com)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKLM-x32\...\Run: [GOSTgmmouseRun] => C:\Program Files (x86)\MS200 GAMING MOUSE\rssmon.exe [3367936 2016-10-08] ()
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103071\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-04-02] (Microsoft Corporation)
HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024051733\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-04-02] (Microsoft Corporation)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [Google Update] => C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-29] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Run: [Wireless_Multiroom] => C:\Program Files (x86)\Samsung\Samsung Multiroom\WirelessAudio.exe [11208704 2016-12-26] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [Google Update] => C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-29] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Run: [Wireless_Multiroom] => C:\Program Files (x86)\Samsung\Samsung Multiroom\WirelessAudio.exe [11208704 2016-12-26] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [Google Update] => C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe [601168 2017-04-29] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Run: [Wireless_Multiroom] => C:\Program Files (x86)\Samsung\Samsung Multiroom\WirelessAudio.exe [11208704 2016-12-26] (Samsung Electronics Co., Ltd.)
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Run: [Google Update] => C:\Users\MaxKilou\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\...\MountPoints2: {e9b5f4a9-64be-11df-8945-806e6f6e6963} - D:\autorun.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Packard Bell.scr [453152 2009-12-24] ()
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-05-07] (Google Inc.)
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Run: [Google Update] => C:\Users\MaxKilou\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoSMMyDocs] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoRecentDocsMenu] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoSMMyPictures] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuMyMusic] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuNetWorkPlaces] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuMorePrograms] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuPinnedList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\Policies\Explorer: [LockTaskbar] 0
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {16f0e464-3678-11e0-946c-00051b00c6da} - E:\LOCKv220.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {61f3d4f1-fff5-11e2-a96f-00262da35d89} - E:\Setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {e682ded6-3065-11e4-a9ca-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\...\MountPoints2: {e9b5f4a9-64be-11df-8945-806e6f6e6963} - D:\autorun.exe
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Packard Bell.scr [453152 2009-12-24] ()
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-04-02] (Microsoft Corporation)
GroupPolicy\User: Restriction <======= ATTENTION
GroupPolicyUsers\S-1-5-21-912806440-3807322708-308547045-1008\User: Restriction - Chrome <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 platform.wondershare.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{41C45C76-65CD-4F97-8D23-4EAA42C77367}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9F7547AA-0DC6-4D70-9D11-97D11E9135C2}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-912806440-3807322708-308547045-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl#spf=1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl#spf=1
HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl#spf=1
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_lm86&r=27361210g7b6l0490z1h5f46l1a42n
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.fr/?gws_rd=ssl
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_lm86&r=27361210g7b6l0490z1h5f46l1a42n
HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.fr/?gws_rd=ssl
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
SearchScopes: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR408FR408
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Module complémentaire de navigateur pour la désactivation de Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files\Google\Google Analytics Opt-Out\gaoptout_x64.dll [2014-04-03] (Google, Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-11-18] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-11-18] (Oracle Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: Pas de nom -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> Pas de fichier
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-11-05] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Module complémentaire de navigateur pour la désactivation de Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files (x86)\Google\Google Analytics Opt-Out\gaoptout.dll [2014-04-03] (Google, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-03-15] (Sun Microsystems, Inc.)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221107071 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-23] (Google Inc.)
