Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 17-09-2017 01
Exécuté par Jean-François (administrateur) sur PCCAZENAVES (19-09-2017 08:46:57)
Exécuté depuis C:\Users\Jean-François\desktop
Profils chargés: Jean-François (Profils disponibles: Jean-François & Téo & Félix & Fany)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\wsc_proxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Genius\ioCentre\gTaskBar.exe
(Spotify Ltd) C:\Users\Jean-François\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files\PC Sync\Voxsync.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
() C:\Genius\ioCentre\gMouseTask.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
() C:\Program Files\PC Sync\SyncManager.exe
() C:\Genius\ioCentre\gKbdTask.exe
() C:\Genius\ioCentre\gAutoPan.exe
() C:\Genius\ioCentre\gAutoScroll.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Genius\ioCentre\gZoom.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
() C:\Genius\ioCentre\gIMMgm.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Genius\ioCentre\gKbStatus.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\MyEpson Portal\mepService.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
() C:\Genius\ioCentre\gDeskMgm.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
() C:\Genius\ioCentre\gTaskSwitch.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
() C:\Genius\ioCentre\gKbdTask.exe
() C:\Genius\ioCentre\gZoom.exe
() C:\Genius\ioCentre\gKbStatus.exe
() C:\Genius\ioCentre\gTaskSwitch.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
(Microsoft Corporation) C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\MyEpson Portal\mep.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12336856 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [76304 2008-02-29] (Logitech, Inc.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [ioCentre] => C:\Genius\ioCentre\gTaskBar.exe [61440 2007-12-17] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [239856 2017-09-07] (AVAST Software)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [1053144 2017-06-07] (DivX, LLC)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\Run: [Spotify Web Helper] => C:\Users\Jean-François\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524848 2016-03-11] (Spotify Ltd)
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\Run: [Spotify] => C:\Users\Jean-François\AppData\Roaming\Spotify\Spotify.exe [6754928 2016-03-11] (Spotify Ltd)
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.3347.0416] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.3347.0416"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6003.0710] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6003.0710"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6006.0718] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6006.0718"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_1] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_1"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4724.0224] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4724.0224"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4726.0226] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4726.0226"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5849.0427] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5849.0427"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5860.0512] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5860.0512"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5907.0716"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5930.0814"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5951.0827] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5951.0827"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6201.1019] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6201.1019"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6281.1202] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6281.1202"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6302.0225] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6386.0412] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6386.0412"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6390.0509] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6390.0509"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {1e98e626-df05-11db-8a95-001921524c0f} - K:\LaunchU3.exe -a
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {7dbee6e1-f1b1-11db-9734-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {9cd4f315-e471-11de-8dd0-001921524c0f} - K:\LaunchU3.exe -a
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {ba3631d4-66ed-11df-a2da-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL tÉo.exE
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {ba3631e7-66ed-11df-a2da-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL tÉO.EXE
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {f4726ffa-3fca-11df-92fd-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL C3cIloI.EXe
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [879616 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...0c966feabec1\InprocServer32: [Default-shell32] ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...409d6c4515e9\InprocServer32: [Default-shell32] <==== ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\InprocServer32: [Default-pngfilt] <==== ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...A8F59079A8D5}\localserver32: <==== ATTENTION
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\ACER(N~1.SCR [187392 2006-10-19] ()
AppInit_DLLs: c:\progra~2\browse~1\251005~1.80\{c16c1~1\browse~1.dll => Pas de fichier
IFEO\acer.empowering.framework.supervisor.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\bonus.screenshotreader.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\eperformance.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\eprojmanager.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\eragent.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\evernote.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\evernoteclipper.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\fcconv.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\fcsettings.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\fcvideo.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\googleupdater.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\mcsettings.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\omnipage.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\scannerwizard.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\sprint.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\zune.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PC Sync.lnk [2015-11-29]
ShortcutTarget: PC Sync.lnk -> C:\Program Files\PC Sync\Voxsync.exe ()
Startup: C:\Users\Jean-François\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2012-12-16]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\Jean-François\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Moteur du Planificateur de tâches SolidWorks.lnk [2012-03-31]
ShortcutTarget: Moteur du Planificateur de tâches SolidWorks.lnk -> C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\swBOEngine.exe (Dassault Systèmes SolidWorks Corp.)
Startup: C:\Users\Jean-François\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winlogon.bat [2016-01-06] () <==== ATTENTION
Startup: C:\Users\Téo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk [2009-11-25]
ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe (Pas de fichier)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F02C6852-4A8E-4995-9A62-AA6655A76234}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FE54A482-2111-420E-80E4-D19D5973148A}: [DhcpNameServer] 172.20.10.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {6AC45107-CDC7-4418-A1A9-07A28D09CDBD} URL = hxxp://www.dailymotion.com/relevance/search/{searchTerms}/1
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=IE0004
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {B471E619-C9F0-4677-95A4-E1D12FAAE210} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {EC18D397-CFB8-4989-B38E-A8CF048141EB} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=amznsearch.fr.ms-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {f3b72d01-2629-481c-874d-02926e33dd7b} URL = hxxp://www.wibeez.com/meteo?search&q={searchTerms}
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-10-07] (RealPlayer)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-04-05] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2017-09-07] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files\Evernote\Evernote\EvernoteIE.dll [2013-01-10] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2011-05-13] (Microsoft Corporation)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-01] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-05] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0045-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
FireFox:
========
FF ProfilePath: C:\Users\Jean-François\AppData\Roaming\TomTom\HOME\Profiles\moe7lt4v.default [2012-02-21]
FF Extension: (Emulator) - C:\Users\Jean-François\AppData\Roaming\TomTom\HOME\Profiles\moe7lt4v.default\Extensions\Navcore.9.061.576030@tomtom.com [2012-02-12] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889 [2017-09-19]
FF user.js: detected! => C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\user.js [2017-07-02]
FF Homepage: Mozilla\Firefox\Profiles\e729pzes.default-1493812295889 -> hxxps://fr.yahoo.com/
FF Extension: (Pearltrees Extension) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\collector@broceliand.fr.xpi [2017-09-04]
FF Extension: (Avast SafePrice) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\sp@avast.com.xpi [2017-08-27]
FF Extension: (Avast Online Security) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\wrc@avast.com.xpi [2017-08-17]
FF Extension: (Adblock Plus) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-08]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-03] [non signé]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: (RealPlayer Browser Record Plugin) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-10-07] [non signé]
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{0153E448-190B-4987-BDE1-F256CADA672F}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [Pas de fichier]
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2017-06-06] (DivX, LLC)
FF Plugin: @google.com/npPicasa2,version=2.0.0 -> C:\Program Files\Picasa2\npPicasa2.dll [Pas de fichier]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-05] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2012-05-14] (Google)
FF Plugin: @real.com/nppl3260;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2012-10-07] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-13] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-13] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-78605812-1910118958-3960311001-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Jean-François\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-78605812-1910118958-3960311001-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Jean-François\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll [2009-11-14] (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npEModelPlugin.dll [2009-10-14] (Dassault Systèmes SolidWorks Corp.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll [2007-04-24] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll [2009-08-03] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2012-10-07] (RealPlayer)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
Chrome:
=======
CHR Profile: C:\Users\Jean-François\AppData\Local\Google\Chrome\User Data\Default [2017-09-19]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2011-11-01]
CHR HKU\S-1-5-21-78605812-1910118958-3960311001-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [leahdjjpjmnamomgpojikeapflgbmjab] -
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-09-17] (Adobe Systems Incorporated) [Fichier non signé]
S3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5830352 2017-09-07] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [275208 2017-09-07] (AVAST Software)
S3 CoordinatorServiceHost; C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [87336 2009-10-15] (Dassault Systèmes SolidWorks Corp.)
