Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2017
Exécuté par Romain (administrateur) sur ROMAIN-PC (11-10-2017 05:43:24)
Exécuté depuis C:\Users\Romain\Desktop
Profils chargés: Romain (Profils disponibles: Romain)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
() C:\Program Files (x86)\Real\RealPlayer\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Western Digital) C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Real\RealDownloader\downloader2.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealDownloader\realdownloader264.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-08] (AVAST Software)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [wifimouseremote] => C:\Program Files (x86)\Wifi Mouse Remote\WifiMouseRemote.exe
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [352648 2017-03-15] (RealNetworks, Inc.)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\Real\RealDownloader\downloader2.exe [738544 2017-05-05] ()
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [87552 2017-08-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\Run: [MouseServer] => "C:\Program Files (x86)\MouseServer\MouseServer.exe"
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\MountPoints2: M - M:\formation.exe
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\MountPoints2: {4b2a3619-f918-11e5-a680-00241dcdea02} - "J:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\MountPoints2: {fd524b7a-e081-11e5-bce9-806e6f6e6963} - "J:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3293232227-77822436-125339290-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\Plane9.sCr
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2017-03-15]
ShortcutTarget: RealTimes.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk [2017-10-09]
ShortcutTarget: WDDMStatus.lnk -> C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe (WDC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDSmartWare.lnk [2017-10-09]
ShortcutTarget: WDSmartWare.lnk -> C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe (Western Digital)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{411BD8A0-8B9D-4203-83F5-44BA5C8C8F1D}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKU\S-1-5-21-3293232227-77822436-125339290-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3293232227-77822436-125339290-1000 -> {616984A4-D3AE-48EB-9843-7A676876A8C7} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\program files (x86)\real\realplayer\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2017-03-02] (RealDownloader)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-10-08] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\program files (x86)\real\realplayer\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2017-03-02] (RealDownloader)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-10-08] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default [2017-10-11]
FF Extension: (Avira Browser Safety) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\abs@avira.com [2016-12-17]
FF Extension: (cacaoweb) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\cacaoweb@cacaoweb.org [2017-03-26] [non signé]
FF Extension: (Avast SafePrice) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\sp@avast.com.xpi [2017-09-14]
FF Extension: (Avast Online Security) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\wrc@avast.com.xpi [2017-09-14]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.1.7.337 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [2017-03-15] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.7.337 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [2017-03-15] (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
Chrome:
=======
CHR NewTab: Default -> Not-active:"chrome-extension://oimpecblajnjcfioomfllikpcfphikbc/newtab/index.html"
CHR Profile: C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default [2017-10-11]
CHR Extension: (Photo Zoomer For Facebook) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\addibmjelefaholbfacfnekmojekodaf [2017-07-22]
CHR Extension: (SocialProtect) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\afkfmjcilodjiidicmbohjcmdlkglima [2016-03-21]
CHR Extension: (Google Docs) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-20]
CHR Extension: (Google Drive) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-20]
CHR Extension: (YouTube) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-20]
CHR Extension: (Verbatim Translatio) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\bobgnmijljonenlachekpkgikohcghon [2017-08-16]
CHR Extension: (Plan to Eat Recipe Clipper) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\cneicdnjajpaepkkgimoainnbhoannfj [2016-03-21]
CHR Extension: (Recherche Google) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-20]
CHR Extension: (Lookup Companion for Wikipedia) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhgpkiiipkgmckicafkhcihkcldbdeej [2016-03-21]
CHR Extension: (Talk and Comment - Notes vocales) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\djnhkfljnimcpelfndpcjcgngmefaobl [2016-03-21]
CHR Extension: (Protection Web Avira) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-06-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (Bouton Facebook) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\gongolnapedkaghcknkejmjcjmigbgij [2016-07-18]
CHR Extension: (Skype) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-07-31]
CHR Extension: (YouTube Advanced Control) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\lncbjnhgcbljbgfkahhpeldkflfcplan [2016-07-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Real-Debrid extension) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefkkgfcahbeccgckjgbnfclcmnjgidg [2017-09-13]
CHR Extension: (My Recipes New Tab) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimpecblajnjcfioomfllikpcfphikbc [2017-02-23]
CHR Extension: (Gmail) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-20]
CHR Extension: (Chrome Media Router) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-06]
CHR Profile: C:\Users\Romain\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-10]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [clgckgfbhciacomhlchmgdnplmdiadbj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dgjepfldodmdfmdidhhgamnklbdibndi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-08] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-08] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1444544 2016-03-01] (Disc Soft Ltd)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [111104 2017-08-30] (Freemake)
R2 RealPlayerUpdateSvc; C:\program files (x86)\real\realplayer\UpdateService\RealPlayerUpdateSvc.exe [35104 2017-03-02] ()
S2 RealTimes Desktop Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [987408 2017-03-15] (RealNetworks, Inc.)