Toolbar: HKU\S-1-5-21-912806440-3807322708-308547045-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024101024 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
DPF: HKLM {AA570693-00E2-4907-B6F1-60A1199B030C} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient64.cab
DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://extranet.aeroconseil.com/dana-cached/sc/JuniperSetupClient.cab
DPF: HKLM-x32 {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} hxxps://secure.logmein.com//activex/ractrl.cab?lmi=972
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: l5h9b07q.default-1409468392233
FF ProfilePath: C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233 [2017-05-31]
FF Homepage: Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233 -> hxxps://www.qwant.com?l=fr&h=1&hc=1&a=0&s=1&b=1&i=1&r=FR&sr=fr
FF Extension: (Qwant for Firefox) - C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233\Extensions\qwantcomforfirefox@jetpack.xpi [2017-03-04]
FF Extension: (Google Analytics Opt-out Add-on (by Google)) - C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-03-31]
FF Extension: (Adblock Plus) - C:\Users\drastef\AppData\Roaming\Mozilla\Firefox\Profiles\l5h9b07q.default-1409468392233\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-12-27] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{27182e60-b5f3-411c-b545-b44205977502}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_2.3.0.27\coFFFw => non trouvé(e)
FF HKU\S-1-5-21-912806440-3807322708-308547045-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-11-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-11-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2012-05-16] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\9\NP_wtapp.dll [2013-01-01] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\drastef\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2012-02-11] (SquareClock SAS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @talk.google.com/O1DPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @tools.google.com/Google Update;version=3 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @tools.google.com/Google Update;version=9 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\drastef\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\drastef\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-07] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\drastef\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2012-02-11] (SquareClock SAS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @talk.google.com/GoogleTalkPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @talk.google.com/O1DPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @tools.google.com/Google Update;version=3 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @tools.google.com/Google Update;version=9 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\drastef\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05302017221103298: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\drastef\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-07] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\drastef\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2012-02-11] (SquareClock SAS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @talk.google.com/GoogleTalkPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @talk.google.com/O1DPlugin -> C:\Users\drastef\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @tools.google.com/Google Update;version=3 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @tools.google.com/Google Update;version=9 -> C:\Users\drastef\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\drastef\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2012-11-12] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-912806440-3807322708-308547045-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05312017024053504: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\drastef\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-07] (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2012-03-15] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-08-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\drastef\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\drastef\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\drastef\AppData\Local\Google\Chrome\User Data\Default [2017-05-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\drastef\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-06]
CHR Extension: (Chrome Media Router) - C:\Users\drastef\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-18]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1119712 2017-05-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [488920 2017-05-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [488920 2017-05-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1520680 2017-05-04] (Avira Operations GmbH & Co. KG)
S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [551896 2012-07-19] (Protection Technology)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [350120 2017-04-11] (Avira Operations GmbH & Co. KG)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2012-12-05] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2012-12-05] (BlueStack Systems, Inc.)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [865824 2010-02-05] (Acer Incorporated)
R2 Greg_Service; C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496 2009-08-28] (Acer Incorporated)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R2 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [250368 2010-03-09] (NewTech Infosystems, Inc.) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [Fichier non signé]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [1050904 2013-12-11] () [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
R2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MirrorGo\DriverInstall.exe [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [3852976 2012-07-19] (Protection Technology)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [176968 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [148104 2017-03-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 AX88772; C:\Windows\System32\DRIVERS\ax88772.sys [73728 2009-10-02] (ASIX Electronics Corp.)
R3 AX88772; C:\Windows\SysWOW64\DRIVERS\ax88772.sys [42496 2008-06-18] (ASIX Electronics Corp.) [Fichier non signé]
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2012-12-05] (BlueStack Systems)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
S3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [1106944 2006-01-17] (Broadcom Corporation.) [Fichier non signé]
S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [62720 2006-01-17] (Broadcom Corporation.) [Fichier non signé]
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-02-11] (DT Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-05-09] ()
S4 LMIRfsClientNP; pas de ImagePath
S3 Ltn_stk7070P_64; C:\Windows\System32\DRIVERS\Ltn_stk7070P_64.sys [543232 2007-10-19] (LITEON)
S3 Ltn_stkrc_64; C:\Windows\System32\DRIVERS\Ltn_stkrc_64.sys [16256 2007-10-19] (LITEON)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [187320 2017-05-29] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-05-30] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-05-30] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [251832 2017-05-30] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-05-31] (Malwarebytes)
R1 NEOFLTR_817_41041; C:\Windows\system32\Drivers\NEOFLTR_817_41041.SYS [108344 2015-12-18] (Pulse Secure, LLC)
S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2015-01-20] (Realtek Semiconductor Corporation)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
R3 USBPNPA; C:\Windows\SysWOW64\drivers\CM10864.sys [1286656 2008-09-10] (C-Media Electronics Inc)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2009-07-14] (Microsoft Corporation)
R3 wovad_micarray; C:\Windows\System32\drivers\womic.sys [35840 2016-12-20] (Windows (R) Win 7 DDK provider)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2017-05-29] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2017-05-29] (Zemana Ltd.)
