Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 10-10-2016
Exécuté par Jean (administrateur) sur JEAN-PC (13-10-2016 12:02:09)
Exécuté depuis d:\Users\Jean\Desktop
Profils chargés: Jean & LogMeInRemoteUser & (Profils disponibles: Jean & LogMeInRemoteUser)
Platform: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\VPN\Avira.VpnService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
( ) C:\Windows\System32\dlbkcoms.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TuneUp Software) C:\Windows\System32\TUProgSt.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Windows (R) Win 7 DDK provider) C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\i386_host\FLxHCIm.exe
() C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
() C:\Program Files\Unlocker\UnlockerAssistant.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Glarysoft Ltd) C:\Program Files\Glarysoft\Malware Hunter\mhtray.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files\Bitdefender\Tools\BDAntiRansomware\BDAntiRansomware.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Farbar) D:\Users\Jean\Desktop\FRST(1).exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [917584 2016-09-27] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [FLxHCIm] => C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\i386_host\FLxHCIm.exe [51880 2014-11-12] (Windows (R) Win 7 DDK provider)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-08-19] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [RealDownloader] => C:\Program Files\RealNetworks\RealDownloader\downloader2.exe [714992 2016-07-05] ()
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [164152 2016-07-05] (Apple Inc.)
HKLM\...\Run: [MalTray] => C:\Program Files\Glarysoft\Malware Hunter\mhtray.exe [896976 2016-09-19] (Glarysoft Ltd)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Run: [SRS Premium Sound] => C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe [3405048 2009-04-07] (SRS Labs, Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [43984 2016-09-05] (Glarysoft Ltd)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Run: [Google Update] => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [SRS Premium Sound] => C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe [3405048 2009-04-07] (SRS Labs, Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [43984 2016-09-05] (Glarysoft Ltd)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [DAEMON Tools Lite] => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [Google Update] => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2012-03-03] (Google Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\MountPoints2: {5f2c9a78-63e6-11e1-90a9-806e6f6e6963} - F:\Launch.exe
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\...\Run: [SpybotSD TeaTimer] => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{4D114B56-2355-4A3D-B7B6-B371A368E1D9}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{5224E64F-6714-414F-AF77-AF1C41A0050C}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{D66F9140-567D-4DF5-8D5A-F71790AE5023}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131101102546442961&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
URLSearchHook: HKU\S-1-5-21-3954560266-2712325161-3536269069-1004 - (Pas de nom) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - Pas de fichier
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3954560266-2712325161-3536269069-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2015-11-04] (RealDownloader)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
IE Session Restore: HKU\S-1-5-21-3954560266-2712325161-3536269069-1001 -> est activé.
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1003 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1004 -> Pas de nom - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - Pas de fichier
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1004 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} hxxp://fichiers2.touslesdrivers.com/maconfig/MaConfig_6_0_1_1.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2016-07-22] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Jean\AppData\Roaming\Mozilla\Firefox\Profiles\x1rdc04d.default-1446027287243 [non trouvé(e)]
FF DefaultProfile: jgyid5li.default-1464698548685
FF ProfilePath: C:\Users\Jean\AppData\Roaming\Mozilla\Firefox\Profiles\jgyid5li.default-1464698548685 [2016-10-13]
FF Extension: (Adblock Plus) - C:\Users\Jean\AppData\Roaming\Mozilla\Firefox\Profiles\jgyid5li.default-1464698548685\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-13]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-12] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2016-08-25] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @pack.google.com/Google Updater;version=11 -> C:\Program Files\Google\Google Updater\2.1.850.19570\npCIDetect11.dll [2012-03-03] (Google)
FF Plugin: @real.com/nppl3260;version=18.1.2.175 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2016-01-09] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=18.1.2.175 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2016-01-09] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3954560266-2712325161-3536269069-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Jean\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2014-06-06] (Google)
FF Plugin HKU\S-1-5-21-3954560266-2712325161-3536269069-1001: @talk.google.com/O1DPlugin -> C:\Users\Jean\AppData\Roaming\Mozilla\plugins\npo1d.dll [2014-06-06] (Google)
