Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 15-07-2017
Exécuté par philippe (administrateur) sur PC-DE-PHILIPPE (15-07-2017 14:03:22)
Exécuté depuis C:\Users\philippe\Downloads
Profils chargés: philippe (Profils disponibles: philippe & UpdatusUser)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: "C:\Users\philippe\Downloads\FirefoxPortable\App\Firefox\firefox.exe" -osint -url "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
() C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
() C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac7302\Monitor.exe
(AdTrustMedia) C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(SFR) C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgui.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
() C:\Program Files\bin32\nSvcAppFlt.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\bin32\nSvcIp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(acer) C:\Program Files\Acer\Empowering Technology\NotificationCenter\Framework.NotificationCenter.exe
(Mozilla Corporation) C:\Users\philippe\Downloads\FirefoxPortable\App\Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [5369856 2008-03-26] (Realtek Semiconductor)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2011-07-12] (Google)
HKLM\...\Run: [Acer Empowering Technology Monitor] => C:\Program Files\Acer\Empowering Technology\SysMonitor.exe [319488 2008-10-01] ()
HKLM\...\Run: [EmpoweringTechnology] => C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe [323584 2008-10-01] ()
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-14] (Apple Inc.)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [PrivDogService] => C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [662184 2014-06-17] (AdTrustMedia)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [2162760 2016-07-23] ()
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220288 2017-07-03] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [263232 2017-07-06] (AVG Technologies CZ, s.r.o.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-03-28] ()
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [135680 2008-07-03] (Microsoft Corporation)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [SFR Mediacenter] => C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe [2688368 2013-02-26] (SFR)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [EPSON SX218 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGDE.EXE [200704 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6638296 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\WLXPGSS.SCR [302448 2012-03-08] (Microsoft Corporation)
Startup: C:\Users\philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2014-04-01]
ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Winsock: Catalog9 01 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Winsock: Catalog9 02 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Winsock: Catalog9 03 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Winsock: Catalog9 14 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{A6FC4066-460B-4373-9E14-78E0326203BE}: [NameServer] 212.27.40.240,212.27.40.241
Tcpip\..\Interfaces\{A6FC4066-460B-4373-9E14-78E0326203BE}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={E99735AD-F0D8-4180-A6D5-52CA240952FA}&mid=359dec70fd4e47d19c8dd154345b8b42-35dca9af36affc4fd6a8dfb6cc136c9c42376838&lang=fr&ds=AVG&coid=avgtbavg&cmpid=1215av&pr=fr&d=2015-12-11 12:14:07&v=4.2.9.726&pid=wtu&sg=&sap=hp
SearchScopes: HKLM -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
SearchScopes: HKU\.DEFAULT -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E99735AD-F0D8-4180-A6D5-52CA240952FA}&mid=359dec70fd4e47d19c8dd154345b8b42-35dca9af36affc4fd6a8dfb6cc136c9c42376838&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-12-11 12:14:07&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_frFR440
SearchScopes: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E99735AD-F0D8-4180-A6D5-52CA240952FA}&mid=359dec70fd4e47d19c8dd154345b8b42-35dca9af36affc4fd6a8dfb6cc136c9c42376838&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-12-11 12:14:07&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.2.18\AVG Web TuneUp.dll [2016-07-23] (AVG)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29] (Egis Incorporated.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
Toolbar: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: shoaw3nk.default-1380644493348
FF ProfilePath: C:\Users\philippe\AppData\Roaming\TomTom\HOME\Profiles\f7nfhncu.default [2012-08-30]
FF Extension: (RenaultTheme) - C:\Users\philippe\AppData\Roaming\TomTom\HOME\Profiles\f7nfhncu.default\Extensions\RenaultTheme@tomtom.com [2012-08-30] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348 [2017-07-15]
FF Extension: (Print pages to PDF) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\printPages2Pdf@reinhold.ripper [2015-05-29]
FF Extension: (PrivDog) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-06-19] [non signé]
FF Extension: (Google Translator for Firefox) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\translator@zoli.bod.xpi [2017-02-05]
FF Extension: (FlashGot) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-12-13]
FF Extension: (Adblock Plus) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-11]
FF SearchPlugin: C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\searchplugins\Messenger Plus Smartbar Search.xml [2014-03-31]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-07-18] [non signé]
FF HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Firefox\Extensions: [PrivDog@AdTrustMedia.com] - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\extensions
FF Extension: (Pas de nom) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\extensions [2017-06-11] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-14] ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.2\\npsitesafety.dll [Pas de fichier]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-05-04]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-07-14] (Adobe Systems Incorporated) [Fichier non signé]
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [264432 2017-07-06] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [5866488 2017-07-06] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [1189720 2017-07-03] (AVG Technologies CZ, s.r.o.)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-10-01] () [Fichier non signé]
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\bin32\nSvcAppFlt.exe [598016 2008-01-29] () [Fichier non signé]
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [243880 2015-02-13] (Foxit Software Inc.)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2011-07-12] (Google)
R2 nSvcIp; C:\Program Files\bin32\nSvcIp.exe [163840 2008-01-29] () [Fichier non signé]
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [4677904 2017-02-21] (AVG Technologies CZ, s.r.o.)