R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [8602992 2017-09-11] (Reimage®)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [116224 2009-10-14] (WDC) [Fichier non signé]
S2 WDSmartWareBackgroundService; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [20480 2009-06-16] (Memeo) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-08] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-08] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-08] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-08] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-08] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-08] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-08] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1020536 2017-10-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-08] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-08] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-08] (AVAST Software)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-03-28] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-03-28] (Disc Soft Ltd)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2013-07-18] (Qualcomm Atheros Co., Ltd.)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [777944 2016-01-13] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2015-12-22] (Realsil Semiconductor Corporation)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
U1 aswbdisk; pas de ImagePath
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-11 05:43 - 2017-10-11 05:44 - 000019655 _____ C:\Users\Romain\Desktop\FRST.txt
2017-10-11 05:39 - 2017-10-11 05:39 - 000000000 ____D C:\Users\Romain\Desktop\FRST-OlderVersion
2017-10-11 05:38 - 2017-10-11 05:43 - 000000000 ____D C:\FRST
2017-10-10 22:09 - 2017-10-11 05:39 - 002401792 _____ (Farbar) C:\Users\Romain\Desktop\FRST64.exe
2017-10-10 21:33 - 2017-10-10 21:33 - 000004278 _____ C:\Windows\System32\Tasks\ReimageUpdater
2017-10-10 21:32 - 2017-10-10 21:34 - 000000000 ____D C:\rei
2017-10-10 21:32 - 2017-10-10 21:34 - 000000000 ____D C:\ProgramData\Reimage Protector
2017-10-10 21:32 - 2017-10-10 21:33 - 000000000 ____D C:\Program Files\Reimage
2017-10-10 21:32 - 2017-10-10 21:32 - 000001939 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2017-10-10 21:32 - 2017-10-10 21:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
2017-10-10 21:30 - 2017-10-10 21:34 - 000000140 _____ C:\Windows\Reimage.ini
2017-10-10 21:30 - 2017-10-10 21:30 - 000604928 _____ (Reimage) C:\Users\Romain\Desktop\ReimageRepair.exe
2017-10-10 21:15 - 2017-10-10 21:15 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-10 20:59 - 2017-10-10 20:59 - 000725157 _____ C:\Windows\unins000.exe
2017-10-10 20:59 - 2017-10-10 20:59 - 000002295 _____ C:\Windows\unins000.dat
2017-10-10 20:08 - 2017-10-10 20:08 - 000304112 _____ ( ) C:\Users\Romain\Desktop\cleanserp_uninstall.exe
2017-10-10 18:27 - 2017-10-10 22:21 - 000000000 ____D C:\Users\Romain\AppData\LocalLow\Mozilla
2017-10-10 18:27 - 2017-10-10 18:32 - 000000000 ____D C:\Users\Romain\AppData\Local\Mozilla
2017-10-10 18:26 - 2017-10-10 18:26 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-10-10 18:26 - 2017-10-10 18:26 - 000000924 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-10-10 18:26 - 2017-10-10 18:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-10 18:25 - 2017-10-10 18:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-10 18:24 - 2017-10-10 18:24 - 000245736 _____ (Mozilla) C:\Users\Romain\Desktop\Firefox Installer.exe
2017-10-10 14:57 - 2017-10-10 16:19 - 000000000 ____D C:\Users\Romain\Desktop\Images Pinterest
2017-10-09 19:38 - 2017-10-09 19:38 - 000001458 _____ C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
2017-10-09 19:38 - 2017-10-09 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2017-10-09 19:38 - 2017-10-09 19:38 - 000000000 ____D C:\Program Files (x86)\Western Digital Corporation
2017-10-09 19:22 - 2017-10-09 19:22 - 000000000 ____D C:\Users\Romain\AppData\Local\Western_Digital
2017-10-09 19:19 - 2017-10-09 19:19 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Western Digital
2017-10-09 19:19 - 2017-10-09 19:19 - 000000000 ____D C:\ProgramData\Western Digital
2017-10-09 19:17 - 2017-10-09 19:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare
2017-10-09 19:17 - 2017-10-09 19:17 - 000000000 ____D C:\Program Files\Western Digital
2017-10-09 19:17 - 2017-10-09 19:17 - 000000000 ____D C:\Program Files (x86)\Western Digital
2017-10-09 17:25 - 2017-10-10 10:11 - 000093634 _____ C:\Users\Romain\Desktop\CD AUMONERIE.cd2
2017-10-09 17:09 - 2017-10-10 21:06 - 000003372 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3293232227-77822436-125339290-1000
2017-10-09 17:09 - 2017-10-10 21:06 - 000003240 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3293232227-77822436-125339290-1000
2017-10-09 17:03 - 2017-10-09 17:05 - 000290720 _____ C:\Windows\Minidump\100917-39405-01.dmp
2017-10-08 18:10 - 2017-10-08 18:10 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-06 23:17 - 2017-10-10 20:59 - 000001700 __RSH C:\ProgramData\ntuser.pol
2017-10-06 22:41 - 2017-10-06 22:42 - 000000000 ____D C:\Program Files (x86)\Click'N Design 3D (V5)
2017-10-06 22:41 - 2017-10-06 22:41 - 000002021 _____ C:\Users\Romain\Desktop\Click'N Design 3D (V5).lnk
2017-10-06 22:41 - 2017-10-06 22:41 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Click'N Design 3D (V5)
2017-10-06 22:41 - 2017-10-06 22:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Click'N Design 3D (V5)
2017-10-06 22:41 - 2003-03-03 12:35 - 001040384 _____ (Sub Systems, Inc. ) C:\Windows\SysWOW64\Ter32.dll
2017-10-06 22:41 - 2003-01-08 12:52 - 000139264 _____ () C:\Windows\SysWOW64\Toc.ocx
2017-10-06 22:41 - 2002-03-10 13:01 - 000061440 _____ () C:\Windows\SysWOW64\cdTextCtl.dll
2017-10-06 22:41 - 2002-03-09 06:34 - 001136128 _____ (Smart Projects - Stomp Inc) C:\Windows\SysWOW64\stmpcdtx.dll
2017-10-06 22:41 - 2001-06-05 10:51 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2017-10-06 22:41 - 2001-03-14 10:34 - 000594900 _____ C:\Windows\SysWOW64\vbogl.tlb
2017-10-06 22:41 - 2001-03-13 13:53 - 000326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.005
2017-10-06 22:41 - 2001-03-13 13:47 - 000598288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.000