S4 eRecoveryService; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [45056 2006-12-08] (Acer Inc.) [Fichier non signé]
R2 hasplms; C:\Windows\system32\hasplms.exe [4608320 2014-11-27] (SafeNet Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2006-10-19] (Hewlett-Packard Company) [Fichier non signé]
R2 MyEpson Portal Service; C:\Program Files\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION)
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [143360 2005-01-21] () [Fichier non signé]
S3 SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2007-12-04] (SolidWorks) [Fichier non signé]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1731896 2014-01-28] (TuneUp Software)
S3 usprserv; C:\Windows\System32\svchost.exe [21504 2008-01-19] (Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [425304 2014-11-27] (SafeNet Inc.)
S3 Andbus; C:\Windows\System32\DRIVERS\lgandbus.sys [14336 2010-08-02] (LG Electronics Inc.)
S3 AndDiag; C:\Windows\System32\DRIVERS\lganddiag.sys [20864 2010-08-02] (LG Electronics Inc.)
S3 AndGps; C:\Windows\System32\DRIVERS\lgandgps.sys [19968 2010-08-02] (LG Electronics Inc.)
S3 ANDModem; C:\Windows\System32\DRIVERS\lgandmodem.sys [24960 2010-08-02] (LG Electronics Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [16640 2010-12-30] (Wondershare) [Fichier non signé]
R1 ASPI32; C:\Windows\system32\Drivers\ASPI32.sys [25244 2003-12-22] (Adaptec)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [267520 2017-09-07] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-09-07] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-09-07] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-09-07] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42856 2017-09-07] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [39784 2017-09-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [124952 2017-09-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [70112 2017-09-07] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70864 2017-09-07] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [773800 2017-09-07] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [500136 2017-09-07] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [202712 2017-09-07] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [296824 2017-09-07] (AVAST Software)
R3 gHidPnp; C:\Windows\System32\Drivers\gHidPnp.Sys [19456 2009-04-28] ()
S3 gMouPS2; C:\Windows\System32\DRIVERS\gMouPS2.sys [17408 2006-07-12] ( Mouse Upfilter Driver )
R3 gMouUsb; C:\Windows\System32\DRIVERS\gMouUsb.sys [11520 2009-03-04] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [609112 2014-11-27] (SafeNet Inc.)
R2 int15; C:\Acer\Empowering Technology\eRecovery\int15.sys [76584 2006-12-07] ()
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-07-29] (Initio Corporation)
R3 kxwdmdrv; C:\Windows\System32\drivers\kx.sys [607496 2009-09-18] (Eugene Gavrilov)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [34752 2010-07-08] (hxxp://libusb-win32.sourceforge.net)
R3 mmserv; C:\Windows\System32\DRIVERS\mm2001.sys [69760 2008-11-14] (GM Software) [Fichier non signé]
S3 NTIDrvr; C:\Windows\System32\DRIVERS\NTIDrvr.sys [6144 2006-12-14] (NewTech Infosystems, Inc.) [Fichier non signé]
S3 Ph3xIB32; C:\Windows\System32\DRIVERS\Ph3xIB32.sys [1083520 2006-11-02] (Philips Semiconductors GmbH)
S3 QCDonner; C:\Windows\System32\DRIVERS\LVCD.sys [474304 2004-04-26] (Logitech Inc.)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [58908 2009-07-27] (PowerISO Computing, Inc.) [Fichier non signé]
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [16128 2014-04-11] (Silicon Laboratories)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [67968 2014-04-11] (Silicon Laboratories)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-03-14] () [Fichier non signé]
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software)
S4 UBHelper; C:\Windows\system32\Drivers\UBHelper.sys [13952 2006-08-29] () [Fichier non signé]
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2014-07-28] (Apple, Inc.) [Fichier non signé]
U3 a1k0nd5e; C:\Windows\system32\Drivers\a1k0nd5e.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zéro octet Fichier/Dossier)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-09-19 08:45 - 2017-09-19 08:45 - 001795584 _____ (Farbar) C:\Users\Jean-François\Downloads\FRST(1).exe
2017-09-19 08:43 - 2017-09-19 08:51 - 000038224 _____ C:\Users\Jean-François\desktop\FRST.txt
2017-09-19 08:33 - 2017-09-19 08:33 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-09-19 08:31 - 2017-09-19 08:43 - 000000000 ____D C:\FRST
2017-09-19 08:28 - 2017-09-19 08:28 - 001795584 _____ (Farbar) C:\Users\Jean-François\desktop\FRST.exe
2017-09-19 07:58 - 2017-09-19 07:58 - 000001933 _____ C:\Users\Public\desktop\Google Chrome.lnk
2017-09-19 07:55 - 2017-09-19 07:55 - 001130328 _____ (Google Inc.) C:\Users\Jean-François\Downloads\ChromeSetup.exe
2017-09-19 06:14 - 2017-09-19 06:34 - 000000743 _____ C:\Users\Jean-François\desktop\ZHPDiag.lnk
2017-09-18 21:51 - 2017-09-18 21:51 - 000004748 _____ C:\Users\Jean-François\desktop\AdwCleaner[C0].txt
2017-09-18 08:30 - 2017-09-18 21:47 - 000000000 ____D C:\AdwCleaner
2017-09-18 08:29 - 2017-09-18 08:29 - 008182736 _____ (Malwarebytes) C:\Users\Jean-François\desktop\adwcleaner_7.0.2.1.exe
2017-09-18 08:20 - 2017-09-18 08:27 - 000002599 _____ C:\Users\Jean-François\desktop\ZHPCleaner.txt
2017-09-18 07:57 - 2017-09-18 07:57 - 000000748 _____ C:\Users\Jean-François\desktop\ZHPCleaner.lnk
2017-09-18 07:55 - 2017-09-18 07:55 - 002882432 _____ C:\Users\Jean-François\desktop\zhpcleaner_2017.9.13.157.exe
2017-09-17 22:04 - 2017-09-19 06:43 - 000287670 _____ C:\Users\Jean-François\desktop\ZHPDiag.txt
2017-09-17 20:46 - 2017-09-17 20:46 - 002840448 _____ C:\Users\Jean-François\desktop\zhpdiag_2017.9.13.157.exe
2017-09-17 20:36 - 2017-09-17 20:36 - 000000000 ___HD C:\$AV_ASW
2017-09-17 20:26 - 2017-09-19 06:35 - 000000000 ____D C:\Users\Jean-François\AppData\Local\ZHP
2017-09-17 20:10 - 2017-09-17 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2017-09-17 20:09 - 2017-09-17 20:09 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-17 17:55 - 2017-09-17 17:55 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2017-09-17 17:55 - 2017-09-17 17:55 - 000001997 _____ C:\Users\Public\desktop\Google Earth Pro.lnk
2017-09-08 17:41 - 2017-09-08 17:41 - 001376968 _____ (SeriousBit ) C:\Users\Jean-François\Downloads\UndeleteMyFilesSetup.exe
2017-09-08 17:35 - 2017-09-08 17:36 - 003462033 _____ C:\Users\Jean-François\Downloads\pci_filerecovery.exe
2017-09-08 17:25 - 2017-09-08 17:25 - 000000000 ____D C:\Users\Jean-François\AppData\Local\Wondershare
2017-09-08 17:25 - 2017-09-08 17:25 - 000000000 ____D C:\Program Files\Common Files\Wondershare
2017-09-08 17:24 - 2017-09-08 17:24 - 000001065 _____ C:\Users\Public\desktop\Wondershare Data Recovery.lnk
2017-09-08 17:24 - 2017-09-08 17:24 - 000000000 ____D C:\ProgramData\Wondershare
2017-09-08 17:24 - 2017-09-08 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-09-08 17:24 - 2017-09-08 17:24 - 000000000 ____D C:\Program Files\Wondershare
2017-09-08 17:23 - 2017-09-08 17:25 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2017-09-08 11:47 - 2017-09-08 11:47 - 000091893 _____ C:\Users\Jean-François\desktop\Thème mémoire Chloé Damiens.pdf
2017-09-08 08:24 - 2017-09-08 08:24 - 000986848 _____ C:\Users\Jean-François\Downloads\data-recovery_setup_full935.exe