FF Plugin HKU\S-1-5-21-3954560266-2712325161-3536269069-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Jean\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin ProgramFiles/Appdata: C:\Users\Jean\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2014-06-06] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Jean\AppData\Roaming\mozilla\plugins\npo1d.dll [2014-06-06] (Google)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2016-06-28]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default [2016-10-13]
CHR Extension: (Adblock Plus) - C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-09]
CHR Extension: (Recherche Google) - C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-02]
CHR Extension: (Google Wallet) - C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28]
CHR HKLM\...\Chrome\Extension: [mjcnhgdodmhnpmndnljbmafpgomahfal] -
StartMenuInternet: Google Chrome.HXFAFJ367XVODPTXAFIFQ5NIPU - C:\Users\Jean\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [804928 2011-02-01] (Acronis)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2012-03-03] (Acronis)
S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [1086040 2016-09-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [475232 2016-09-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [475232 2016-09-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1489240 2016-09-27] (Avira Operations GmbH & Co. KG)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-15] (ASUS)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [324304 2016-08-19] (Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files\Avira\VPN\Avira.VpnService.exe [256488 2016-08-31] (Avira Operations GmbH & Co. KG)
S4 CLHNServiceForPowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [85568 2013-08-06] ()
S4 CyberLink PowerDVD 11.0 Monitor Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [77576 2014-02-12] (CyberLink)
S4 CyberLink PowerDVD 11.0 Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [294664 2014-02-12] (CyberLink)
R2 dlbk_device; C:\Windows\system32\dlbkcoms.exe [538096 2007-04-05] ( )
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915784 2014-09-17] (NVIDIA Corporation)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [113632 2016-06-27] (SurfRight B.V.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18044744 2014-09-17] (NVIDIA Corporation)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [33088 2015-11-04] ()
R2 RealTimes Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1095976 2016-01-09] (RealNetworks, Inc.)
S4 SRS_VolSync_Service; C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe [70880 2009-04-07] (SRS Labs, Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
S3 TuneUp.Defrag; C:\Windows\System32\TuneUpDefragService.exe [360192 2012-06-09] (TuneUp Software)
R2 TuneUp.ProgramStatisticsSvc; C:\Windows\System32\TUProgSt.exe [603904 2012-06-09] (TuneUp Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Afc; C:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [32896 2012-05-17] (AnvSoft Inc.) [Fichier non signé]
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032 2014-04-09] (Wondershare)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3265536 2014-06-05] (Qualcomm Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [118240 2016-09-27] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [140272 2016-09-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-05-19] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [60088 2016-06-02] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [28568 2016-09-27] (Avira Operations GmbH & Co. KG)
S3 dvd43llh; C:\Windows\System32\DRIVERS\dvd43llh.sys [18816 2014-07-11] (RIF) [Fichier non signé]
R3 FLxHCIc; C:\Windows\System32\DRIVERS\FLxHCIc.sys [208552 2014-11-12] (Fresco Logic)
R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [61608 2014-11-12] (Fresco Logic)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2010-06-14] () [Fichier non signé]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-05-01] (Glarysoft Ltd)
S3 GUMHFilters; C:\Program Files\Glarysoft\Malware Hunter\Native\winxp_x86\GUMHFilter.sys [25792 2016-09-18] (GlarySoft Ltd)
R1 GUSBootStartup; C:\Windows\System32\drivers\GUSBootStartup.sys [17472 2016-08-02] (Glarysoft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
R2 ntk_PowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys [71664 2013-08-06] (Cyberlink Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2014-11-22] (NVIDIA Corporation)
R3 RSUSBSTOR; C:\Windows\System32\Drivers\RtsUStor.sys [190464 2012-08-24] (Realtek Semiconductor Corp.) [Fichier non signé]
S3 SCREAMINGBDRIVER; C:\Windows\System32\drivers\ScreamingBAudio.sys [34896 2012-07-31] (Screaming Bee LLC)
S3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [139776 2013-10-25] (Prolific Technology Inc.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1759872 2012-03-05] ()
R3 SRS_PremiumSound_Service; C:\Windows\System32\drivers\srs_PremiumSound_i386.sys [233128 2009-04-01] ()
S3 ssm_bus; C:\Windows\System32\DRIVERS\ssm_bus.sys [58320 2005-08-30] (MCCI)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [32296 2016-06-14] (The OpenVPN Project)
S3 tapwp01; C:\Windows\System32\DRIVERS\tapwp01.sys [35288 2015-04-30] (The OpenVPN Project)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-10-07] ()
S3 VASDeviceDrm; C:\Windows\System32\drivers\vasdDev.sys [1451312 2012-03-19] (ShiningMorning Inc.)