2017-10-06 22:41 - 2001-03-13 13:47 - 000164112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.001
2017-10-06 22:41 - 2001-03-13 13:47 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.003
2017-10-06 22:41 - 2001-03-13 13:45 - 000147728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.002
2017-10-06 22:41 - 2000-08-28 20:00 - 000401462 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.006
2017-10-06 22:41 - 2000-08-20 20:00 - 001388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.004
2017-10-06 22:41 - 2000-07-14 20:00 - 000434252 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msvcrtd.dll
2017-10-06 22:41 - 2000-05-21 20:00 - 000244416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msflxgrd.ocx
2017-10-06 22:41 - 2000-05-02 00:17 - 000212480 _____ (Eastman Kodak) C:\Windows\SysWOW64\Pcdlib32.dll
2017-10-06 22:41 - 2000-05-01 18:22 - 000001536 _____ C:\Windows\SysWOW64\ISWin32.tlb
2017-10-06 22:41 - 2000-02-24 17:07 - 000368912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbar332.dll
2017-10-06 22:41 - 1999-12-07 04:00 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.007
2017-10-06 22:41 - 1999-10-26 20:00 - 000929844 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mfc42d.dll
2017-10-06 22:41 - 1998-06-16 20:00 - 001999872 _____ C:\Windows\SysWOW64\Msvcp60.pdb
2017-10-06 22:41 - 1998-06-16 20:00 - 001442816 _____ C:\Windows\SysWOW64\Msvcp60d.pdb
2017-10-06 22:41 - 1998-06-16 20:00 - 000798773 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mfco42d.dll
2017-10-06 22:41 - 1998-06-16 20:00 - 000516173 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msvcp60d.dll
2017-10-06 22:41 - 1997-01-16 11:42 - 000006114 _____ C:\Windows\SysWOW64\SHELLLNK.TLB
2017-10-06 22:39 - 2017-10-06 22:40 - 027632792 _____ C:\ClicknDesign3D-EnglishUS.exe
2017-10-01 09:31 - 2017-10-01 09:31 - 000001489 _____ C:\Users\Romain\AppData\Local\recently-used.xbel
2017-09-30 23:57 - 2017-09-30 23:58 - 000290720 _____ C:\Windows\Minidump\093017-45021-01.dmp
2017-09-21 16:36 - 2017-09-21 16:36 - 000290720 _____ C:\Windows\Minidump\092117-48625-01.dmp
2017-09-21 13:41 - 2017-09-21 13:41 - 000000000 ____D C:\Users\Romain\Downloads\eMule
2017-09-17 21:23 - 2017-09-17 21:23 - 000000000 ____D C:\Users\Romain\AppData\Local\FreemakeVideoConverter
2017-09-17 21:21 - 2017-09-17 21:23 - 000000000 ____D C:\Users\Romain\Documents\Freemake
2017-09-17 21:21 - 2017-09-17 21:23 - 000000000 ____D C:\ProgramData\Freemake
2017-09-17 21:21 - 2017-09-17 21:21 - 000001316 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
2017-09-17 21:21 - 2017-09-17 21:21 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2017-09-17 21:21 - 2017-09-17 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2017-09-17 21:21 - 2017-09-17 21:21 - 000000000 ____D C:\Program Files (x86)\Freemake
2017-09-17 20:50 - 2017-09-17 20:50 - 000000000 ____D C:\Users\Romain\Documents\FlashIntegro
2017-09-17 20:50 - 2017-09-17 20:50 - 000000000 ____D C:\Users\Romain\AppData\Roaming\FlashIntegro
2017-09-17 20:48 - 2017-09-17 20:48 - 000000810 _____ C:\Users\Romain\Desktop\VSDC Free Screen Recorder.lnk
2017-09-17 20:48 - 2017-09-17 20:48 - 000000804 _____ C:\Users\Romain\Desktop\VSDC Free Video Capture.lnk
2017-09-17 20:48 - 2017-09-17 20:48 - 000000707 _____ C:\Users\Romain\Desktop\VSDC Free Video Editor.lnk
2017-09-17 20:48 - 2017-09-17 20:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro
2017-09-17 20:48 - 2017-07-18 14:46 - 000071480 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter3.ax
2017-09-17 20:48 - 2011-12-07 18:32 - 000216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll
2017-09-17 20:48 - 2005-08-01 18:43 - 000245760 _____ () C:\Windows\SysWOW64\lame.ax
2017-09-17 20:48 - 2004-12-10 09:03 - 000438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2017-09-17 20:48 - 2004-09-06 15:06 - 000053248 _____ C:\Windows\SysWOW64\xvid.ax
2017-09-17 20:48 - 2004-07-03 20:08 - 000139264 _____ C:\Windows\SysWOW64\xvidvfw.dll
2017-09-17 20:48 - 2004-07-03 19:59 - 000524288 _____ C:\Windows\SysWOW64\xvidcore.dll
2017-09-17 20:48 - 2004-02-04 20:11 - 000081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm
2017-09-17 20:48 - 2003-05-22 11:26 - 000638976 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divx.dll
2017-09-17 20:48 - 2003-05-22 11:26 - 000221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax
2017-09-17 20:48 - 2003-05-21 22:50 - 000261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll
2017-09-17 20:48 - 2003-05-21 22:50 - 000156910 _____ C:\Windows\WMSysPr8.prx
2017-09-17 20:48 - 2003-05-21 22:50 - 000082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm
2017-09-17 20:48 - 2003-05-21 22:50 - 000038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm
2017-09-17 20:48 - 2003-03-25 04:49 - 000098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX
2017-09-17 20:48 - 2002-08-19 23:41 - 000413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll
2017-09-17 20:48 - 2000-03-14 19:55 - 000013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm
2017-09-17 20:46 - 2017-09-17 20:46 - 038868080 _____ (Flash-Integro LLC ) C:\Users\Romain\Desktop\video_editor.exe
2017-09-17 20:35 - 2017-09-17 20:35 - 000000000 ____D C:\Users\Romain\AppData\Local\Meltytech
2017-09-17 18:54 - 2017-09-17 18:54 - 000000000 ____D C:\ProgramData\AVS4YOU
2017-09-17 18:53 - 2017-09-17 18:53 - 000000000 ____D C:\Users\Romain\AppData\Roaming\AVS4YOU
2017-09-17 18:47 - 2011-06-23 12:26 - 001700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2017-09-17 18:47 - 2011-06-23 12:25 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2017-09-15 11:10 - 2017-09-15 11:10 - 000000000 __SHD C:\found.000
2017-09-14 10:41 - 2017-09-15 11:14 - 000000000 ____D C:\Users\Romain\AppData\LocalLow\uTorrent
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-11 05:33 - 2016-01-20 16:23 - 000001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2017-10-11 05:21 - 2016-02-22 17:28 - 000001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d16d85bc47be49.job