2017-09-07 21:36 - 2017-09-07 21:36 - 000304816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-09-02 09:12 - 2017-09-02 09:12 - 000229580 _____ C:\Users\Jean-François\desktop\Convocation bureau du CDF 8 septembre 2017.pdf
2017-09-02 09:11 - 2017-09-02 09:11 - 000055939 _____ C:\Users\Jean-François\Downloads\OneDrive-2017-09-02.zip
2017-09-01 15:26 - 2017-09-19 08:45 - 000000000 _____ C:\Windows\system32\last.dump
2017-08-27 21:58 - 2017-08-27 21:58 - 000031309 _____ C:\Users\Jean-François\Downloads\Facture_FR20869039.pdf
2017-08-23 10:13 - 2017-08-24 12:07 - 000000000 ____D C:\Users\Jean-François\desktop\téo cocardes camus
2017-08-22 15:26 - 2017-08-22 15:26 - 000466895 _____ C:\Users\Jean-François\desktop\Sport Landes Santé semptembre 2017 version 3.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-09-19 08:24 - 2016-11-20 13:36 - 000000000 ____D C:\Users\Jean-François\AppData\LocalLow\Mozilla
2017-09-19 08:09 - 2006-11-02 17:48 - 000734384 _____ C:\Windows\system32\perfh00C.dat
2017-09-19 08:09 - 2006-11-02 17:48 - 000151398 _____ C:\Windows\system32\perfc00C.dat
2017-09-19 08:09 - 2006-11-02 13:18 - 000000000 ____D C:\Windows\inf
2017-09-19 08:09 - 2006-11-02 12:33 - 001650216 _____ C:\Windows\system32\PerfStringBackup.INI
2017-09-19 08:04 - 2006-11-02 15:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-09-19 08:04 - 2006-11-02 14:47 - 000003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-19 08:04 - 2006-11-02 14:47 - 000003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-19 08:03 - 2007-06-16 15:15 - 000000012 _____ C:\Windows\bthservsdp.dat
2017-09-19 08:03 - 2006-11-02 15:01 - 000032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-09-19 07:58 - 2016-02-09 19:38 - 000001945 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-19 06:36 - 2016-06-13 22:06 - 000000000 ____D C:\Users\Jean-François\AppData\Roaming\ZHP
2017-09-17 20:21 - 2008-02-27 10:44 - 000000000 ____D C:\Users\Jean-François\AppData\Roaming\DivX
2017-09-17 20:13 - 2010-06-23 18:11 - 000000000 ____D C:\ProgramData\DivX
2017-09-17 20:12 - 2008-02-20 08:20 - 000000000 ____D C:\Program Files\DivX
2017-09-17 20:11 - 2009-03-26 19:13 - 000000000 ____D C:\Program Files\Common Files\DivX Shared
2017-09-17 19:13 - 2015-01-09 23:53 - 000170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-09-17 18:57 - 2012-04-03 06:30 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-09-17 18:57 - 2011-06-07 07:05 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-09-17 18:57 - 2007-03-02 14:03 - 000000000 ____D C:\Windows\system32\Macromed
2017-09-17 18:55 - 2010-11-27 01:31 - 000000000 ____D C:\Program Files\QuickMediaConverter
2017-09-17 18:09 - 2007-03-02 14:16 - 000000000 ____D C:\Users\Jean-François\AppData\Local\Adobe
2017-09-17 18:00 - 2007-03-28 18:51 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-09-17 18:00 - 2007-03-28 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2017-09-17 18:00 - 2007-03-28 18:51 - 000000000 ____D C:\Program Files\Spybot - Search & Destroy
2017-09-17 17:52 - 2007-03-21 14:50 - 000000000 ____D C:\Program Files\Google
2017-09-10 09:50 - 2007-03-02 13:59 - 000199592 _____ C:\Users\Jean-François\AppData\Local\GDIPFONTCACHEV1.DAT
2017-09-10 09:47 - 2006-11-02 14:47 - 000611192 _____ C:\Windows\system32\FNTCACHE.DAT
2017-09-08 08:51 - 2007-03-02 13:57 - 000000000 ____D C:\Users\Jean-François
2017-09-08 08:41 - 2008-04-18 18:44 - 000000000 ____D C:\Windows\Minidump
2017-09-07 21:36 - 2017-03-12 11:21 - 000276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-09-07 21:36 - 2017-03-12 11:21 - 000267520 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-09-07 21:36 - 2017-03-12 11:21 - 000157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-09-07 21:36 - 2017-03-12 11:21 - 000050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-09-07 21:36 - 2016-03-22 20:55 - 000039784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-09-07 21:36 - 2015-09-24 08:49 - 000202712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStmXP.sys
2017-09-07 21:36 - 2014-04-25 10:17 - 000042856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-09-07 21:36 - 2013-03-16 22:38 - 000296824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-09-07 21:36 - 2013-03-16 22:38 - 000070864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-09-07 21:36 - 2011-06-04 13:53 - 000773800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-09-07 21:36 - 2008-04-18 13:36 - 000500136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-09-07 21:36 - 2007-03-04 22:07 - 000124952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-09-07 21:36 - 2007-03-04 22:07 - 000070112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2017-08-22 15:21 - 2007-03-21 14:51 - 000000000 ____D C:\Users\Jean-François\AppData\Local\Google
==================== Fichiers à la racine de certains dossiers =======
2013-10-25 07:56 - 2013-11-03 10:56 - 004188160 _____ () C:\Program Files\GUT1A58.tmp
2013-08-08 14:50 - 2013-08-08 15:44 - 004096000 _____ () C:\Program Files\GUT2CF.tmp
2013-10-05 04:24 - 2013-10-05 08:24 - 004096000 _____ () C:\Program Files\GUT3F19.tmp
2013-09-18 08:30 - 2013-09-18 09:14 - 004096000 _____ () C:\Program Files\GUT3FCE.tmp
2013-10-07 17:18 - 2013-10-07 18:53 - 004096000 _____ () C:\Program Files\GUT4D74.tmp
2013-10-05 14:14 - 2013-10-07 17:11 - 004096000 _____ () C:\Program Files\GUT8D32.tmp
2013-08-10 18:13 - 2013-08-10 18:16 - 004096000 _____ () C:\Program Files\GUT99C2.tmp
2013-10-05 08:34 - 2013-10-05 09:50 - 004096000 _____ () C:\Program Files\GUTC5BF.tmp
2007-06-14 08:10 - 2007-06-14 08:10 - 000001637 _____ () C:\Program Files\Paint.lnk
2007-09-14 07:10 - 2007-09-14 07:12 - 000000691 _____ () C:\Users\Jean-François\AppData\Roaming\DriveCalculator Preferences
2007-06-20 13:13 - 2007-06-20 13:13 - 000038441 _____ () C:\Users\Jean-François\AppData\Roaming\Microsoft Excel 97-2003.ADR
2009-06-14 10:32 - 2009-06-14 10:32 - 000000760 _____ () C:\Users\Jean-François\AppData\Roaming\setup_ldm.iss
2011-02-27 22:11 - 2011-02-27 22:11 - 000038451 _____ () C:\Users\Jean-François\AppData\Roaming\Valeurs séparées par une virgule (Windows).ADR
2011-08-21 16:48 - 2011-08-21 16:48 - 000017472 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\1eaadjc.dll
2011-08-21 16:48 - 2011-08-21 17:04 - 000018724 ____T () C:\Users\Jean-François\AppData\Roaming\Microsoft\bass.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 001758720 ____T () C:\Users\Jean-François\AppData\Roaming\Microsoft\engine_vx.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000016448 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\kfgresk.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000014456 ____T () C:\Users\Jean-François\AppData\Roaming\Microsoft\mjcriu.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000012352 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\peaadje.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000029784 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\Jean-François\AppData\Roaming\Microsoft\qwadjb.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000017472 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\rsaadjd.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000099896 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\~DFK1d18261.tmp
2011-08-21 16:48 - 2011-08-21 17:04 - 000099896 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\~DFK1dfd429.tmp