R3 WsAudioDevice_383; C:\Windows\System32\drivers\WsAudioDevice_383.sys [25632 2015-02-02] (Wondershare)
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
S4 LMIRfsClientNP; pas de ImagePath
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Fichier non signé]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-10-13 10:56 - 2016-10-13 12:02 - 00000000 ____D C:\FRST
2016-10-12 22:17 - 2016-10-12 22:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-10-12 22:17 - 2016-09-27 16:46 - 00028568 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2016-10-06 20:08 - 2016-10-06 20:08 - 00000000 ____D C:\Program Files\Common Files\Skype
2016-10-02 15:14 - 2016-10-13 10:50 - 00000000 ____D C:\Users\Jean\AppData\Roaming\vlc
2016-10-02 15:14 - 2016-10-02 15:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-10-02 10:42 - 2016-10-02 10:42 - 00000218 _____ C:\Users\Jean\.recently-used.xbel
2016-10-01 21:08 - 2016-10-12 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2016-10-01 21:08 - 2016-10-01 21:08 - 00002102 _____ C:\Users\Public\Desktop\Google Earth.lnk
2016-09-30 22:25 - 2016-10-02 15:13 - 00000000 ____D C:\Program Files\VideoLAN
2016-09-23 22:38 - 2016-09-23 23:00 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-09-21 10:08 - 2016-08-05 17:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-09-14 23:22 - 2016-09-01 20:41 - 00346320 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-09-14 23:22 - 2016-09-01 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-09-14 23:22 - 2016-09-01 05:17 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-09-14 23:22 - 2016-09-01 05:08 - 20312064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-09-14 23:22 - 2016-09-01 04:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-09-14 23:22 - 2016-09-01 04:46 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-09-14 23:22 - 2016-09-01 04:46 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-09-14 23:22 - 2016-09-01 04:46 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-09-14 23:22 - 2016-09-01 04:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-09-14 23:22 - 2016-09-01 04:34 - 02286592 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-09-14 23:22 - 2016-09-01 04:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-09-14 23:22 - 2016-09-01 04:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-09-14 23:22 - 2016-09-01 04:26 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-09-14 23:22 - 2016-09-01 04:24 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-09-14 23:22 - 2016-09-01 04:24 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-09-14 23:22 - 2016-09-01 04:24 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-09-14 23:22 - 2016-09-01 04:23 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-09-14 23:22 - 2016-09-01 04:14 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-09-14 23:22 - 2016-09-01 04:08 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-09-14 23:22 - 2016-09-01 03:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-09-14 23:22 - 2016-09-01 03:57 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-09-14 23:22 - 2016-09-01 03:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-09-14 23:22 - 2016-09-01 03:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-09-14 23:22 - 2016-09-01 03:48 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-09-14 23:22 - 2016-09-01 03:45 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-09-14 23:22 - 2016-09-01 03:34 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-09-14 23:22 - 2016-09-01 03:31 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-09-14 23:22 - 2016-09-01 03:30 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-09-14 23:22 - 2016-09-01 03:29 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-09-14 23:22 - 2016-09-01 03:29 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-09-14 23:22 - 2016-09-01 03:27 - 13808128 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-09-14 23:22 - 2016-09-01 03:24 - 04607488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-09-14 23:22 - 2016-09-01 02:43 - 02445824 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-09-14 23:22 - 2016-09-01 02:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-09-14 23:22 - 2016-09-01 02:38 - 01316352 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-09-14 22:39 - 2016-09-02 17:21 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-09-14 22:39 - 2016-09-02 17:21 - 03944680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-09-14 22:39 - 2016-09-02 17:21 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-09-14 22:39 - 2016-09-02 17:21 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-09-14 22:39 - 2016-09-02 17:18 