2017-10-10 21:18 - 2009-07-14 06:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-10 21:18 - 2009-07-14 06:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-10 21:05 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-10 19:03 - 2016-03-17 20:02 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-10 19:03 - 2016-03-03 11:08 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-10 19:03 - 2016-03-03 11:08 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-10 19:02 - 2016-03-03 11:08 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-10 19:02 - 2016-03-03 11:08 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-10 18:27 - 2016-12-17 22:15 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Mozilla
2017-10-09 23:01 - 2016-03-02 16:53 - 000000000 ____D C:\Users\Romain\AppData\Roaming\vlc
2017-10-09 20:36 - 2017-01-29 11:47 - 000000000 ____D C:\Users\Romain\Desktop\set-up
2017-10-09 19:17 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2017-10-09 17:03 - 2016-01-21 10:45 - 000000000 ____D C:\Windows\Minidump
2017-10-09 15:23 - 2016-01-20 10:30 - 000091816 _____ C:\Users\Romain\AppData\Local\GDIPFONTCACHEV1.DAT
2017-10-08 18:17 - 2009-07-14 06:45 - 000367336 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-08 18:11 - 2017-02-28 22:04 - 000003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-08 18:10 - 2017-02-28 22:04 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-08 18:10 - 2017-02-28 22:00 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-08 18:09 - 2017-02-28 22:04 - 001020536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-08 18:08 - 2017-02-28 22:04 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-08 18:08 - 2017-02-28 22:03 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-08 18:08 - 2017-02-28 22:03 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-08 18:08 - 2017-02-28 22:03 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-06 23:17 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-10-06 11:53 - 2016-03-02 21:17 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Real
2017-10-04 18:56 - 2016-10-06 11:21 - 000000408 _____ C:\Users\Romain\AppData\Roaming\CamShapes.ini
2017-10-04 18:56 - 2016-10-06 11:21 - 000000408 _____ C:\Users\Romain\AppData\Roaming\CamLayout.ini
2017-10-04 18:56 - 2016-10-06 11:21 - 000000096 _____ C:\Users\Romain\AppData\Roaming\Camdata.ini
2017-10-04 18:56 - 2016-10-06 11:14 - 000004573 _____ C:\Users\Romain\AppData\Roaming\CamStudio.cfg
2017-10-04 18:56 - 2016-10-06 08:27 - 000000096 _____ C:\Users\Romain\AppData\Roaming\version2.xml
2017-10-01 15:39 - 2017-08-28 19:10 - 000002126 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2017-10-01 15:39 - 2017-08-21 18:24 - 000001202 _____ C:\Users\Romain\Desktop\Mes documents - Raccourci.lnk
2017-10-01 09:32 - 2016-11-26 19:27 - 000000000 ____D C:\Users\Romain\.gimp-2.8
2017-09-27 21:11 - 2011-04-12 11:16 - 000750076 _____ C:\Windows\system32\perfh00C.dat
2017-09-27 21:11 - 2011-04-12 11:16 - 000150722 _____ C:\Windows\system32\perfc00C.dat
2017-09-27 21:11 - 2009-07-14 07:13 - 001676034 _____ C:\Windows\system32\PerfStringBackup.INI
2017-09-26 14:47 - 2016-01-20 16:29 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-21 18:20 - 2016-08-30 18:45 - 000373352 _____ C:\Windows\ntbtlog.txt
2017-09-18 20:41 - 2016-08-25 14:23 - 000000000 ____D C:\Users\Romain\Desktop\romain
2017-09-18 20:34 - 2017-07-04 19:23 - 000000000 ____D C:\Users\Romain\Desktop\Recup ancien PC
2017-09-18 06:03 - 2016-12-16 18:57 - 000000000 ____D C:\Users\Romain\AppData\Roaming\uTorrent
2017-09-18 05:29 - 2016-01-20 09:06 - 000000000 ____D C:\Users\Romain
2017-09-16 16:14 - 2017-01-09 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-09-14 10:42 - 2017-07-07 15:35 - 000003920 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1488312708
2017-09-14 10:39 - 2016-01-21 04:01 - 000000000 ____D C:\Program Files\Common Files\AV
2017-09-14 02:58 - 2017-02-28 22:08 - 000041832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-09-13 23:32 - 2017-03-15 20:24 - 000000000 ___RD C:\Program Files (x86)\Skype
2017-09-13 23:32 - 2016-05-13 23:23 - 000000000 ____D C:\ProgramData\Skype
==================== Fichiers à la racine de certains dossiers =======
2016-02-22 12:03 - 2016-02-22 12:03 - 006871040 _____ () C:\Program Files (x86)\GUT5C33.tmp
2016-10-06 11:21 - 2017-10-04 18:56 - 000000096 _____ () C:\Users\Romain\AppData\Roaming\Camdata.ini
2016-10-06 11:21 - 2017-10-04 18:56 - 000000408 _____ () C:\Users\Romain\AppData\Roaming\CamLayout.ini
2016-10-06 11:21 - 2017-10-04 18:56 - 000000408 _____ () C:\Users\Romain\AppData\Roaming\CamShapes.ini
2016-10-06 11:14 - 2017-10-04 18:56 - 000004573 _____ () C:\Users\Romain\AppData\Roaming\CamStudio.cfg
2016-03-15 01:05 - 2016-03-15 01:05 - 000000055 _____ () C:\Users\Romain\AppData\Roaming\MouseServer.ini
2016-10-06 08:27 - 2017-10-04 18:56 - 000000096 _____ () C:\Users\Romain\AppData\Roaming\version2.xml
2016-07-31 17:36 - 2016-07-31 17:36 - 000003584 _____ () C:\Users\Romain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-10-01 09:31 - 2017-10-01 09:31 - 000001489 _____ () C:\Users\Romain\AppData\Local\recently-used.xbel
2017-06-30 22:55 - 2017-06-30 22:55 - 000000168 _____ () C:\Users\Romain\AppData\Local\uts.ini
2016-03-09 11:36 - 2016-03-09 11:36 - 000000057 _____ () C:\ProgramData\Ament.ini
2016-03-17 20:49 - 2016-03-17 20:49 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
Certains fichiers dans TEMP:
====================
2017-09-19 17:46 - 2017-09-05 14:52 - 000186224 _____ (RealNetworks, Inc.) C:\Users\Romain\AppData\Local\Temp\lowproc.exe
2017-10-10 21:31 - 2017-10-10 21:32 - 013489912 _____ (Reimage) C:\Users\Romain\AppData\Local\Temp\ReimagePackage.exe
2017-09-19 17:46 - 2017-09-05 14:53 - 000096440 _____ (RealNetworks, Inc.) C:\Users\Romain\AppData\Local\Temp\stubhelper.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-09-21 19:35
==================== Fin de FRST.txt ============================
Exécuté par Romain (administrateur) sur ROMAIN-PC (11-10-2017 05:43:24)
Exécuté depuis C:\Users\Romain\Desktop
Profils chargés: Romain (Profils disponibles: Romain)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
() C:\Program Files (x86)\Real\RealPlayer\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Western Digital) C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe
(WDC) C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
(Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Real\RealDownloader\downloader2.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealDownloader\realdownloader264.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-08] (AVAST Software)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [wifimouseremote] => C:\Program Files (x86)\Wifi Mouse Remote\WifiMouseRemote.exe