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
U2 wuaserv; pas de ImagePath
========================== MD5 Pilotes =======================
C:\Windows\system32\drivers\1394ohci.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ACPI.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\acpipmi.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\adp94xx.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\adpahci.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\adpu320.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\afd.sys 314C17917AC8523EC77A710215012A65
C:\Windows\system32\drivers\agp440.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\aliide.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\amdide.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\amdk8.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\atipmdag.sys 52679612D742BF74CA1BA6AB86DDF431
C:\Windows\System32\DRIVERS\atikmpag.sys 414E0788920A8C856032BE2CBF29F984
C:\Windows\system32\DRIVERS\amdppm.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\amdsata.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\amdsbs.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\amdxata.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\AmUStor.SYS 391887990CDAA83DE5C56C3FDE966DA1
C:\Windows\System32\DRIVERS\Apfiltr.sys FAB590E0FC28CB474B965F8267458E14
C:\Windows\System32\Drivers\appdrv01.sys AC3BF7251A58D5F1E68C85604303B4E7
C:\Windows\system32\drivers\appid.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\arc.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\arcsas.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\asyncmac.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\atapi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\athrx.sys 70260C7C98CC0101316F5B2650C3BB44
C:\Windows\System32\drivers\AtihdW76.sys 770A3B0D78232B0C1054495392A1FBA3
C:\Windows\System32\drivers\AtiHdmi.sys FB7602C5C508BE281368AAE0B61B51C6
C:\Windows\System32\DRIVERS\avgntflt.sys C0B4C2DF426BDFC679F658C442113E9C
C:\Windows\System32\DRIVERS\avipbb.sys AD68D7AC2CABCA09140E4FCEA98BCEF6
C:\Windows\System32\DRIVERS\avkmgr.sys 3E0AB8C453FA433B15A30BAA8BD4B275
C:\Windows\System32\DRIVERS\avnetflt.sys 19B6F9073BD606B7ABEC03A0328FDC1B
C:\Windows\System32\DRIVERS\ax88772.sys D6A9057AAFA59D805740BC74231ADB8A
C:\Windows\SysWOW64\DRIVERS\ax88772.sys 1E3A6DDC31AF74826E29851679CD0C61
C:\Windows\system32\DRIVERS\bxvbda.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\bcmwl664.sys 9E84A931DBEE0292E38ED672F6293A99
C:\Windows\System32\Drivers\Beep.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\blbdrive.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\bowser.sys 91CE0D3DC57DD377E690A2D324022B08
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Brserid.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\BrSerWdm.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\BrUsbSer.sys ==> Le MD5 est légitime
C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys 82D92C0DF7FDA102E10D0E653316EB8A
C:\Windows\System32\DRIVERS\BthAvrcp.sys 832B121E4532919CC49F2438F1DCAA21
C:\Windows\system32\drivers\BthEnum.sys CF98190A94F62E405C8CB255018B2315
C:\Windows\system32\DRIVERS\bthmodem.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\bthpan.sys 02DD601B708DD0667E1331FA8518E9FF
C:\Windows\System32\Drivers\BTHport.sys 0D25B6D300BA26A5F2C3B2A8E96B158B
C:\Windows\System32\Drivers\BTHUSB.sys 1F9912F8EC5BFA53432E71E150636A8A
C:\Windows\System32\DRIVERS\btkrnl.sys 08B32D0EE6F3C88D9B1C03AADC56D638
C:\Windows\System32\Drivers\btwusb.sys 93DA753C17797E5566AB0F682549C267
C:\Windows\System32\DRIVERS\cdfs.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\cdrom.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\circlass.sys ==> Le MD5 est légitime
C:\Windows\System32\CLFS.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\CmBatt.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\cmdide.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\cng.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\compbatt.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\CompositeBus.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\crcdisk.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\bthav.sys DF07C6D98BA7F81D0571E366B1CD6672
C:\Windows\System32\Drivers\dfsc.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\discache.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\disk.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\Dot4.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\Dot4Prt.sys E9F5969233C5D89F3C35E3A66A52A361
C:\Windows\System32\DRIVERS\dot4usb.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\drmkaud.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\dtsoftbus01.sys 46571ED73AE84469DCA53081D33CF3C8