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-09-14 22:39 - 2016-09-02 16:53 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-09-14 22:39 - 2016-09-02 16:53 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-09-14 22:39 - 2016-09-02 16:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-09-14 22:39 - 2016-09-02 16:53 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-09-14 22:39 - 2016-09-02 16:53 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-09-14 22:39 - 2016-09-02 16:51 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-09-14 22:39 - 2016-09-02 16:49 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-09-14 22:39 - 2016-09-02 16:49 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-09-14 22:39 - 2016-09-02 16:49 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-09-14 22:39 - 2016-09-02 16:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-09-14 22:39 - 2016-09-02 16:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-09-14 22:39 - 2016-09-02 16:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-09-14 22:39 - 2016-09-02 16:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-09-14 22:36 - 2016-08-06 17:15 - 00581632 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-09-14 22:32 - 2016-08-16 04:48 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-09-14 22:32 - 2016-08-16 04:28 - 02399232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-09-14 22:32 - 2016-08-12 18:21 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-09-14 22:32 - 2016-08-12 18:21 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-09-14 22:32 - 2016-08-12 18:21 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-10-13 11:38 - 2015-10-16 09:24 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-13 11:04 - 2014-06-05 18:05 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3954560266-2712325161-3536269069-1001UA.job
2016-10-13 11:04 - 2012-03-04 00:20 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-13 08:09 - 2015-10-15 19:34 - 00000000 ____D C:\Users\Jean\AppData\Roaming\MPC-HC
2016-10-13 08:09 - 2014-05-06 21:52 - 00000000 ____D C:\Users\Jean\AppData\Local\CrashDumps
2016-10-13 08:08 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-10-13 08:06 - 2014-12-11 16:03 - 00000000 ____D C:\Users\Jean\AppData\Roaming\ZHP
2016-10-13 08:04 - 2012-03-01 23:57 - 00000000 ____D C:\Users\Jean\AppData\Local\Google
2016-10-13 04:09 - 2013-08-15 13:50 - 00000000 ____D C:\Windows\system32\MRT
2016-10-13 03:11 - 2012-03-05 10:28 - 141042968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-13 03:06 - 2012-03-03 10:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-13 03:05 - 2012-03-03 10:10 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 02:09 - 2015-07-28 01:17 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-12 22:39 - 2014-11-28 19:18 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-10-12 22:39 - 2014-11-28 19:18 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-10-12 22:38 - 2012-03-03 19:27 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-12 22:16 - 2016-06-02 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-10-12 22:04 - 2014-06-05 18:05 - 00001022 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3954560266-2712325161-3536269069-1001Core.job
2016-10-12 22:04 - 2012-03-04 00:20 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-12 21:47 - 2012-03-01 23:44 - 00000000 ____D C:\Users\Jean
2016-10-12 21:32 - 2009-07-14 06:34 - 00022464 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-12 21:32 - 2009-07-14 06:34 - 00022464 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-12 21:26 - 2015-10-03 00:44 - 00001002 _____ C:\Windows\Tasks\Google Software Updater.job
2016-10-12 21:26 - 2012-03-03 19:30 - 00000000 ____D C:\ProgramData\Google Updater
2016-10-12 21:20 - 2012-03-04 20:20 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-12 21:20 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-12 21:19 - 2016-02-17 01:30 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-10-12 21:19 - 2015-01-18 16:04 - 00000000 ____D C:\Users\Jean\AppData\LocalLow\COMODO
2016-10-12 21:19 - 2014-10-14 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2016-10-12 21:19 - 2014-10-14 10:41 - 00000000 ____D C:\Program Files\Glary Utilities 5
2016-10-12 21:19 - 2014-05-30 12:31 - 00000000 ____D C:\ProgramData\RogueKiller
2016-10-12 21:19 - 2012-11-23 12:44 - 00000000 ____D C:\Program Files\TeamViewer
2016-10-12 21:19 - 2012-04-25 09:07 - 00000000 ____D C:\Users\Jean\AppData\Roaming\Mozilla
2016-10-12 21:19 - 2012-03-11 12:27 - 00000000 ____D C:\Users\LogMeInRemoteUser
2016-10-12 21:19 - 2012-03-05 17:49 - 00000000 ____D C:\Users\UpdatusUser
2016-10-12 21:19 - 2012-03-05 16:09 - 00000000 ____D C:\Users\Jean\AppData\Roaming\dvdcss