2007-03-31 19:43 - 2007-03-31 19:43 - 001247461 _____ () C:\Users\Jean-François\AppData\Local\100_1821.jpg
2008-11-01 18:15 - 2012-02-28 00:42 - 000000680 _____ () C:\Users\Jean-François\AppData\Local\d3d9caps.dat
2007-03-22 20:30 - 2012-02-27 22:54 - 000143872 _____ () C:\Users\Jean-François\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-12-09 15:50 - 2009-12-09 15:50 - 000000101 _____ () C:\Users\Jean-François\AppData\Local\fusioncache.dat
2013-01-15 22:58 - 2013-01-15 22:58 - 000000036 _____ () C:\Users\Jean-François\AppData\Local\housecall.guid.cache
2009-11-13 08:34 - 2009-11-13 08:34 - 000000032 _____ () C:\Users\Jean-François\AppData\Local\xobni_installer_updater.log
2016-03-22 20:47 - 2016-03-22 20:47 - 000000000 _____ () C:\Users\Jean-François\AppData\Local\{54A76038-B633-4073-B061-6C8E9DA31091}
2016-01-09 12:35 - 2016-01-09 12:35 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
Fichiers à déplacer ou supprimer:
====================
C:\Users\Jean-François\companion9xInstall_v1.26.exe
C:\Users\Jean-François\companion9xInstall_v1.27.exe
C:\Users\Jean-François\companion9xInstall_v1.52.exe
C:\Users\Jean-François\eePeInstall.exe
C:\Users\Jean-François\ZHPCleaner.exe
Certains fichiers dans TEMP:
====================
2009-03-11 06:42 - 2009-06-14 10:32 - 000062728 _____ () C:\Users\Fany\AppData\Local\Temp\sp_setpoint.exe
2008-02-07 18:58 - 2008-02-07 18:58 - 000004608 _____ () C:\Users\Téo\AppData\Local\Temp\i4jdel0.exe
2008-01-16 16:27 - 2007-09-24 18:13 - 000045450 _____ (Ankama Games) C:\Users\Téo\AppData\Local\Temp\uninstall.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
C:\Windows\system32\drivers\sptd.sys -> MD5 = D41D8CD98F00B204E9800998ECF8427E (0-byte MD5) <======= ATTENTION
Exécuté par Jean-François (administrateur) sur PCCAZENAVES (19-09-2017 08:46:57)
Exécuté depuis C:\Users\Jean-François\desktop
Profils chargés: Jean-François (Profils disponibles: Jean-François & Téo & Félix & Fany)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\wsc_proxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Genius\ioCentre\gTaskBar.exe
(Spotify Ltd) C:\Users\Jean-François\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files\PC Sync\Voxsync.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
() C:\Genius\ioCentre\gMouseTask.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
() C:\Program Files\PC Sync\SyncManager.exe
() C:\Genius\ioCentre\gKbdTask.exe
() C:\Genius\ioCentre\gAutoPan.exe
() C:\Genius\ioCentre\gAutoScroll.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Genius\ioCentre\gZoom.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
() C:\Genius\ioCentre\gIMMgm.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Genius\ioCentre\gKbStatus.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\MyEpson Portal\mepService.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
() C:\Genius\ioCentre\gDeskMgm.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
() C:\Genius\ioCentre\gTaskSwitch.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
() C:\Genius\ioCentre\gKbdTask.exe
() C:\Genius\ioCentre\gZoom.exe
() C:\Genius\ioCentre\gKbStatus.exe
() C:\Genius\ioCentre\gTaskSwitch.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
(Microsoft Corporation) C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(SEIKO EPSON CORPORATION) C:\Program Files\epson\MyEpson Portal\mep.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12336856 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [76304 2008-02-29] (Logitech, Inc.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [ioCentre] => C:\Genius\ioCentre\gTaskBar.exe [61440 2007-12-17] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [239856 2017-09-07] (AVAST Software)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [1053144 2017-06-07] (DivX, LLC)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\Run: [Spotify Web Helper] => C:\Users\Jean-François\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524848 2016-03-11] (Spotify Ltd)
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\Run: [Spotify] => C:\Users\Jean-François\AppData\Roaming\Spotify\Spotify.exe [6754928 2016-03-11] (Spotify Ltd)
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.3347.0416] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.3347.0416"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.4111.0525"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6003.0710] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6003.0710"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6006.0718] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6006.0718"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_1] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112_1"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4724.0224] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4724.0224"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4726.0226] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.4726.0226"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5849.0427] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5849.0427"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5860.0512] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5860.0512"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5907.0716"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5930.0814"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5951.0827] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.5951.0827"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6201.1019] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6201.1019"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6281.1202] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6281.1202"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6302.0225] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6386.0412] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6386.0412"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\RunOnce: [Uninstall C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6390.0509] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jean-François\AppData\Local\Microsoft\OneDrive\17.3.6390.0509"
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {1e98e626-df05-11db-8a95-001921524c0f} - K:\LaunchU3.exe -a
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {7dbee6e1-f1b1-11db-9734-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {9cd4f315-e471-11de-8dd0-001921524c0f} - K:\LaunchU3.exe -a
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {ba3631d4-66ed-11df-a2da-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL tÉo.exE
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {ba3631e7-66ed-11df-a2da-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL tÉO.EXE
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\MountPoints2: {f4726ffa-3fca-11df-92fd-001921524c0f} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL C3cIloI.EXe
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [879616 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...0c966feabec1\InprocServer32: [Default-shell32] ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...409d6c4515e9\InprocServer32: [Default-shell32] <==== ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...\InprocServer32: [Default-pngfilt] <==== ATTENTION