C:\Windows\System32\drivers\dxgkrnl.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\evbda.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\ElbyCDIO.sys BE2902E13CA69383F449B6BF927844FB
C:\Windows\system32\DRIVERS\elxstor.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\errdev.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mbae64.sys 233DB99476B8D1CF61AC1177D0137036
C:\Windows\System32\Drivers\exfat.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\fastfat.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\fdc.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\fileinfo.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\filetrace.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\flpydisk.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\fltmgr.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\FsDepends.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Fs_Rec.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ftdibus.sys 8EC36B9FD3D25687C3F996200BBB8DED
C:\Windows\System32\drivers\ftser2k.sys 535AB1F6600D8384145E4A8521194D3F
C:\Windows\System32\DRIVERS\fvevol.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F
C:\Windows\system32\drivers\hcw85cir.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\system32\drivers\HDAudBus.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\HECIx64.sys B6AC71AAA2B10848F57FC49D55A651AF
C:\Windows\system32\DRIVERS\HidBatt.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\hidbth.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\hidir.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\hidusb.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\HpSAMD.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\HTTP.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\hwpolicy.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\i8042prt.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\iaStor.sys 42E00996DFC13C46366689C0EA8ABC5E
C:\Windows\system32\drivers\iaStorV.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\igdkmd64.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\iirsp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\Impcd.sys 36FDF367A1DABFF903E2214023D71368
C:\Windows\System32\drivers\RTKVHD64.sys 53019327813FF5AB2964B33B2C61307C
C:\Windows\system32\drivers\intelide.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\intelppm.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\IPMIDrv.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ipnat.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\irenum.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\isapnp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\msiscsi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\k57nd60a.sys 9D7EA8C7215D8D4AE7BE110EEE61085D
C:\Windows\system32\drivers\kbdclass.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\kbdhid.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\ksecdd.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\ksecpkg.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\ksthunk.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\L1E62x64.sys 2AC603C3188C704CFCE353659AA7AD71
C:\Windows\System32\DRIVERS\lltdio.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\lmimirr.sys 413ECDCFAD9A82804D3674C8D7EEC24E
C:\Windows\system32\drivers\LMIRfsDriver.sys C57D3FAA50E6F395759FFB7C709BD944
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\Ltn_stk7070P_64.sys 639D24E769BDBEC6145E4C1921669B73
C:\Windows\System32\DRIVERS\Ltn_stkrc_64.sys E028DF5A96827A87898D4D7EB768E3AB
C:\Windows\system32\drivers\luafv.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\MBAMChameleon.sys 4EA73F071D96F376DB3AB9EF81273B28
C:\Windows\system32\drivers\farflt.sys C51267EE2726707D38C489C06DDF01ED
C:\Windows\system32\drivers\mbam.sys 88BD122C3A35DE63D75D382DF75554CE
C:\Windows\System32\drivers\MBAMSwissArmy.sys 53283EB9998AC9350E14C35A880989DB
C:\Windows\system32\drivers\mwac.sys 959A51BEAA6E12B9CF97511071C16084
C:\Windows\system32\DRIVERS\megasas.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\MegaSR.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\modem.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\monitor.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mouclass.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\mouhid.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\mountmgr.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mpio.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\mpsdrv.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mrxdav.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\mrxsmb.sys FAF015B07E3A2874A790A39B7D2C579F
C:\Windows\System32\DRIVERS\mrxsmb10.sys 08E2345DF129082BCDFFDC1440F9C00D
C:\Windows\System32\DRIVERS\mrxsmb20.sys 108D87409C5812EF47D81E22843E8C9D