2016-10-12 21:19 - 2012-03-04 00:43 - 00000000 ____D C:\Users\Jean\AppData\Roaming\IrfanView
2016-10-12 21:16 - 2014-11-16 18:32 - 00000000 ____D C:\Users\Jean\AppData\Roaming\Skype
2016-10-12 21:16 - 2012-04-25 09:07 - 00000000 ____D C:\Users\Jean\AppData\Local\Mozilla
2016-10-12 21:16 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2016-10-12 21:15 - 2012-03-17 20:40 - 00000000 ____D C:\ProgramData\Real
2016-10-07 20:30 - 2012-11-11 18:50 - 00000000 ____D C:\Users\Jean\AppData\Local\Spotify
2016-10-07 20:27 - 2012-11-11 18:50 - 00000000 ____D C:\Users\Jean\AppData\Roaming\Spotify
2016-10-07 13:27 - 2012-03-18 18:23 - 00000000 ____D C:\Users\Jean\AppData\Roaming\uTorrent
2016-10-07 13:23 - 2016-02-22 14:41 - 00000000 ____D C:\AdwCleaner
2016-10-07 07:14 - 2014-05-30 12:32 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-10-06 20:08 - 2014-11-16 18:31 - 00000000 ____D C:\ProgramData\Skype
2016-10-06 10:48 - 2012-03-01 23:47 - 01684992 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-06 10:48 - 2009-07-14 10:39 - 00753444 _____ C:\Windows\system32\perfh00C.dat
2016-10-06 10:48 - 2009-07-14 10:39 - 00152180 _____ C:\Windows\system32\perfc00C.dat
2016-10-03 16:10 - 2015-02-05 16:51 - 00000000 ____D C:\Users\Jean\AppData\LocalLow\Adblock Plus for IE
2016-10-02 10:40 - 2015-08-07 14:31 - 00000000 ____D C:\Users\Jean\AppData\Roaming\gtk-2.0
2016-09-30 23:26 - 2016-03-09 17:56 - 00000000 ____D C:\FFOutput
2016-09-30 22:16 - 2016-08-14 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-09-28 19:21 - 2009-07-14 06:53 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-09-27 16:46 - 2013-08-25 16:39 - 00140272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-09-27 16:46 - 2013-08-25 16:39 - 00118240 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-09-22 21:59 - 2012-11-23 12:49 - 00000000 ____D C:\Users\Jean\AppData\Roaming\TeamViewer
2016-09-22 21:53 - 2014-10-14 10:42 - 00001054 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2016-09-20 14:17 - 2016-07-26 18:45 - 00000998 _____ C:\Users\Public\Desktop\Avira Phantom VPN.lnk
2016-09-20 08:26 - 2016-08-02 16:29 - 00001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malware Hunter.lnk
2016-09-15 09:37 - 2015-03-16 10:54 - 00343352 _____ C:\Windows\system32\FNTCACHE.DAT
==================== Fichiers à la racine de certains dossiers =======
2015-02-26 16:05 - 2015-02-26 23:15 - 0000453 _____ () C:\Users\Jean\AppData\Roaming\burnaware.ini
2014-02-10 16:43 - 2014-02-10 16:47 - 0000038 _____ () C:\Users\Jean\AppData\Roaming\mbam.context.scan
2012-06-10 08:32 - 2012-07-28 09:38 - 0000041 _____ () C:\Users\Jean\AppData\Roaming\Offre.ini
2013-08-15 16:13 - 2013-08-15 16:51 - 0000033 _____ () C:\Users\Jean\AppData\Roaming\pcouffin.log
2014-12-23 00:57 - 2014-12-23 01:17 - 0016952 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\1eaadjc.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0018724 ____T () C:\Users\Jean\AppData\Roaming\Microsoft\bass.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0014392 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\kfgresk.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0013984 ____T () C:\Users\Jean\AppData\Roaming\Microsoft\mjcriu.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0010808 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\peaadje.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0026200 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\Jean\AppData\Roaming\Microsoft\qwadjb.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0015416 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\rsaadjd.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0098360 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\~DFK377adec.tmp
2015-12-04 00:18 - 2016-08-19 19:45 - 0000130 _____ () C:\Users\Jean\AppData\Local\1f6e5d065d976f04453dfe1f4a62c1b5
2015-06-05 17:43 - 2015-12-04 00:17 - 0000130 _____ () C:\Users\Jean\AppData\Local\22457798ca993df6610f05e825d893dd
2014-03-04 18:25 - 2014-04-08 23:52 - 0000129 _____ () C:\Users\Jean\AppData\Local\4254df77b767eb9623f741d5d989ce69
2014-04-09 11:57 - 2015-06-04 22:46 - 0000130 _____ () C:\Users\Jean\AppData\Local\af6ae2fd29896b691ca1cd90c0d1db97
2014-02-25 13:47 - 2014-02-25 13:47 - 0000129 _____ () C:\Users\Jean\AppData\Local\c3fb2e0daf2464bc38cab89b62fecb81
2012-05-03 05:04 - 2015-12-11 19:09 - 0050688 _____ () C:\Users\Jean\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-29 18:16 - 2014-02-14 11:13 - 0000130 _____ () C:\Users\Jean\AppData\Local\f3a88aa165b2b5161945bbb3e7f4be70
2014-10-02 22:22 - 2014-10-02 22:22 - 0004096 ____H () C:\Users\Jean\AppData\Local\keyfile3.drm