HKU\S-1-5-21-78605812-1910118958-3960311001-1000\...A8F59079A8D5}\localserver32: <==== ATTENTION
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\ACER(N~1.SCR [187392 2006-10-19] ()
AppInit_DLLs: c:\progra~2\browse~1\251005~1.80\{c16c1~1\browse~1.dll => Pas de fichier
IFEO\acer.empowering.framework.supervisor.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\bonus.screenshotreader.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\eperformance.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\eprojmanager.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\eragent.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\evernote.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\evernoteclipper.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\fcconv.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\fcsettings.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\fcvideo.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\googleupdater.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\mcsettings.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\omnipage.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\scannerwizard.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\sprint.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\zune.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PC Sync.lnk [2015-11-29]
ShortcutTarget: PC Sync.lnk -> C:\Program Files\PC Sync\Voxsync.exe ()
Startup: C:\Users\Jean-François\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2012-12-16]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
Startup: C:\Users\Jean-François\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Moteur du Planificateur de tâches SolidWorks.lnk [2012-03-31]
ShortcutTarget: Moteur du Planificateur de tâches SolidWorks.lnk -> C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\swBOEngine.exe (Dassault Systèmes SolidWorks Corp.)
Startup: C:\Users\Jean-François\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\winlogon.bat [2016-01-06] () <==== ATTENTION
Startup: C:\Users\Téo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk [2009-11-25]
ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe (Pas de fichier)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F02C6852-4A8E-4995-9A62-AA6655A76234}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FE54A482-2111-420E-80E4-D19D5973148A}: [DhcpNameServer] 172.20.10.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {6AC45107-CDC7-4418-A1A9-07A28D09CDBD} URL = hxxp://www.dailymotion.com/relevance/search/{searchTerms}/1
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=IE0004
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {B471E619-C9F0-4677-95A4-E1D12FAAE210} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {EC18D397-CFB8-4989-B38E-A8CF048141EB} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=amznsearch.fr.ms-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-78605812-1910118958-3960311001-1000 -> {f3b72d01-2629-481c-874d-02926e33dd7b} URL = hxxp://www.wibeez.com/meteo?search&q={searchTerms}
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-10-07] (RealPlayer)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-04-05] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2017-09-07] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files\Evernote\Evernote\EvernoteIE.dll [2013-01-10] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2011-05-13] (Microsoft Corporation)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-01] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-05] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26] (SEIKO EPSON CORPORATION)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0045-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_45-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
FireFox:
========
FF ProfilePath: C:\Users\Jean-François\AppData\Roaming\TomTom\HOME\Profiles\moe7lt4v.default [2012-02-21]
FF Extension: (Emulator) - C:\Users\Jean-François\AppData\Roaming\TomTom\HOME\Profiles\moe7lt4v.default\Extensions\Navcore.9.061.576030@tomtom.com [2012-02-12] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889 [2017-09-19]
FF user.js: detected! => C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\user.js [2017-07-02]
FF Homepage: Mozilla\Firefox\Profiles\e729pzes.default-1493812295889 -> hxxps://fr.yahoo.com/
FF Extension: (Pearltrees Extension) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\collector@broceliand.fr.xpi [2017-09-04]
FF Extension: (Avast SafePrice) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\sp@avast.com.xpi [2017-08-27]
FF Extension: (Avast Online Security) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\wrc@avast.com.xpi [2017-08-17]
FF Extension: (Adblock Plus) - C:\Users\Jean-François\AppData\Roaming\Mozilla\Firefox\Profiles\e729pzes.default-1493812295889\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-08]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-03] [non signé]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: (RealPlayer Browser Record Plugin) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-10-07] [non signé]
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{0153E448-190B-4987-BDE1-F256CADA672F}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [Pas de fichier]
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2017-06-06] (DivX, LLC)
FF Plugin: @google.com/npPicasa2,version=2.0.0 -> C:\Program Files\Picasa2\npPicasa2.dll [Pas de fichier]
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-05] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll [2012-05-14] (Google)
FF Plugin: @real.com/nppl3260;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=15.0.6.14 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2012-10-07] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-13] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-13] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-78605812-1910118958-3960311001-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Jean-François\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-78605812-1910118958-3960311001-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Jean-François\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll [2009-11-14] (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npEModelPlugin.dll [2009-10-14] (Dassault Systèmes SolidWorks Corp.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll [2007-04-24] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll [2009-08-03] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2012-10-07] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2012-10-07] (RealPlayer)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
Chrome:
=======
CHR Profile: C:\Users\Jean-François\AppData\Local\Google\Chrome\User Data\Default [2017-09-19]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2011-11-01]
CHR HKU\S-1-5-21-78605812-1910118958-3960311001-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [leahdjjpjmnamomgpojikeapflgbmjab] -
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-09-17] (Adobe Systems Incorporated) [Fichier non signé]
S3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5830352 2017-09-07] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [275208 2017-09-07] (AVAST Software)
S3 CoordinatorServiceHost; C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [87336 2009-10-15] (Dassault Systèmes SolidWorks Corp.)