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [352648 2017-03-15] (RealNetworks, Inc.)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\Real\RealDownloader\downloader2.exe [738544 2017-05-05] ()
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [87552 2017-08-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\Run: [MouseServer] => "C:\Program Files (x86)\MouseServer\MouseServer.exe"
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\MountPoints2: M - M:\formation.exe
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\MountPoints2: {4b2a3619-f918-11e5-a680-00241dcdea02} - "J:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3293232227-77822436-125339290-1000\...\MountPoints2: {fd524b7a-e081-11e5-bce9-806e6f6e6963} - "J:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3293232227-77822436-125339290-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\Plane9.sCr
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2017-03-15]
ShortcutTarget: RealTimes.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk [2017-10-09]
ShortcutTarget: WDDMStatus.lnk -> C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe (WDC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDSmartWare.lnk [2017-10-09]
ShortcutTarget: WDSmartWare.lnk -> C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe (Western Digital)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{411BD8A0-8B9D-4203-83F5-44BA5C8C8F1D}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKU\S-1-5-21-3293232227-77822436-125339290-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3293232227-77822436-125339290-1000 -> {616984A4-D3AE-48EB-9843-7A676876A8C7} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\program files (x86)\real\realplayer\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2017-03-02] (RealDownloader)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-10-08] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\program files (x86)\real\realplayer\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2017-03-02] (RealDownloader)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-10-08] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default [2017-10-11]
FF Extension: (Avira Browser Safety) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\abs@avira.com [2016-12-17]
FF Extension: (cacaoweb) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\cacaoweb@cacaoweb.org [2017-03-26] [non signé]
FF Extension: (Avast SafePrice) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\sp@avast.com.xpi [2017-09-14]
FF Extension: (Avast Online Security) - C:\Users\Romain\AppData\Roaming\Mozilla\Firefox\Profiles\s8CrKgXY.default\Extensions\wrc@avast.com.xpi [2017-09-14]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.1.7.337 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll [2017-03-15] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.7.337 -> c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll [2017-03-15] (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
Chrome:
=======
CHR NewTab: Default -> Not-active:"chrome-extension://oimpecblajnjcfioomfllikpcfphikbc/newtab/index.html"
CHR Profile: C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default [2017-10-11]
CHR Extension: (Photo Zoomer For Facebook) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\addibmjelefaholbfacfnekmojekodaf [2017-07-22]
CHR Extension: (SocialProtect) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\afkfmjcilodjiidicmbohjcmdlkglima [2016-03-21]
CHR Extension: (Google Docs) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-20]
CHR Extension: (Google Drive) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-20]
CHR Extension: (YouTube) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-20]
CHR Extension: (Verbatim Translatio) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\bobgnmijljonenlachekpkgikohcghon [2017-08-16]
CHR Extension: (Plan to Eat Recipe Clipper) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\cneicdnjajpaepkkgimoainnbhoannfj [2016-03-21]
CHR Extension: (Recherche Google) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-20]
CHR Extension: (Lookup Companion for Wikipedia) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhgpkiiipkgmckicafkhcihkcldbdeej [2016-03-21]
CHR Extension: (Talk and Comment - Notes vocales) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\djnhkfljnimcpelfndpcjcgngmefaobl [2016-03-21]
CHR Extension: (Protection Web Avira) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-06-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (Bouton Facebook) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\gongolnapedkaghcknkejmjcjmigbgij [2016-07-18]
CHR Extension: (Skype) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-07-31]
CHR Extension: (YouTube Advanced Control) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\lncbjnhgcbljbgfkahhpeldkflfcplan [2016-07-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Real-Debrid extension) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefkkgfcahbeccgckjgbnfclcmnjgidg [2017-09-13]
CHR Extension: (My Recipes New Tab) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\oimpecblajnjcfioomfllikpcfphikbc [2017-02-23]
CHR Extension: (Gmail) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-20]
CHR Extension: (Chrome Media Router) - C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-06]
CHR Profile: C:\Users\Romain\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-10]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [clgckgfbhciacomhlchmgdnplmdiadbj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dgjepfldodmdfmdidhhgamnklbdibndi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-08] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-08] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1444544 2016-03-01] (Disc Soft Ltd)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [111104 2017-08-30] (Freemake)
R2 RealPlayerUpdateSvc; C:\program files (x86)\real\realplayer\UpdateService\RealPlayerUpdateSvc.exe [35104 2017-03-02] ()
S2 RealTimes Desktop Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [987408 2017-03-15] (RealNetworks, Inc.)