R2 vToolbarUpdater40.3.2; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe [1309768 2016-07-23] (AVG Secure Search)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [976456 2016-07-23] ()
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 avgbdisk; C:\Windows\system32\drivers\avgbdiskx.sys [135872 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdriverx.sys [260616 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\system32\drivers\avgbidshx.sys [151024 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\system32\drivers\avgblogx.sys [270344 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\system32\drivers\avgbunivx.sys [43992 2017-07-06] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [35264 2017-07-06] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [116344 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\system32\drivers\avgRdr.sys [62528 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [63280 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [766728 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [489416 2017-07-06] (AVG Technologies CZ, s.r.o.)
R3 avgStmXP; C:\Windows\system32\drivers\avgStmXP.sys [195128 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [288728 2017-07-06] (AVG Technologies CZ, s.r.o.)
R3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [31792 2017-02-21] (AVG Netherlands B.V.)
S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [521216 2008-01-21] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 14:03 - 2017-07-15 14:04 - 00021692 _____ C:\Users\philippe\Downloads\FRST.txt
2017-07-15 14:01 - 2017-07-15 14:03 - 00000000 ____D C:\FRST
2017-07-15 14:00 - 2017-07-15 14:01 - 01780736 _____ (Farbar) C:\Users\philippe\Downloads\FRST.exe
2017-07-14 09:52 - 2017-07-14 09:52 - 00008330 _____ C:\Users\philippe\Desktop\RKreport[0]_D_07142017_095215.txt
2017-07-14 09:52 - 2017-07-14 09:52 - 00008295 _____ C:\Users\philippe\Desktop\RKreport[0]_S_07142017_095201.txt
2017-07-06 11:46 - 2017-07-06 11:46 - 00304400 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 14:00 - 2016-11-27 13:48 - 00000000 ____D C:\Users\philippe\AppData\LocalLow\Mozilla
2017-07-15 13:44 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-15 13:44 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-15 12:43 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\tracing
2017-07-15 11:51 - 2008-01-21 10:41 - 01738676 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-15 11:51 - 2008-01-21 10:40 - 00815362 _____ C:\Windows\system32\perfh00C.dat
2017-07-15 11:51 - 2008-01-21 10:40 - 00174440 _____ C:\Windows\system32\perfc00C.dat
2017-07-15 11:51 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2017-07-15 11:45 - 2015-09-19 08:48 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2017-07-15 11:45 - 2011-07-12 19:11 - 00000000 _____ C:\Windows\system32\LogConfigTemp.xml
2017-07-15 11:45 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-07-15 11:44 - 2011-07-12 19:04 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-15 11:44 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-14 19:08 - 2011-08-19 19:35 - 00000012 _____ C:\Windows\bthservsdp.dat
2017-07-14 19:08 - 2006-11-02 15:01 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-07-14 09:52 - 2014-06-16 19:02 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-07-14 09:46 - 2017-06-06 17:46 - 00262144 _____ C:\Users\UpdatusUser\ntuser.man
2017-07-14 09:43 - 2014-09-21 12:56 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-07-14 09:43 - 2014-09-21 12:56 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-07-14 09:43 - 2009-01-13 10:16 - 00000000 ____D C:\Windows\system32\Macromed
2017-07-08 14:31 - 2014-07-04 19:22 - 00000000 ____D C:\Users\philippe\AppData\Local\CrashDumps
2017-07-08 09:53 - 2015-05-27 12:34 - 00000000 ____D C:\Users\philippe\AppData\Local\Avg
2017-07-06 11:47 - 2017-06-03 09:36 - 00288728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgvmm.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00766728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00489416 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00195128 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStmXP.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00116344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00063280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00062528 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00035264 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00270344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgblogx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00260616 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriverx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00151024 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidshx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00135872 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiskx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00043992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbunivx.sys