S4 eRecoveryService; C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe [45056 2006-12-08] (Acer Inc.) [Fichier non signé]
R2 hasplms; C:\Windows\system32\hasplms.exe [4608320 2014-11-27] (SafeNet Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2006-10-19] (Hewlett-Packard Company) [Fichier non signé]
R2 MyEpson Portal Service; C:\Program Files\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION)
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [143360 2005-01-21] () [Fichier non signé]
S3 SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2007-12-04] (SolidWorks) [Fichier non signé]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1731896 2014-01-28] (TuneUp Software)
S3 usprserv; C:\Windows\System32\svchost.exe [21504 2008-01-19] (Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [425304 2014-11-27] (SafeNet Inc.)
S3 Andbus; C:\Windows\System32\DRIVERS\lgandbus.sys [14336 2010-08-02] (LG Electronics Inc.)
S3 AndDiag; C:\Windows\System32\DRIVERS\lganddiag.sys [20864 2010-08-02] (LG Electronics Inc.)
S3 AndGps; C:\Windows\System32\DRIVERS\lgandgps.sys [19968 2010-08-02] (LG Electronics Inc.)
S3 ANDModem; C:\Windows\System32\DRIVERS\lgandmodem.sys [24960 2010-08-02] (LG Electronics Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [16640 2010-12-30] (Wondershare) [Fichier non signé]
R1 ASPI32; C:\Windows\system32\Drivers\ASPI32.sys [25244 2003-12-22] (Adaptec)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [267520 2017-09-07] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-09-07] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-09-07] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-09-07] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42856 2017-09-07] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [39784 2017-09-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [124952 2017-09-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [70112 2017-09-07] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70864 2017-09-07] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [773800 2017-09-07] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [500136 2017-09-07] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [202712 2017-09-07] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [296824 2017-09-07] (AVAST Software)
R3 gHidPnp; C:\Windows\System32\Drivers\gHidPnp.Sys [19456 2009-04-28] ()
S3 gMouPS2; C:\Windows\System32\DRIVERS\gMouPS2.sys [17408 2006-07-12] ( Mouse Upfilter Driver )
R3 gMouUsb; C:\Windows\System32\DRIVERS\gMouUsb.sys [11520 2009-03-04] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [609112 2014-11-27] (SafeNet Inc.)
R2 int15; C:\Acer\Empowering Technology\eRecovery\int15.sys [76584 2006-12-07] ()
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-07-29] (Initio Corporation)
R3 kxwdmdrv; C:\Windows\System32\drivers\kx.sys [607496 2009-09-18] (Eugene Gavrilov)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [34752 2010-07-08] (hxxp://libusb-win32.sourceforge.net)
R3 mmserv; C:\Windows\System32\DRIVERS\mm2001.sys [69760 2008-11-14] (GM Software) [Fichier non signé]
S3 NTIDrvr; C:\Windows\System32\DRIVERS\NTIDrvr.sys [6144 2006-12-14] (NewTech Infosystems, Inc.) [Fichier non signé]
S3 Ph3xIB32; C:\Windows\System32\DRIVERS\Ph3xIB32.sys [1083520 2006-11-02] (Philips Semiconductors GmbH)
S3 QCDonner; C:\Windows\System32\DRIVERS\LVCD.sys [474304 2004-04-26] (Logitech Inc.)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [58908 2009-07-27] (PowerISO Computing, Inc.) [Fichier non signé]
S3 silabenm; C:\Windows\System32\DRIVERS\silabenm.sys [16128 2014-04-11] (Silicon Laboratories)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [67968 2014-04-11] (Silicon Laboratories)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-03-14] () [Fichier non signé]
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software)
S4 UBHelper; C:\Windows\system32\Drivers\UBHelper.sys [13952 2006-08-29] () [Fichier non signé]
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2014-07-28] (Apple, Inc.) [Fichier non signé]
U3 a1k0nd5e; C:\Windows\system32\Drivers\a1k0nd5e.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zéro octet Fichier/Dossier)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-09-19 08:45 - 2017-09-19 08:45 - 001795584 _____ (Farbar) C:\Users\Jean-François\Downloads\FRST(1).exe
2017-09-19 08:43 - 2017-09-19 08:51 - 000038224 _____ C:\Users\Jean-François\desktop\FRST.txt
2017-09-19 08:33 - 2017-09-19 08:33 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-09-19 08:31 - 2017-09-19 08:43 - 000000000 ____D C:\FRST
2017-09-19 08:28 - 2017-09-19 08:28 - 001795584 _____ (Farbar) C:\Users\Jean-François\desktop\FRST.exe
2017-09-19 07:58 - 2017-09-19 07:58 - 000001933 _____ C:\Users\Public\desktop\Google Chrome.lnk
2017-09-19 07:55 - 2017-09-19 07:55 - 001130328 _____ (Google Inc.) C:\Users\Jean-François\Downloads\ChromeSetup.exe
2017-09-19 06:14 - 2017-09-19 06:34 - 000000743 _____ C:\Users\Jean-François\desktop\ZHPDiag.lnk
2017-09-18 21:51 - 2017-09-18 21:51 - 000004748 _____ C:\Users\Jean-François\desktop\AdwCleaner[C0].txt
2017-09-18 08:30 - 2017-09-18 21:47 - 000000000 ____D C:\AdwCleaner
2017-09-18 08:29 - 2017-09-18 08:29 - 008182736 _____ (Malwarebytes) C:\Users\Jean-François\desktop\adwcleaner_7.0.2.1.exe
2017-09-18 08:20 - 2017-09-18 08:27 - 000002599 _____ C:\Users\Jean-François\desktop\ZHPCleaner.txt
2017-09-18 07:57 - 2017-09-18 07:57 - 000000748 _____ C:\Users\Jean-François\desktop\ZHPCleaner.lnk