R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [8602992 2017-09-11] (Reimage®)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [116224 2009-10-14] (WDC) [Fichier non signé]
S2 WDSmartWareBackgroundService; C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [20480 2009-06-16] (Memeo) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-08] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-08] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-08] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-08] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-08] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-08] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-08] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1020536 2017-10-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-08] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-08] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-08] (AVAST Software)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-03-28] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-03-28] (Disc Soft Ltd)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2013-07-18] (Qualcomm Atheros Co., Ltd.)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [777944 2016-01-13] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [413912 2015-12-22] (Realsil Semiconductor Corporation)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
U1 aswbdisk; pas de ImagePath
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-11 05:43 - 2017-10-11 05:44 - 000019655 _____ C:\Users\Romain\Desktop\FRST.txt
2017-10-11 05:39 - 2017-10-11 05:39 - 000000000 ____D C:\Users\Romain\Desktop\FRST-OlderVersion
2017-10-11 05:38 - 2017-10-11 05:43 - 000000000 ____D C:\FRST
2017-10-10 22:09 - 2017-10-11 05:39 - 002401792 _____ (Farbar) C:\Users\Romain\Desktop\FRST64.exe
2017-10-10 21:33 - 2017-10-10 21:33 - 000004278 _____ C:\Windows\System32\Tasks\ReimageUpdater
2017-10-10 21:32 - 2017-10-10 21:34 - 000000000 ____D C:\rei
2017-10-10 21:32 - 2017-10-10 21:34 - 000000000 ____D C:\ProgramData\Reimage Protector
2017-10-10 21:32 - 2017-10-10 21:33 - 000000000 ____D C:\Program Files\Reimage
2017-10-10 21:32 - 2017-10-10 21:32 - 000001939 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2017-10-10 21:32 - 2017-10-10 21:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
2017-10-10 21:30 - 2017-10-10 21:34 - 000000140 _____ C:\Windows\Reimage.ini
2017-10-10 21:30 - 2017-10-10 21:30 - 000604928 _____ (Reimage) C:\Users\Romain\Desktop\ReimageRepair.exe
2017-10-10 21:15 - 2017-10-10 21:15 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-10 20:59 - 2017-10-10 20:59 - 000725157 _____ C:\Windows\unins000.exe
2017-10-10 20:59 - 2017-10-10 20:59 - 000002295 _____ C:\Windows\unins000.dat
2017-10-10 20:08 - 2017-10-10 20:08 - 000304112 _____ ( ) C:\Users\Romain\Desktop\cleanserp_uninstall.exe
2017-10-10 18:27 - 2017-10-10 22:21 - 000000000 ____D C:\Users\Romain\AppData\LocalLow\Mozilla
2017-10-10 18:27 - 2017-10-10 18:32 - 000000000 ____D C:\Users\Romain\AppData\Local\Mozilla
2017-10-10 18:26 - 2017-10-10 18:26 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-10-10 18:26 - 2017-10-10 18:26 - 000000924 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-10-10 18:26 - 2017-10-10 18:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-10 18:25 - 2017-10-10 18:27 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-10 18:24 - 2017-10-10 18:24 - 000245736 _____ (Mozilla) C:\Users\Romain\Desktop\Firefox Installer.exe
2017-10-10 14:57 - 2017-10-10 16:19 - 000000000 ____D C:\Users\Romain\Desktop\Images Pinterest
2017-10-09 19:38 - 2017-10-09 19:38 - 000001458 _____ C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
2017-10-09 19:38 - 2017-10-09 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2017-10-09 19:38 - 2017-10-09 19:38 - 000000000 ____D C:\Program Files (x86)\Western Digital Corporation
2017-10-09 19:22 - 2017-10-09 19:22 - 000000000 ____D C:\Users\Romain\AppData\Local\Western_Digital
2017-10-09 19:19 - 2017-10-09 19:19 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Western Digital
2017-10-09 19:19 - 2017-10-09 19:19 - 000000000 ____D C:\ProgramData\Western Digital
2017-10-09 19:17 - 2017-10-09 19:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare
2017-10-09 19:17 - 2017-10-09 19:17 - 000000000 ____D C:\Program Files\Western Digital
2017-10-09 19:17 - 2017-10-09 19:17 - 000000000 ____D C:\Program Files (x86)\Western Digital
2017-10-09 17:25 - 2017-10-10 10:11 - 000093634 _____ C:\Users\Romain\Desktop\CD AUMONERIE.cd2
2017-10-09 17:09 - 2017-10-10 21:06 - 000003372 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3293232227-77822436-125339290-1000
2017-10-09 17:09 - 2017-10-10 21:06 - 000003240 _____ C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3293232227-77822436-125339290-1000
2017-10-09 17:03 - 2017-10-09 17:05 - 000290720 _____ C:\Windows\Minidump\100917-39405-01.dmp
2017-10-08 18:10 - 2017-10-08 18:10 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-06 23:17 - 2017-10-10 20:59 - 000001700 __RSH C:\ProgramData\ntuser.pol
2017-10-06 22:41 - 2017-10-06 22:42 - 000000000 ____D C:\Program Files (x86)\Click'N Design 3D (V5)
2017-10-06 22:41 - 2017-10-06 22:41 - 000002021 _____ C:\Users\Romain\Desktop\Click'N Design 3D (V5).lnk
2017-10-06 22:41 - 2017-10-06 22:41 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Click'N Design 3D (V5)
2017-10-06 22:41 - 2017-10-06 22:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Click'N Design 3D (V5)
2017-10-06 22:41 - 2003-03-03 12:35 - 001040384 _____ (Sub Systems, Inc. ) C:\Windows\SysWOW64\Ter32.dll
2017-10-06 22:41 - 2003-01-08 12:52 - 000139264 _____ () C:\Windows\SysWOW64\Toc.ocx
2017-10-06 22:41 - 2002-03-10 13:01 - 000061440 _____ () C:\Windows\SysWOW64\cdTextCtl.dll
2017-10-06 22:41 - 2002-03-09 06:34 - 001136128 _____ (Smart Projects - Stomp Inc) C:\Windows\SysWOW64\stmpcdtx.dll
2017-10-06 22:41 - 2001-06-05 10:51 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2017-10-06 22:41 - 2001-03-14 10:34 - 000594900 _____ C:\Windows\SysWOW64\vbogl.tlb