C:\Windows\system32\drivers\msahci.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\msdsm.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Msfs.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\mshidkmdf.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\msisadrv.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSKSSRV.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSPCLOCK.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSPQM.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\MsRPC.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\mssmbios.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\MSTEE.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\MTConfig.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\mup.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\nwifi.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ndis.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndiscap.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndistapi.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndisuio.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ndiswan.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\NDProxy.sys ==> Le MD5 est légitime
C:\Windows\system32\Drivers\NEOFLTR_817_41041.SYS 2DD5637039B20562AF7057D0C4F8A178
C:\Windows\System32\DRIVERS\netbios.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\netbt.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\nfrd960.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\ccdcmbx64.sys 5FE6F8C05F0769BBB74AFAC11453B182
C:\Windows\System32\drivers\ccdcmbox64.sys 73C929945C0850B8D1FE2FEA05FDF05D
C:\Windows\System32\Drivers\Npfs.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\nsiproxy.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\Ntfs.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\NTIDrvr.sys 64DDD0DEE976302F4BD93E5EFCC2F013
C:\Windows\System32\Drivers\Null.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\nvraid.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\nvstor.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\nv_agp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\ohci1394.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\parport.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\partmgr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\pccsmcfdx64.sys BC0018C2D29F655188A0ED3FA94FDB24
C:\Windows\System32\drivers\pci.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\pciide.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\pcmcia.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\pcw.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\peauth.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\raspptp.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\processr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\pacer.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\PxHlpa64.sys 87B04878A6D59D6C79251DC960C674C1
C:\Windows\system32\DRIVERS\ql2300.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\ql40xx.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\qwavedrv.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rasacd.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\raspppoe.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rassstp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rdbss.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\rdpbus.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\rdpencdd.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\rdprefmp.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\RDPWD.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\rdyboost.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\rfcomm.sys 3DD798846E2C28102B922C56E71B7932
C:\Windows\System32\DRIVERS\rspndr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\RtkBtfilter.sys 6DF02B4EEF2869B77637EB65DDCED864
C:\Windows\system32\drivers\sbp2port.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\scfilter.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\secdrv.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\ser2pl64.sys 2437720D4480523562360B2B6B5864A7
C:\Windows\System32\DRIVERS\serenum.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\serial.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\sermouse.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\sffdisk.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\sffp_mmc.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\sffp_sd.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\sfloppy.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\sisraid4.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\smb.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\spldr.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\srv.sys 2098B8556D1CEC2ACA9A29CD479E3692