2017-09-18 07:55 - 2017-09-18 07:55 - 002882432 _____ C:\Users\Jean-François\desktop\zhpcleaner_2017.9.13.157.exe
2017-09-17 22:04 - 2017-09-19 06:43 - 000287670 _____ C:\Users\Jean-François\desktop\ZHPDiag.txt
2017-09-17 20:46 - 2017-09-17 20:46 - 002840448 _____ C:\Users\Jean-François\desktop\zhpdiag_2017.9.13.157.exe
2017-09-17 20:36 - 2017-09-17 20:36 - 000000000 ___HD C:\$AV_ASW
2017-09-17 20:26 - 2017-09-19 06:35 - 000000000 ____D C:\Users\Jean-François\AppData\Local\ZHP
2017-09-17 20:10 - 2017-09-17 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2017-09-17 20:09 - 2017-09-17 20:09 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-17 17:55 - 2017-09-17 17:55 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2017-09-17 17:55 - 2017-09-17 17:55 - 000001997 _____ C:\Users\Public\desktop\Google Earth Pro.lnk
2017-09-08 17:41 - 2017-09-08 17:41 - 001376968 _____ (SeriousBit ) C:\Users\Jean-François\Downloads\UndeleteMyFilesSetup.exe
2017-09-08 17:35 - 2017-09-08 17:36 - 003462033 _____ C:\Users\Jean-François\Downloads\pci_filerecovery.exe
2017-09-08 17:25 - 2017-09-08 17:25 - 000000000 ____D C:\Users\Jean-François\AppData\Local\Wondershare
2017-09-08 17:25 - 2017-09-08 17:25 - 000000000 ____D C:\Program Files\Common Files\Wondershare
2017-09-08 17:24 - 2017-09-08 17:24 - 000001065 _____ C:\Users\Public\desktop\Wondershare Data Recovery.lnk
2017-09-08 17:24 - 2017-09-08 17:24 - 000000000 ____D C:\ProgramData\Wondershare
2017-09-08 17:24 - 2017-09-08 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-09-08 17:24 - 2017-09-08 17:24 - 000000000 ____D C:\Program Files\Wondershare
2017-09-08 17:23 - 2017-09-08 17:25 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2017-09-08 11:47 - 2017-09-08 11:47 - 000091893 _____ C:\Users\Jean-François\desktop\Thème mémoire Chloé Damiens.pdf
2017-09-08 08:24 - 2017-09-08 08:24 - 000986848 _____ C:\Users\Jean-François\Downloads\data-recovery_setup_full935.exe
2017-09-07 21:36 - 2017-09-07 21:36 - 000304816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-09-02 09:12 - 2017-09-02 09:12 - 000229580 _____ C:\Users\Jean-François\desktop\Convocation bureau du CDF 8 septembre 2017.pdf
2017-09-02 09:11 - 2017-09-02 09:11 - 000055939 _____ C:\Users\Jean-François\Downloads\OneDrive-2017-09-02.zip
2017-09-01 15:26 - 2017-09-19 08:45 - 000000000 _____ C:\Windows\system32\last.dump
2017-08-27 21:58 - 2017-08-27 21:58 - 000031309 _____ C:\Users\Jean-François\Downloads\Facture_FR20869039.pdf
2017-08-23 10:13 - 2017-08-24 12:07 - 000000000 ____D C:\Users\Jean-François\desktop\téo cocardes camus
2017-08-22 15:26 - 2017-08-22 15:26 - 000466895 _____ C:\Users\Jean-François\desktop\Sport Landes Santé semptembre 2017 version 3.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-09-19 08:24 - 2016-11-20 13:36 - 000000000 ____D C:\Users\Jean-François\AppData\LocalLow\Mozilla
2017-09-19 08:09 - 2006-11-02 17:48 - 000734384 _____ C:\Windows\system32\perfh00C.dat
2017-09-19 08:09 - 2006-11-02 17:48 - 000151398 _____ C:\Windows\system32\perfc00C.dat
2017-09-19 08:09 - 2006-11-02 13:18 - 000000000 ____D C:\Windows\inf
2017-09-19 08:09 - 2006-11-02 12:33 - 001650216 _____ C:\Windows\system32\PerfStringBackup.INI
2017-09-19 08:04 - 2006-11-02 15:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-09-19 08:04 - 2006-11-02 14:47 - 000003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-09-19 08:04 - 2006-11-02 14:47 - 000003296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-09-19 08:03 - 2007-06-16 15:15 - 000000012 _____ C:\Windows\bthservsdp.dat
2017-09-19 08:03 - 2006-11-02 15:01 - 000032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-09-19 07:58 - 2016-02-09 19:38 - 000001945 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-19 06:36 - 2016-06-13 22:06 - 000000000 ____D C:\Users\Jean-François\AppData\Roaming\ZHP
2017-09-17 20:21 - 2008-02-27 10:44 - 000000000 ____D C:\Users\Jean-François\AppData\Roaming\DivX
2017-09-17 20:13 - 2010-06-23 18:11 - 000000000 ____D C:\ProgramData\DivX
2017-09-17 20:12 - 2008-02-20 08:20 - 000000000 ____D C:\Program Files\DivX
2017-09-17 20:11 - 2009-03-26 19:13 - 000000000 ____D C:\Program Files\Common Files\DivX Shared
2017-09-17 19:13 - 2015-01-09 23:53 - 000170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-09-17 18:57 - 2012-04-03 06:30 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-09-17 18:57 - 2011-06-07 07:05 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-09-17 18:57 - 2007-03-02 14:03 - 000000000 ____D C:\Windows\system32\Macromed
2017-09-17 18:55 - 2010-11-27 01:31 - 000000000 ____D C:\Program Files\QuickMediaConverter
2017-09-17 18:09 - 2007-03-02 14:16 - 000000000 ____D C:\Users\Jean-François\AppData\Local\Adobe
2017-09-17 18:00 - 2007-03-28 18:51 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-09-17 18:00 - 2007-03-28 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
2017-09-17 18:00 - 2007-03-28 18:51 - 000000000 ____D C:\Program Files\Spybot - Search & Destroy
2017-09-17 17:52 - 2007-03-21 14:50 - 000000000 ____D C:\Program Files\Google
2017-09-10 09:50 - 2007-03-02 13:59 - 000199592 _____ C:\Users\Jean-François\AppData\Local\GDIPFONTCACHEV1.DAT
2017-09-10 09:47 - 2006-11-02 14:47 - 000611192 _____ C:\Windows\system32\FNTCACHE.DAT
2017-09-08 08:51 - 2007-03-02 13:57 - 000000000 ____D C:\Users\Jean-François
2017-09-08 08:41 - 2008-04-18 18:44 - 000000000 ____D C:\Windows\Minidump