2017-10-06 22:41 - 2001-03-13 13:53 - 000326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.005
2017-10-06 22:41 - 2001-03-13 13:47 - 000598288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.000
2017-10-06 22:41 - 2001-03-13 13:47 - 000164112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.001
2017-10-06 22:41 - 2001-03-13 13:47 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.003
2017-10-06 22:41 - 2001-03-13 13:45 - 000147728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.002
2017-10-06 22:41 - 2000-08-28 20:00 - 000401462 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.006
2017-10-06 22:41 - 2000-08-20 20:00 - 001388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.004
2017-10-06 22:41 - 2000-07-14 20:00 - 000434252 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msvcrtd.dll
2017-10-06 22:41 - 2000-05-21 20:00 - 000244416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msflxgrd.ocx
2017-10-06 22:41 - 2000-05-02 00:17 - 000212480 _____ (Eastman Kodak) C:\Windows\SysWOW64\Pcdlib32.dll
2017-10-06 22:41 - 2000-05-01 18:22 - 000001536 _____ C:\Windows\SysWOW64\ISWin32.tlb
2017-10-06 22:41 - 2000-02-24 17:07 - 000368912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbar332.dll
2017-10-06 22:41 - 1999-12-07 04:00 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.007
2017-10-06 22:41 - 1999-10-26 20:00 - 000929844 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mfc42d.dll
2017-10-06 22:41 - 1998-06-16 20:00 - 001999872 _____ C:\Windows\SysWOW64\Msvcp60.pdb
2017-10-06 22:41 - 1998-06-16 20:00 - 001442816 _____ C:\Windows\SysWOW64\Msvcp60d.pdb
2017-10-06 22:41 - 1998-06-16 20:00 - 000798773 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mfco42d.dll
2017-10-06 22:41 - 1998-06-16 20:00 - 000516173 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msvcp60d.dll
2017-10-06 22:41 - 1997-01-16 11:42 - 000006114 _____ C:\Windows\SysWOW64\SHELLLNK.TLB
2017-10-06 22:39 - 2017-10-06 22:40 - 027632792 _____ C:\ClicknDesign3D-EnglishUS.exe
2017-10-01 09:31 - 2017-10-01 09:31 - 000001489 _____ C:\Users\Romain\AppData\Local\recently-used.xbel
2017-09-30 23:57 - 2017-09-30 23:58 - 000290720 _____ C:\Windows\Minidump\093017-45021-01.dmp
2017-09-21 16:36 - 2017-09-21 16:36 - 000290720 _____ C:\Windows\Minidump\092117-48625-01.dmp
2017-09-21 13:41 - 2017-09-21 13:41 - 000000000 ____D C:\Users\Romain\Downloads\eMule
2017-09-17 21:23 - 2017-09-17 21:23 - 000000000 ____D C:\Users\Romain\AppData\Local\FreemakeVideoConverter
2017-09-17 21:21 - 2017-09-17 21:23 - 000000000 ____D C:\Users\Romain\Documents\Freemake
2017-09-17 21:21 - 2017-09-17 21:23 - 000000000 ____D C:\ProgramData\Freemake
2017-09-17 21:21 - 2017-09-17 21:21 - 000001316 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
2017-09-17 21:21 - 2017-09-17 21:21 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2017-09-17 21:21 - 2017-09-17 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2017-09-17 21:21 - 2017-09-17 21:21 - 000000000 ____D C:\Program Files (x86)\Freemake
2017-09-17 20:50 - 2017-09-17 20:50 - 000000000 ____D C:\Users\Romain\Documents\FlashIntegro
2017-09-17 20:50 - 2017-09-17 20:50 - 000000000 ____D C:\Users\Romain\AppData\Roaming\FlashIntegro
2017-09-17 20:48 - 2017-09-17 20:48 - 000000810 _____ C:\Users\Romain\Desktop\VSDC Free Screen Recorder.lnk
2017-09-17 20:48 - 2017-09-17 20:48 - 000000804 _____ C:\Users\Romain\Desktop\VSDC Free Video Capture.lnk
2017-09-17 20:48 - 2017-09-17 20:48 - 000000707 _____ C:\Users\Romain\Desktop\VSDC Free Video Editor.lnk
2017-09-17 20:48 - 2017-09-17 20:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro
2017-09-17 20:48 - 2017-07-18 14:46 - 000071480 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter3.ax
2017-09-17 20:48 - 2011-12-07 18:32 - 000216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll
2017-09-17 20:48 - 2005-08-01 18:43 - 000245760 _____ () C:\Windows\SysWOW64\lame.ax
2017-09-17 20:48 - 2004-12-10 09:03 - 000438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2017-09-17 20:48 - 2004-09-06 15:06 - 000053248 _____ C:\Windows\SysWOW64\xvid.ax
2017-09-17 20:48 - 2004-07-03 20:08 - 000139264 _____ C:\Windows\SysWOW64\xvidvfw.dll
2017-09-17 20:48 - 2004-07-03 19:59 - 000524288 _____ C:\Windows\SysWOW64\xvidcore.dll
2017-09-17 20:48 - 2004-02-04 20:11 - 000081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm
2017-09-17 20:48 - 2003-05-22 11:26 - 000638976 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divx.dll
2017-09-17 20:48 - 2003-05-22 11:26 - 000221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax
2017-09-17 20:48 - 2003-05-21 22:50 - 000261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll
2017-09-17 20:48 - 2003-05-21 22:50 - 000156910 _____ C:\Windows\WMSysPr8.prx
2017-09-17 20:48 - 2003-05-21 22:50 - 000082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm
2017-09-17 20:48 - 2003-05-21 22:50 - 000038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm
2017-09-17 20:48 - 2003-03-25 04:49 - 000098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX
2017-09-17 20:48 - 2002-08-19 23:41 - 000413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll
2017-09-17 20:48 - 2000-03-14 19:55 - 000013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm
2017-09-17 20:46 - 2017-09-17 20:46 - 038868080 _____ (Flash-Integro LLC ) C:\Users\Romain\Desktop\video_editor.exe
2017-09-17 20:35 - 2017-09-17 20:35 - 000000000 ____D C:\Users\Romain\AppData\Local\Meltytech
2017-09-17 18:54 - 2017-09-17 18:54 - 000000000 ____D C:\ProgramData\AVS4YOU
2017-09-17 18:53 - 2017-09-17 18:53 - 000000000 ____D C:\Users\Romain\AppData\Roaming\AVS4YOU
2017-09-17 18:47 - 2011-06-23 12:26 - 001700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2017-09-17 18:47 - 2011-06-23 12:25 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2017-09-15 11:10 - 2017-09-15 11:10 - 000000000 __SHD C:\found.000
2017-09-14 10:41 - 2017-09-15 11:14 - 000000000 ____D C:\Users\Romain\AppData\LocalLow\uTorrent
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-11 05:33 - 2016-01-20 16:23 - 000001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2017-10-11 05:21 - 2016-02-22 17:28 - 000001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d16d85bc47be49.job