C:\Windows\System32\DRIVERS\srv2.sys D0F73A42040F21F92FD314B42AC5C9E7
C:\Windows\System32\DRIVERS\srvnet.sys 2BA8F3250828CCDB4204ECF2C6F40B6A
C:\Windows\system32\DRIVERS\stexstor.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\serscan.sys DECACB6921DED1A38642642685D77DAC
C:\Windows\system32\drivers\swenum.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\DRIVERS\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\drivers\tcpipreg.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tdpipe.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tdtcp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\tdx.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\termdd.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\tssecsrv.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\tsusbflt.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\tunnel.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\TurboB.sys 825E7A1F48FB8BCFBA27C178AAB4E275
C:\Windows\system32\DRIVERS\uagp35.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\UBHelper.sys 2E22C1FD397A5A9FFEF55E9D1FC96C00
C:\Windows\System32\DRIVERS\udfs.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\uliagpkx.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\umbus.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\umpass.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys 34AFB83C7BBA370E404E52CC2290350C
C:\Windows\System32\Drivers\usbaapl64.sys F957092C63CD71D85903CA0D8370F473
C:\Windows\system32\drivers\usbaudio.sys 82E8F44688E6FAC57B5B7C6FC7ADBC2A
C:\Windows\System32\DRIVERS\usbccgp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbcir.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbehci.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbhub.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbohci.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\CM10864.sys 479CBB48761AD5AD719D66CB0E85D428
C:\Windows\SysWOW64\drivers\CM10864.sys 479CBB48761AD5AD719D66CB0E85D428
C:\Windows\System32\DRIVERS\usbprint.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\usb80236.sys 54EAFFD31C377C8C1055D33E6B6B4B27
C:\Windows\System32\DRIVERS\usbscan.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbser.sys 4ACEE387FA8FD39F83564FCD2FC234F2
C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys AA75E1EFBEE7186B4CBAAACF1F15E6CA
C:\Windows\System32\DRIVERS\USBSTOR.SYS ==> Le MD5 est légitime
C:\Windows\system32\drivers\usbuhci.sys ==> Le MD5 est légitime
C:\Windows\System32\Drivers\usbvideo.sys 454800C2BC7F3927CE030141EE4F4C50
C:\Windows\System32\DRIVERS\VClone.sys 3EEBF3C348C3DEB4CF6F10F2E6E222CD
C:\Windows\System32\drivers\vdrvroot.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vgapnp.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\vga.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\vhdmp.sys ==> Le MD5 est légitime
C:\Windows\system32\drivers\viaide.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\volmgr.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\volmgrx.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\volsnap.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\vsmraid.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vwifibus.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vwififlt.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\vwifimp.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\wacompen.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\wanarp.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\wanarp.sys ==> Le MD5 est légitime
C:\Windows\system32\DRIVERS\wd.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\Wdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4
C:\Windows\System32\DRIVERS\wfplwf.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\wimmount.sys ==> Le MD5 est légitime
C:\Windows\SysWOW64\drivers\wimmount.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\womic.sys 5D552D191E5E64C413F5051CA84385AD
C:\Windows\system32\drivers\ws2ifsl.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\WudfPf.sys ==> Le MD5 est légitime
C:\Windows\System32\DRIVERS\WUDFRd.sys ==> Le MD5 est légitime
C:\Windows\System32\drivers\zam64.sys 21E13F2CB269DEFEAE5E1D09887D47BB
C:\Windows\System32\drivers\zamguard64.sys 21E13F2CB269DEFEAE5E1D09887D47BB
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-31 18:19 - 2017-05-31 18:21 - 00077268 _____ C:\Users\drastef\Desktop\FRST.txt
2017-05-31 18:19 - 2017-05-31 18:19 - 00000000 ____D C:\FRST
2017-05-31 18:18 - 2017-05-31 18:17 - 02429952 _____ (Farbar) C:\Users\drastef\Desktop\FRST64.exe
2017-05-31 18:17 - 2017-05-31 18:17 - 02429952 _____ (Farbar) C:\Users\drastef\Downloads\FRST64.exe
2017-05-31 18:14 - 2017-05-31 18:14 - 00065536 ___HT C:\Users\drastef\~calendrier.pst.tmp
2017-05-29 23:41 - 2017-05-31 18:21 - 04483675 _____ C:\Windows\ZAM.krnl.trace