2017-09-07 21:36 - 2017-03-12 11:21 - 000276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-09-07 21:36 - 2017-03-12 11:21 - 000267520 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-09-07 21:36 - 2017-03-12 11:21 - 000157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-09-07 21:36 - 2017-03-12 11:21 - 000050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-09-07 21:36 - 2016-03-22 20:55 - 000039784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-09-07 21:36 - 2015-09-24 08:49 - 000202712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStmXP.sys
2017-09-07 21:36 - 2014-04-25 10:17 - 000042856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-09-07 21:36 - 2013-03-16 22:38 - 000296824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-09-07 21:36 - 2013-03-16 22:38 - 000070864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-09-07 21:36 - 2011-06-04 13:53 - 000773800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-09-07 21:36 - 2008-04-18 13:36 - 000500136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-09-07 21:36 - 2007-03-04 22:07 - 000124952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-09-07 21:36 - 2007-03-04 22:07 - 000070112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2017-08-22 15:21 - 2007-03-21 14:51 - 000000000 ____D C:\Users\Jean-François\AppData\Local\Google
==================== Fichiers à la racine de certains dossiers =======
2013-10-25 07:56 - 2013-11-03 10:56 - 004188160 _____ () C:\Program Files\GUT1A58.tmp
2013-08-08 14:50 - 2013-08-08 15:44 - 004096000 _____ () C:\Program Files\GUT2CF.tmp
2013-10-05 04:24 - 2013-10-05 08:24 - 004096000 _____ () C:\Program Files\GUT3F19.tmp
2013-09-18 08:30 - 2013-09-18 09:14 - 004096000 _____ () C:\Program Files\GUT3FCE.tmp
2013-10-07 17:18 - 2013-10-07 18:53 - 004096000 _____ () C:\Program Files\GUT4D74.tmp
2013-10-05 14:14 - 2013-10-07 17:11 - 004096000 _____ () C:\Program Files\GUT8D32.tmp
2013-08-10 18:13 - 2013-08-10 18:16 - 004096000 _____ () C:\Program Files\GUT99C2.tmp
2013-10-05 08:34 - 2013-10-05 09:50 - 004096000 _____ () C:\Program Files\GUTC5BF.tmp
2007-06-14 08:10 - 2007-06-14 08:10 - 000001637 _____ () C:\Program Files\Paint.lnk
2007-09-14 07:10 - 2007-09-14 07:12 - 000000691 _____ () C:\Users\Jean-François\AppData\Roaming\DriveCalculator Preferences
2007-06-20 13:13 - 2007-06-20 13:13 - 000038441 _____ () C:\Users\Jean-François\AppData\Roaming\Microsoft Excel 97-2003.ADR
2009-06-14 10:32 - 2009-06-14 10:32 - 000000760 _____ () C:\Users\Jean-François\AppData\Roaming\setup_ldm.iss
2011-02-27 22:11 - 2011-02-27 22:11 - 000038451 _____ () C:\Users\Jean-François\AppData\Roaming\Valeurs séparées par une virgule (Windows).ADR
2011-08-21 16:48 - 2011-08-21 16:48 - 000017472 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\1eaadjc.dll
2011-08-21 16:48 - 2011-08-21 17:04 - 000018724 ____T () C:\Users\Jean-François\AppData\Roaming\Microsoft\bass.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 001758720 ____T () C:\Users\Jean-François\AppData\Roaming\Microsoft\engine_vx.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000016448 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\kfgresk.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000014456 ____T () C:\Users\Jean-François\AppData\Roaming\Microsoft\mjcriu.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000012352 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\peaadje.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000029784 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\Jean-François\AppData\Roaming\Microsoft\qwadjb.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000017472 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\rsaadjd.dll
2011-08-21 16:48 - 2011-08-21 16:48 - 000099896 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\~DFK1d18261.tmp
2011-08-21 16:48 - 2011-08-21 17:04 - 000099896 ____T (Un4seen Developments) C:\Users\Jean-François\AppData\Roaming\Microsoft\~DFK1dfd429.tmp
2007-03-31 19:43 - 2007-03-31 19:43 - 001247461 _____ () C:\Users\Jean-François\AppData\Local\100_1821.jpg
2008-11-01 18:15 - 2012-02-28 00:42 - 000000680 _____ () C:\Users\Jean-François\AppData\Local\d3d9caps.dat
2007-03-22 20:30 - 2012-02-27 22:54 - 000143872 _____ () C:\Users\Jean-François\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-12-09 15:50 - 2009-12-09 15:50 - 000000101 _____ () C:\Users\Jean-François\AppData\Local\fusioncache.dat
2013-01-15 22:58 - 2013-01-15 22:58 - 000000036 _____ () C:\Users\Jean-François\AppData\Local\housecall.guid.cache
2009-11-13 08:34 - 2009-11-13 08:34 - 000000032 _____ () C:\Users\Jean-François\AppData\Local\xobni_installer_updater.log
2016-03-22 20:47 - 2016-03-22 20:47 - 000000000 _____ () C:\Users\Jean-François\AppData\Local\{54A76038-B633-4073-B061-6C8E9DA31091}
2016-01-09 12:35 - 2016-01-09 12:35 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
Fichiers à déplacer ou supprimer:
====================
C:\Users\Jean-François\companion9xInstall_v1.26.exe
C:\Users\Jean-François\companion9xInstall_v1.27.exe
C:\Users\Jean-François\companion9xInstall_v1.52.exe
C:\Users\Jean-François\eePeInstall.exe
C:\Users\Jean-François\ZHPCleaner.exe
Certains fichiers dans TEMP:
====================
2009-03-11 06:42 - 2009-06-14 10:32 - 000062728 _____ () C:\Users\Fany\AppData\Local\Temp\sp_setpoint.exe
2008-02-07 18:58 - 2008-02-07 18:58 - 000004608 _____ () C:\Users\Téo\AppData\Local\Temp\i4jdel0.exe
2008-01-16 16:27 - 2007-09-24 18:13 - 000045450 _____ (Ankama Games) C:\Users\Téo\AppData\Local\Temp\uninstall.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
C:\Windows\system32\drivers\sptd.sys -> MD5 = D41D8CD98F00B204E9800998ECF8427E (0-byte MD5) <======= ATTENTION