2017-06-30 11:40 - 2016-11-26 15:10 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2017-06-30 11:40 - 2013-05-30 18:03 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-06-27 12:00 - 2017-06-03 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-06-27 12:00 - 2017-06-03 09:30 - 00000747 _____ C:\Users\Public\Desktop\AVG.lnk
==================== Fichiers à la racine de certains dossiers =======
2011-08-01 10:41 - 2016-08-26 13:44 - 0000448 _____ () C:\Users\philippe\AppData\Roaming\wklnhst.dat
2011-12-12 23:43 - 2012-03-29 14:15 - 0000680 _____ () C:\Users\philippe\AppData\Local\d3d9caps.dat
2011-07-16 16:03 - 2017-06-06 18:11 - 0037888 _____ () C:\Users\philippe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-08-11 10:31 - 2011-08-11 10:31 - 0000000 _____ () C:\Users\philippe\AppData\Local\{02C93451-AA40-4ABA-BD42-0770D0312EF3}
Certains fichiers dans TEMP:
====================
2017-06-27 12:23 - 2014-07-01 10:20 - 11719232 _____ (Foxit Corporation) C:\Users\philippe\AppData\Local\Temp\Foxit Reader Updater.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-15 11:52
==================== Fin de FRST.txt ============================
Exécuté par philippe (administrateur) sur PC-DE-PHILIPPE (15-07-2017 14:03:22)
Exécuté depuis C:\Users\philippe\Downloads
Profils chargés: philippe (Profils disponibles: philippe & UpdatusUser)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: "C:\Users\philippe\Downloads\FirefoxPortable\App\Firefox\firefox.exe" -osint -url "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
() C:\Program Files\Acer\Empowering Technology\SysMonitor.exe
() C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac7302\Monitor.exe
(AdTrustMedia) C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(SFR) C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgui.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
() C:\Program Files\bin32\nSvcAppFlt.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\bin32\nSvcIp.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(Microsoft Corporation) C:\Windows\ehome\ehrecvr.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(acer) C:\Program Files\Acer\Empowering Technology\NotificationCenter\Framework.NotificationCenter.exe
(Mozilla Corporation) C:\Users\philippe\Downloads\FirefoxPortable\App\Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [5369856 2008-03-26] (Realtek Semiconductor)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2011-07-12] (Google)
HKLM\...\Run: [Acer Empowering Technology Monitor] => C:\Program Files\Acer\Empowering Technology\SysMonitor.exe [319488 2008-10-01] ()
HKLM\...\Run: [EmpoweringTechnology] => C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe [323584 2008-10-01] ()
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-14] (Apple Inc.)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [PrivDogService] => C:\Program Files\AdTrustMedia\PrivDog\2.2.0.14\trustedadssvc.exe [662184 2014-06-17] (AdTrustMedia)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [2162760 2016-07-23] ()
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220288 2017-07-03] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [263232 2017-07-06] (AVG Technologies CZ, s.r.o.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-03-28] ()
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [135680 2008-07-03] (Microsoft Corporation)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [SFR Mediacenter] => C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe [2688368 2013-02-26] (SFR)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [EPSON SX218 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGDE.EXE [200704 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6638296 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\WLXPGSS.SCR [302448 2012-03-08] (Microsoft Corporation)
Startup: C:\Users\philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2014-04-01]
ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Winsock: Catalog9 01 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Winsock: Catalog9 02 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Winsock: Catalog9 03 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Winsock: Catalog9 14 C:\Windows\system32\nvLsp.dll [163840 2008-01-29] (NVIDIA)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{A6FC4066-460B-4373-9E14-78E0326203BE}: [NameServer] 212.27.40.240,212.27.40.241
Tcpip\..\Interfaces\{A6FC4066-460B-4373-9E14-78E0326203BE}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-798373581-1568656723-3462503387-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={E99735AD-F0D8-4180-A6D5-52CA240952FA}&mid=359dec70fd4e47d19c8dd154345b8b42-35dca9af36affc4fd6a8dfb6cc136c9c42376838&lang=fr&ds=AVG&coid=avgtbavg&cmpid=1215av&pr=fr&d=2015-12-11 12:14:07&v=4.2.9.726&pid=wtu&sg=&sap=hp
SearchScopes: HKLM -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL =
SearchScopes: HKU\.DEFAULT -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E99735AD-F0D8-4180-A6D5-52CA240952FA}&mid=359dec70fd4e47d19c8dd154345b8b42-35dca9af36affc4fd6a8dfb6cc136c9c42376838&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-12-11 12:14:07&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_frFR440
SearchScopes: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E99735AD-F0D8-4180-A6D5-52CA240952FA}&mid=359dec70fd4e47d19c8dd154345b8b42-35dca9af36affc4fd6a8dfb6cc136c9c42376838&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0516tb&pr=fr&d=2015-12-11 12:14:07&v=4.2.9.726&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.2.18\AVG Web TuneUp.dll [2016-07-23] (AVG)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29] (Egis Incorporated.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-29] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
Toolbar: HKU\S-1-5-21-798373581-1568656723-3462503387-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-07] (Google Inc.)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: shoaw3nk.default-1380644493348
FF ProfilePath: C:\Users\philippe\AppData\Roaming\TomTom\HOME\Profiles\f7nfhncu.default [2012-08-30]
FF Extension: (RenaultTheme) - C:\Users\philippe\AppData\Roaming\TomTom\HOME\Profiles\f7nfhncu.default\Extensions\RenaultTheme@tomtom.com [2012-08-30] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348 [2017-07-15]
FF Extension: (Print pages to PDF) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\printPages2Pdf@reinhold.ripper [2015-05-29]
FF Extension: (PrivDog) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-06-19] [non signé]
FF Extension: (Google Translator for Firefox) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\translator@zoli.bod.xpi [2017-02-05]
FF Extension: (FlashGot) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-12-13]
FF Extension: (Adblock Plus) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-11]
FF SearchPlugin: C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\searchplugins\Messenger Plus Smartbar Search.xml [2014-03-31]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-07-18] [non signé]
FF HKU\S-1-5-21-798373581-1568656723-3462503387-1000\...\Firefox\Extensions: [PrivDog@AdTrustMedia.com] - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\extensions
FF Extension: (Pas de nom) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\shoaw3nk.default-1380644493348\extensions [2017-06-11] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-14] ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.2\\npsitesafety.dll [Pas de fichier]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-05-04]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-07-14] (Adobe Systems Incorporated) [Fichier non signé]
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [264432 2017-07-06] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [5866488 2017-07-06] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [1189720 2017-07-03] (AVG Technologies CZ, s.r.o.)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-10-01] () [Fichier non signé]
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\bin32\nSvcAppFlt.exe [598016 2008-01-29] () [Fichier non signé]
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [243880 2015-02-13] (Foxit Software Inc.)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2011-07-12] (Google)
R2 nSvcIp; C:\Program Files\bin32\nSvcIp.exe [163840 2008-01-29] () [Fichier non signé]
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [4677904 2017-02-21] (AVG Technologies CZ, s.r.o.)
R2 vToolbarUpdater40.3.2; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.2\ToolbarUpdater.exe [1309768 2016-07-23] (AVG Secure Search)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [976456 2016-07-23] ()
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 avgbdisk; C:\Windows\system32\drivers\avgbdiskx.sys [135872 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdriverx.sys [260616 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\system32\drivers\avgbidshx.sys [151024 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\system32\drivers\avgblogx.sys [270344 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\system32\drivers\avgbunivx.sys [43992 2017-07-06] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [35264 2017-07-06] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [116344 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\system32\drivers\avgRdr.sys [62528 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [63280 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [766728 2017-07-06] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [489416 2017-07-06] (AVG Technologies CZ, s.r.o.)
R3 avgStmXP; C:\Windows\system32\drivers\avgStmXP.sys [195128 2017-07-06] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [288728 2017-07-06] (AVG Technologies CZ, s.r.o.)
R3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [31792 2017-02-21] (AVG Netherlands B.V.)