2017-05-29 23:41 - 2017-05-31 18:21 - 00538219 _____ C:\Windows\ZAM_Guard.krnl.trace
2017-05-29 23:41 - 2017-05-29 23:41 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2017-05-29 23:41 - 2017-05-29 23:41 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2017-05-29 23:41 - 2017-05-29 23:41 - 00001120 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2017-05-29 23:41 - 2017-05-29 23:41 - 00001120 _____ C:\ProgramData\Desktop\Zemana AntiMalware.lnk
2017-05-29 23:41 - 2017-05-29 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2017-05-29 23:41 - 2017-05-29 23:41 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-05-29 23:40 - 2017-05-29 23:40 - 05774688 _____ (Zemana Ltd. ) C:\Users\drastef\Downloads\Zemana.AntiMalware.Setup.exe
2017-05-29 23:40 - 2017-05-29 23:40 - 00000000 ____D C:\Users\drastef\AppData\Local\Zemana
2017-05-29 21:57 - 2017-05-31 15:53 - 00084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-29 21:57 - 2017-05-30 18:42 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-29 21:57 - 2017-05-30 18:42 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-29 21:57 - 2017-05-30 18:42 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-29 21:57 - 2017-05-29 21:57 - 00187320 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-29 21:56 - 2017-05-29 21:56 - 00001879 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-29 21:56 - 2017-05-29 21:56 - 00001879 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2017-05-29 21:56 - 2017-05-29 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-29 21:56 - 2017-05-29 21:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-29 21:56 - 2017-05-29 21:56 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-29 21:56 - 2017-05-09 16:37 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-05-29 21:54 - 2017-05-29 21:56 - 63364552 _____ (Malwarebytes ) C:\Users\drastef\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.122-1.0.1976.exe
2017-05-29 21:32 - 2017-05-29 21:32 - 04110280 _____ C:\Users\drastef\Downloads\adwcleaner_6.047.exe
2017-05-15 18:47 - 2017-05-15 18:48 - 00000000 ____D C:\Users\drastef\AppData\Roaming\.bloodylauncher
2017-05-13 09:04 - 2017-05-30 07:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-11 21:54 - 2017-05-11 21:54 - 00224550 _____ C:\Users\drastef\Desktop\MV2_SSBMYODBW2224_1702203690532_BP.pdf
2017-05-06 19:53 - 2017-05-06 19:53 - 01686016 _____ C:\Users\drastef\Desktop\intro 01.avi
2017-05-06 19:35 - 2017-05-06 19:35 - 00001192 _____ C:\Users\drastef\Desktop\Aurora 3D Animation Maker.lnk
2017-05-06 19:35 - 2017-05-06 19:35 - 00000991 _____ C:\Users\drastef\Desktop\Audacity.lnk
2017-05-05 22:23 - 2017-05-05 22:23 - 00001258 _____ C:\Users\drastef\Desktop\Wondershare Filmora.lnk
2017-05-05 21:59 - 2017-05-05 21:59 - 00000000 ____D C:\Users\drastef\Documents\Aurora3D
2017-05-05 19:21 - 2017-05-06 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aurora 3D Animation Maker
2017-05-05 19:21 - 2017-05-05 19:21 - 00000000 ____D C:\Users\drastef\AppData\Local\Configure
2017-05-05 19:21 - 2017-05-05 19:21 - 00000000 ____D C:\Users\drastef\AppData\Local\Aurora 3D Animation Maker
2017-05-05 19:20 - 2017-05-06 00:13 - 00000000 ____D C:\Program Files (x86)\Aurora3D
2017-05-05 19:20 - 2011-09-13 17:58 - 00581632 _____ (Optima SC Inc.) C:\Windows\SysWOW64\vp8vfw.dll
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-31 18:16 - 2015-01-11 17:13 - 04334592 _____ C:\Users\drastef\calendrier.pst
2017-05-31 18:15 - 2017-03-15 23:53 - 00000000 ____D C:\Users\drastef\AppData\LocalLow\Mozilla
2017-05-31 18:14 - 2010-12-01 22:18 - 00000000 ____D C:\Users\drastef
2017-05-31 17:34 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-31 17:34 - 2009-07-14 06:45 - 00017376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-31 07:18 - 2014-07-12 10:53 - 00000000 ____D C:\AdwCleaner
2017-05-30 22:57 - 2013-08-09 16:10 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-30 22:57 - 2012-05-19 19:56 - 00000000 ____D C:\Windows\Minidump
2017-05-30 22:57 - 2011-12-29 00:29 - 00000000 ____D C:\Users\drastef\AppData\Roaming\Winamp
2017-05-30 21:55 - 2015-09-03 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Architecte 3D Silver Advanced
2017-05-30 21:50 - 2017-04-19 12:41 - 00000000 ____D C:\Users\drastef\AppData\Roaming\FileAdvisor
2017-05-30 19:15 - 2010-05-07 05:19 - 00000000 ____D C:\Program Files\Google
2017-05-30 19:15 - 2010-05-07 05:19 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-30 19:06 - 2001-03-01 22:22 - 00001290 _____ C:\Windows\QUICKEN.INI
2017-05-30 18:40 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-30 07:44 - 2012-07-09 20:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-29 22:56 - 2011-01-07 00:24 - 00002063 _____ C:\Windows\wininit.ini
2017-05-28 18:49 - 2012-07-03 20:31 - 00000000 ____D C:\Users\drastef\AppData\Roaming\Skype