2015-03-12 01:00 - 2015-03-12 01:00 - 0002358 _____ () C:\Users\Jean\AppData\Local\recently-used.xbel
2013-04-18 00:26 - 2013-04-19 09:23 - 0000040 ___SH () C:\ProgramData\.zreglib
2012-03-04 12:22 - 2016-04-06 21:27 - 0001534 _____ () C:\ProgramData\ss.ini
Certains fichiers dans TEMP:
====================
C:\Users\Jean\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-11-20 01:31
==================== Fin de FRST.txt ============================
Exécuté par Jean (administrateur) sur JEAN-PC (13-10-2016 12:02:09)
Exécuté depuis d:\Users\Jean\Desktop
Profils chargés: Jean & LogMeInRemoteUser & (Profils disponibles: Jean & LogMeInRemoteUser)
Platform: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\VPN\Avira.VpnService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
( ) C:\Windows\System32\dlbkcoms.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TuneUp Software) C:\Windows\System32\TUProgSt.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Google Inc.) C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Windows (R) Win 7 DDK provider) C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\i386_host\FLxHCIm.exe
() C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
() C:\Program Files\Unlocker\UnlockerAssistant.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Glarysoft Ltd) C:\Program Files\Glarysoft\Malware Hunter\mhtray.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files\Bitdefender\Tools\BDAntiRansomware\BDAntiRansomware.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Farbar) D:\Users\Jean\Desktop\FRST(1).exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [917584 2016-09-27] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [FLxHCIm] => C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\i386_host\FLxHCIm.exe [51880 2014-11-12] (Windows (R) Win 7 DDK provider)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-08-19] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [RealDownloader] => C:\Program Files\RealNetworks\RealDownloader\downloader2.exe [714992 2016-07-05] ()
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [164152 2016-07-05] (Apple Inc.)
HKLM\...\Run: [MalTray] => C:\Program Files\Glarysoft\Malware Hunter\mhtray.exe [896976 2016-09-19] (Glarysoft Ltd)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Run: [SRS Premium Sound] => C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe [3405048 2009-04-07] (SRS Labs, Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [43984 2016-09-05] (Glarysoft Ltd)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Run: [Google Update] => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [SRS Premium Sound] => C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe [3405048 2009-04-07] (SRS Labs, Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [43984 2016-09-05] (Glarysoft Ltd)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [DAEMON Tools Lite] => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [Google Update] => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2012-03-03] (Google Inc.)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\...\MountPoints2: {5f2c9a78-63e6-11e1-90a9-806e6f6e6963} - F:\Launch.exe
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\...\Run: [SpybotSD TeaTimer] => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
BootExecute: autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{4D114B56-2355-4A3D-B7B6-B371A368E1D9}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{5224E64F-6714-414F-AF77-AF1C41A0050C}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{D66F9140-567D-4DF5-8D5A-F71790AE5023}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-3954560266-2712325161-3536269069-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/
HKU\S-1-5-21-3954560266-2712325161-3536269069-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131101102546442961&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-3954560266-2712325161-3536269069-1004\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
URLSearchHook: HKU\S-1-5-21-3954560266-2712325161-3536269069-1004 - (Pas de nom) - {1392b8d2-5c05-419f-a8f6-b9f15a596612} - Pas de fichier
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3954560266-2712325161-3536269069-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2015-11-04] (RealDownloader)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
IE Session Restore: HKU\S-1-5-21-3954560266-2712325161-3536269069-1001 -> est activé.
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1003 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1004 -> Pas de nom - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - Pas de fichier
Toolbar: HKU\S-1-5-21-3954560266-2712325161-3536269069-1004 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.)
DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} hxxp://fichiers2.touslesdrivers.com/maconfig/MaConfig_6_0_1_1.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2016-07-22] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Jean\AppData\Roaming\Mozilla\Firefox\Profiles\x1rdc04d.default-1446027287243 [non trouvé(e)]
FF DefaultProfile: jgyid5li.default-1464698548685
FF ProfilePath: C:\Users\Jean\AppData\Roaming\Mozilla\Firefox\Profiles\jgyid5li.default-1464698548685 [2016-10-13]
FF Extension: (Adblock Plus) - C:\Users\Jean\AppData\Roaming\Mozilla\Firefox\Profiles\jgyid5li.default-1464698548685\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-13]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-12] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2016-08-25] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-07-02] (NVIDIA Corporation)
FF Plugin: @pack.google.com/Google Updater;version=11 -> C:\Program Files\Google\Google Updater\2.1.850.19570\npCIDetect11.dll [2012-03-03] (Google)
FF Plugin: @real.com/nppl3260;version=18.1.2.175 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2016-01-09] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=18.1.2.175 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2016-01-09] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3954560266-2712325161-3536269069-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Jean\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2014-06-06] (Google)
FF Plugin HKU\S-1-5-21-3954560266-2712325161-3536269069-1001: @talk.google.com/O1DPlugin -> C:\Users\Jean\AppData\Roaming\Mozilla\plugins\npo1d.dll [2014-06-06] (Google)
FF Plugin HKU\S-1-5-21-3954560266-2712325161-3536269069-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Jean\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin ProgramFiles/Appdata: C:\Users\Jean\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2014-06-06] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Jean\AppData\Roaming\mozilla\plugins\npo1d.dll [2014-06-06] (Google)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2016-06-28]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default [2016-10-13]
CHR Extension: (Adblock Plus) - C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-09]
CHR Extension: (Recherche Google) - C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-02]
CHR Extension: (Google Wallet) - C:\Users\Jean\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28]
CHR HKLM\...\Chrome\Extension: [mjcnhgdodmhnpmndnljbmafpgomahfal] -
StartMenuInternet: Google Chrome.HXFAFJ367XVODPTXAFIFQ5NIPU - C:\Users\Jean\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [804928 2011-02-01] (Acronis)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2012-03-03] (Acronis)
S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [1086040 2016-09-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [475232 2016-09-27] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [475232 2016-09-27] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1489240 2016-09-27] (Avira Operations GmbH & Co. KG)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-15] (ASUS)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [324304 2016-08-19] (Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files\Avira\VPN\Avira.VpnService.exe [256488 2016-08-31] (Avira Operations GmbH & Co. KG)
S4 CLHNServiceForPowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [85568 2013-08-06] ()
S4 CyberLink PowerDVD 11.0 Monitor Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [77576 2014-02-12] (CyberLink)
S4 CyberLink PowerDVD 11.0 Service; C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [294664 2014-02-12] (CyberLink)
R2 dlbk_device; C:\Windows\system32\dlbkcoms.exe [538096 2007-04-05] ( )
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915784 2014-09-17] (NVIDIA Corporation)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [113632 2016-06-27] (SurfRight B.V.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18044744 2014-09-17] (NVIDIA Corporation)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [33088 2015-11-04] ()
R2 RealTimes Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1095976 2016-01-09] (RealNetworks, Inc.)