S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [521216 2008-01-21] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 14:03 - 2017-07-15 14:04 - 00021692 _____ C:\Users\philippe\Downloads\FRST.txt
2017-07-15 14:01 - 2017-07-15 14:03 - 00000000 ____D C:\FRST
2017-07-15 14:00 - 2017-07-15 14:01 - 01780736 _____ (Farbar) C:\Users\philippe\Downloads\FRST.exe
2017-07-14 09:52 - 2017-07-14 09:52 - 00008330 _____ C:\Users\philippe\Desktop\RKreport[0]_D_07142017_095215.txt
2017-07-14 09:52 - 2017-07-14 09:52 - 00008295 _____ C:\Users\philippe\Desktop\RKreport[0]_S_07142017_095201.txt
2017-07-06 11:46 - 2017-07-06 11:46 - 00304400 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 14:00 - 2016-11-27 13:48 - 00000000 ____D C:\Users\philippe\AppData\LocalLow\Mozilla
2017-07-15 13:44 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-15 13:44 - 2006-11-02 14:47 - 00003344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-15 12:43 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\tracing
2017-07-15 11:51 - 2008-01-21 10:41 - 01738676 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-15 11:51 - 2008-01-21 10:40 - 00815362 _____ C:\Windows\system32\perfh00C.dat
2017-07-15 11:51 - 2008-01-21 10:40 - 00174440 _____ C:\Windows\system32\perfc00C.dat
2017-07-15 11:51 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\inf
2017-07-15 11:45 - 2015-09-19 08:48 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2017-07-15 11:45 - 2011-07-12 19:11 - 00000000 _____ C:\Windows\system32\LogConfigTemp.xml
2017-07-15 11:45 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-07-15 11:44 - 2011-07-12 19:04 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-15 11:44 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-14 19:08 - 2011-08-19 19:35 - 00000012 _____ C:\Windows\bthservsdp.dat
2017-07-14 19:08 - 2006-11-02 15:01 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-07-14 09:52 - 2014-06-16 19:02 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-07-14 09:46 - 2017-06-06 17:46 - 00262144 _____ C:\Users\UpdatusUser\ntuser.man
2017-07-14 09:43 - 2014-09-21 12:56 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-07-14 09:43 - 2014-09-21 12:56 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-07-14 09:43 - 2009-01-13 10:16 - 00000000 ____D C:\Windows\system32\Macromed
2017-07-08 14:31 - 2014-07-04 19:22 - 00000000 ____D C:\Users\philippe\AppData\Local\CrashDumps
2017-07-08 09:53 - 2015-05-27 12:34 - 00000000 ____D C:\Users\philippe\AppData\Local\Avg
2017-07-06 11:47 - 2017-06-03 09:36 - 00288728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgvmm.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00766728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00489416 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00195128 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStmXP.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00116344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00063280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00062528 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr.sys
2017-07-06 11:46 - 2017-06-03 09:36 - 00035264 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00270344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgblogx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00260616 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriverx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00151024 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidshx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00135872 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiskx.sys
2017-07-06 11:46 - 2017-06-03 09:35 - 00043992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbunivx.sys
2017-06-30 11:40 - 2016-11-26 15:10 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2017-06-30 11:40 - 2013-05-30 18:03 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-06-27 12:00 - 2017-06-03 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-06-27 12:00 - 2017-06-03 09:30 - 00000747 _____ C:\Users\Public\Desktop\AVG.lnk
==================== Fichiers à la racine de certains dossiers =======
2011-08-01 10:41 - 2016-08-26 13:44 - 0000448 _____ () C:\Users\philippe\AppData\Roaming\wklnhst.dat
2011-12-12 23:43 - 2012-03-29 14:15 - 0000680 _____ () C:\Users\philippe\AppData\Local\d3d9caps.dat
2011-07-16 16:03 - 2017-06-06 18:11 - 0037888 _____ () C:\Users\philippe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-08-11 10:31 - 2011-08-11 10:31 - 0000000 _____ () C:\Users\philippe\AppData\Local\{02C93451-AA40-4ABA-BD42-0770D0312EF3}
Certains fichiers dans TEMP:
====================
2017-06-27 12:23 - 2014-07-01 10:20 - 11719232 _____ (Foxit Corporation) C:\Users\philippe\AppData\Local\Temp\Foxit Reader Updater.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-15 11:52
==================== Fin de FRST.txt ============================