2017-05-28 17:46 - 2010-05-21 21:50 - 00749188 _____ C:\Windows\system32\perfh00C.dat
2017-05-28 17:46 - 2010-05-21 21:50 - 00150330 _____ C:\Windows\system32\perfc00C.dat
2017-05-28 17:46 - 2009-07-14 07:13 - 01672696 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-28 17:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-27 21:35 - 2010-12-03 23:45 - 00000000 ____D C:\Users\drastef\Documents\David
2017-05-22 19:57 - 2017-04-15 15:10 - 00000000 ____D C:\Users\drastef\Desktop\Voyage USA
2017-05-21 22:42 - 2010-12-03 23:45 - 00000000 ____D C:\Users\drastef\Documents\Maison
2017-05-17 20:05 - 2012-05-06 08:59 - 00000000 ____D C:\Users\drastef\AppData\Roaming\.minecraft
2017-05-17 19:17 - 2010-12-04 00:32 - 00000000 ____D C:\Users\drastef\AppData\Local\CrashDumps
2017-05-16 21:39 - 2015-11-15 22:51 - 00057580 _____ C:\Users\drastef\Documents\Database.kdb
2017-05-15 18:50 - 2016-08-21 18:53 - 00000000 ____D C:\Program Files (x86)\Minecraft
2017-05-15 18:47 - 2010-12-05 22:17 - 00000000 ____D C:\Users\drastef\Desktop\Jeux
2017-05-14 19:50 - 2015-11-03 19:20 - 00000000 ____D C:\Users\drastef\Documents\Santé
2017-05-11 23:56 - 2010-12-08 00:50 - 00002165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-10 00:02 - 2014-01-07 12:41 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-05-09 23:21 - 2012-05-19 21:22 - 00803320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-05-09 23:21 - 2012-05-19 21:22 - 00004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-05-09 23:21 - 2011-12-28 10:05 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-09 23:21 - 2011-07-01 07:27 - 00144888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-09 23:21 - 2010-05-07 05:09 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-06 19:59 - 2014-12-18 21:39 - 00000000 ____D C:\Users\drastef\AppData\Roaming\Audacity
2017-05-06 16:18 - 2014-12-23 17:46 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-06 00:20 - 2009-07-14 06:45 - 00558496 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-06 00:17 - 2013-09-15 11:24 - 00000000 ____D C:\Users\drastef\Desktop\Outils
2017-05-05 22:39 - 2010-12-01 22:18 - 00146032 _____ C:\Users\drastef\AppData\Local\GDIPFONTCACHEV1.DAT
2017-05-05 19:37 - 2011-05-05 21:51 - 00000000 ____D C:\Users\drastef\Documents\Kilian
2017-05-02 21:01 - 2017-04-24 22:37 - 00000000 ____D C:\Program Files (x86)\SricamPC
==================== Fichiers à la racine de certains dossiers =======
2016-10-05 19:18 - 2016-10-05 19:18 - 0000385 _____ () C:\Users\drastef\AppData\Roaming\AdobeWLCMR2Cache.dat
2012-09-30 12:53 - 2012-09-30 12:54 - 0013274 _____ () C:\Users\drastef\AppData\Roaming\ATOUT p'tit CLIC 4-5 ans
2015-03-11 21:21 - 2015-03-16 19:58 - 0000117 _____ () C:\Users\drastef\AppData\Roaming\D2Info0
2015-03-11 21:21 - 2015-03-13 20:15 - 0000008 _____ () C:\Users\drastef\AppData\Roaming\DofusAppId0_1
2015-03-12 21:15 - 2015-03-16 20:25 - 0000008 _____ () C:\Users\drastef\AppData\Roaming\DofusAppId0_2
2004-02-25 14:48 - 2004-02-25 14:48 - 0001088 _____ () C:\Users\drastef\AppData\Roaming\Enregistrement Hachette
2017-03-25 19:51 - 2017-04-22 18:37 - 0000100 _____ () C:\Users\drastef\AppData\Roaming\infos.properties
2013-01-01 19:01 - 2013-01-01 19:01 - 0038417 _____ () C:\Users\drastef\AppData\Roaming\Microsoft Excel 97-2003.ADR
2015-11-29 20:46 - 2015-11-29 20:46 - 0000036 _____ () C:\Users\drastef\AppData\Roaming\SuYZkvrV.tmp
2012-06-10 11:19 - 2012-06-10 11:20 - 0038438 _____ () C:\Users\drastef\AppData\Roaming\Valeurs séparées par une virgule (DOS).ADR
2014-07-20 12:27 - 2015-01-31 19:08 - 0009307 _____ () C:\Users\drastef\AppData\Roaming\Valeurs séparées par une virgule (DOS).EML
2015-02-26 01:25 - 2016-01-10 12:06 - 0000600 _____ () C:\Users\drastef\AppData\Roaming\winscp.rnd
2010-12-02 01:22 - 2010-12-02 01:22 - 0000000 _____ () C:\Users\drastef\AppData\Roaming\wklnhst.dat
2010-12-08 02:03 - 2015-11-05 21:54 - 0005632 _____ () C:\Users\drastef\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-04-02 19:19 - 2016-04-02 19:19 - 0004096 ____H () C:\Users\drastef\AppData\Local\keyfile3.drm
2015-02-24 20:24 - 2016-12-10 02:35 - 0000600 _____ () C:\Users\drastef\AppData\Local\PUTTY.RND
2017-04-03 14:03 - 2017-04-03 14:03 - 0009153 _____ () C:\Users\drastef\AppData\Local\recently-used.xbel
2011-03-25 20:52 - 2017-04-05 14:20 - 0007596 _____ () C:\Users\drastef\AppData\Local\Resmon.ResmonCfg
2010-12-27 16:39 - 2012-10-04 23:08 - 0003221 _____ () C:\ProgramData\hpzinstall.log
2016-12-05 21:51 - 2016-12-05 21:51 - 0001534 _____ () C:\ProgramData\ss.ini
Certains fichiers dans TEMP:
====================
2017-05-30 21:46 - 2001-11-05 09:30 - 0165376 _____ () C:\Users\drastef\AppData\Local\Temp\GLB1A2B.EXE
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-23 22:06
==================== Fin de FRST.txt ============================