2017-10-10 21:18 - 2009-07-14 06:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-10 21:18 - 2009-07-14 06:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-10 21:05 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-10 19:03 - 2016-03-17 20:02 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-10 19:03 - 2016-03-03 11:08 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-10 19:03 - 2016-03-03 11:08 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-10 19:02 - 2016-03-03 11:08 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-10 19:02 - 2016-03-03 11:08 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-10 18:27 - 2016-12-17 22:15 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Mozilla
2017-10-09 23:01 - 2016-03-02 16:53 - 000000000 ____D C:\Users\Romain\AppData\Roaming\vlc
2017-10-09 20:36 - 2017-01-29 11:47 - 000000000 ____D C:\Users\Romain\Desktop\set-up
2017-10-09 19:17 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2017-10-09 17:03 - 2016-01-21 10:45 - 000000000 ____D C:\Windows\Minidump
2017-10-09 15:23 - 2016-01-20 10:30 - 000091816 _____ C:\Users\Romain\AppData\Local\GDIPFONTCACHEV1.DAT
2017-10-08 18:17 - 2009-07-14 06:45 - 000367336 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-08 18:11 - 2017-02-28 22:04 - 000003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-08 18:10 - 2017-02-28 22:04 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-08 18:10 - 2017-02-28 22:04 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-08 18:10 - 2017-02-28 22:00 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-08 18:09 - 2017-02-28 22:04 - 001020536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-08 18:08 - 2017-02-28 22:04 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-08 18:08 - 2017-02-28 22:03 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-08 18:08 - 2017-02-28 22:03 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-08 18:08 - 2017-02-28 22:03 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-06 23:17 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-10-06 11:53 - 2016-03-02 21:17 - 000000000 ____D C:\Users\Romain\AppData\Roaming\Real
2017-10-04 18:56 - 2016-10-06 11:21 - 000000408 _____ C:\Users\Romain\AppData\Roaming\CamShapes.ini
2017-10-04 18:56 - 2016-10-06 11:21 - 000000408 _____ C:\Users\Romain\AppData\Roaming\CamLayout.ini
2017-10-04 18:56 - 2016-10-06 11:21 - 000000096 _____ C:\Users\Romain\AppData\Roaming\Camdata.ini
2017-10-04 18:56 - 2016-10-06 11:14 - 000004573 _____ C:\Users\Romain\AppData\Roaming\CamStudio.cfg
2017-10-04 18:56 - 2016-10-06 08:27 - 000000096 _____ C:\Users\Romain\AppData\Roaming\version2.xml
2017-10-01 15:39 - 2017-08-28 19:10 - 000002126 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2017-10-01 15:39 - 2017-08-21 18:24 - 000001202 _____ C:\Users\Romain\Desktop\Mes documents - Raccourci.lnk
2017-10-01 09:32 - 2016-11-26 19:27 - 000000000 ____D C:\Users\Romain\.gimp-2.8
2017-09-27 21:11 - 2011-04-12 11:16 - 000750076 _____ C:\Windows\system32\perfh00C.dat
2017-09-27 21:11 - 2011-04-12 11:16 - 000150722 _____ C:\Windows\system32\perfc00C.dat
2017-09-27 21:11 - 2009-07-14 07:13 - 001676034 _____ C:\Windows\system32\PerfStringBackup.INI
2017-09-26 14:47 - 2016-01-20 16:29 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-21 18:20 - 2016-08-30 18:45 - 000373352 _____ C:\Windows\ntbtlog.txt
2017-09-18 20:41 - 2016-08-25 14:23 - 000000000 ____D C:\Users\Romain\Desktop\romain
2017-09-18 20:34 - 2017-07-04 19:23 - 000000000 ____D C:\Users\Romain\Desktop\Recup ancien PC
2017-09-18 06:03 - 2016-12-16 18:57 - 000000000 ____D C:\Users\Romain\AppData\Roaming\uTorrent
2017-09-18 05:29 - 2016-01-20 09:06 - 000000000 ____D C:\Users\Romain
2017-09-16 16:14 - 2017-01-09 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-09-14 10:42 - 2017-07-07 15:35 - 000003920 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1488312708
2017-09-14 10:39 - 2016-01-21 04:01 - 000000000 ____D C:\Program Files\Common Files\AV
2017-09-14 02:58 - 2017-02-28 22:08 - 000041832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-09-13 23:32 - 2017-03-15 20:24 - 000000000 ___RD C:\Program Files (x86)\Skype
2017-09-13 23:32 - 2016-05-13 23:23 - 000000000 ____D C:\ProgramData\Skype
==================== Fichiers à la racine de certains dossiers =======
2016-02-22 12:03 - 2016-02-22 12:03 - 006871040 _____ () C:\Program Files (x86)\GUT5C33.tmp
2016-10-06 11:21 - 2017-10-04 18:56 - 000000096 _____ () C:\Users\Romain\AppData\Roaming\Camdata.ini
2016-10-06 11:21 - 2017-10-04 18:56 - 000000408 _____ () C:\Users\Romain\AppData\Roaming\CamLayout.ini
2016-10-06 11:21 - 2017-10-04 18:56 - 000000408 _____ () C:\Users\Romain\AppData\Roaming\CamShapes.ini
2016-10-06 11:14 - 2017-10-04 18:56 - 000004573 _____ () C:\Users\Romain\AppData\Roaming\CamStudio.cfg
2016-03-15 01:05 - 2016-03-15 01:05 - 000000055 _____ () C:\Users\Romain\AppData\Roaming\MouseServer.ini
2016-10-06 08:27 - 2017-10-04 18:56 - 000000096 _____ () C:\Users\Romain\AppData\Roaming\version2.xml
2016-07-31 17:36 - 2016-07-31 17:36 - 000003584 _____ () C:\Users\Romain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-10-01 09:31 - 2017-10-01 09:31 - 000001489 _____ () C:\Users\Romain\AppData\Local\recently-used.xbel
2017-06-30 22:55 - 2017-06-30 22:55 - 000000168 _____ () C:\Users\Romain\AppData\Local\uts.ini
2016-03-09 11:36 - 2016-03-09 11:36 - 000000057 _____ () C:\ProgramData\Ament.ini
2016-03-17 20:49 - 2016-03-17 20:49 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
Certains fichiers dans TEMP:
====================
2017-09-19 17:46 - 2017-09-05 14:52 - 000186224 _____ (RealNetworks, Inc.) C:\Users\Romain\AppData\Local\Temp\lowproc.exe
2017-10-10 21:31 - 2017-10-10 21:32 - 013489912 _____ (Reimage) C:\Users\Romain\AppData\Local\Temp\ReimagePackage.exe
2017-09-19 17:46 - 2017-09-05 14:53 - 000096440 _____ (RealNetworks, Inc.) C:\Users\Romain\AppData\Local\Temp\stubhelper.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-09-21 19:35
==================== Fin de FRST.txt ============================