S4 SRS_VolSync_Service; C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe [70880 2009-04-07] (SRS Labs, Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
S3 TuneUp.Defrag; C:\Windows\System32\TuneUpDefragService.exe [360192 2012-06-09] (TuneUp Software)
R2 TuneUp.ProgramStatisticsSvc; C:\Windows\System32\TUProgSt.exe [603904 2012-06-09] (TuneUp Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Afc; C:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [32896 2012-05-17] (AnvSoft Inc.) [Fichier non signé]
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [26032 2014-04-09] (Wondershare)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3265536 2014-06-05] (Qualcomm Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [118240 2016-09-27] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [140272 2016-09-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-05-19] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [60088 2016-06-02] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [28568 2016-09-27] (Avira Operations GmbH & Co. KG)
S3 dvd43llh; C:\Windows\System32\DRIVERS\dvd43llh.sys [18816 2014-07-11] (RIF) [Fichier non signé]
R3 FLxHCIc; C:\Windows\System32\DRIVERS\FLxHCIc.sys [208552 2014-11-12] (Fresco Logic)
R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [61608 2014-11-12] (Fresco Logic)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2010-06-14] () [Fichier non signé]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-05-01] (Glarysoft Ltd)
S3 GUMHFilters; C:\Program Files\Glarysoft\Malware Hunter\Native\winxp_x86\GUMHFilter.sys [25792 2016-09-18] (GlarySoft Ltd)
R1 GUSBootStartup; C:\Windows\System32\drivers\GUSBootStartup.sys [17472 2016-08-02] (Glarysoft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
R2 ntk_PowerDVD; C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys [71664 2013-08-06] (Cyberlink Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2014-11-22] (NVIDIA Corporation)
R3 RSUSBSTOR; C:\Windows\System32\Drivers\RtsUStor.sys [190464 2012-08-24] (Realtek Semiconductor Corp.) [Fichier non signé]
S3 SCREAMINGBDRIVER; C:\Windows\System32\drivers\ScreamingBAudio.sys [34896 2012-07-31] (Screaming Bee LLC)
S3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [139776 2013-10-25] (Prolific Technology Inc.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1759872 2012-03-05] ()
R3 SRS_PremiumSound_Service; C:\Windows\System32\drivers\srs_PremiumSound_i386.sys [233128 2009-04-01] ()
S3 ssm_bus; C:\Windows\System32\DRIVERS\ssm_bus.sys [58320 2005-08-30] (MCCI)
S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI)
S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation)
S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [32296 2016-06-14] (The OpenVPN Project)
S3 tapwp01; C:\Windows\System32\DRIVERS\tapwp01.sys [35288 2015-04-30] (The OpenVPN Project)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-10-07] ()
S3 VASDeviceDrm; C:\Windows\System32\drivers\vasdDev.sys [1451312 2012-03-19] (ShiningMorning Inc.)
R3 WsAudioDevice_383; C:\Windows\System32\drivers\WsAudioDevice_383.sys [25632 2015-02-02] (Wondershare)
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]
S4 LMIRfsClientNP; pas de ImagePath
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Fichier non signé]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-10-13 10:56 - 2016-10-13 12:02 - 00000000 ____D C:\FRST
2016-10-12 22:17 - 2016-10-12 22:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-10-12 22:17 - 2016-09-27 16:46 - 00028568 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2016-10-06 20:08 - 2016-10-06 20:08 - 00000000 ____D C:\Program Files\Common Files\Skype
2016-10-02 15:14 - 2016-10-13 10:50 - 00000000 ____D C:\Users\Jean\AppData\Roaming\vlc
2016-10-02 15:14 - 2016-10-02 15:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-10-02 10:42 - 2016-10-02 10:42 - 00000218 _____ C:\Users\Jean\.recently-used.xbel
2016-10-01 21:08 - 2016-10-12 21:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2016-10-01 21:08 - 2016-10-01 21:08 - 00002102 _____ C:\Users\Public\Desktop\Google Earth.lnk
2016-09-30 22:25 - 2016-10-02 15:13 - 00000000 ____D C:\Program Files\VideoLAN
2016-09-23 22:38 - 2016-09-23 23:00 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-09-21 10:08 - 2016-08-05 17:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-09-14 23:22 - 2016-09-01 20:41 - 00346320 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-09-14 23:22 - 2016-09-01 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-09-14 23:22 - 2016-09-01 05:17 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-09-14 23:22 - 2016-09-01 05:08 - 20312064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-09-14 23:22 - 2016-09-01 04:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-09-14 23:22 - 2016-09-01 04:46 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-09-14 23:22 - 2016-09-01 04:46 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-09-14 23:22 - 2016-09-01 04:46 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-09-14 23:22 - 2016-09-01 04:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-09-14 23:22 - 2016-09-01 04:34 - 02286592 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-09-14 23:22 - 2016-09-01 04:31 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-09-14 23:22 - 2016-09-01 04:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-09-14 23:22 - 2016-09-01 04:26 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-09-14 23:22 - 2016-09-01 04:24 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-09-14 23:22 - 2016-09-01 04:24 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-09-14 23:22 - 2016-09-01 04:24 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-09-14 23:22 - 2016-09-01 04:23 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-09-14 23:22 - 2016-09-01 04:14 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-09-14 23:22 - 2016-09-01 04:08 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-09-14 23:22 - 2016-09-01 03:59 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-09-14 23:22 - 2016-09-01 03:57 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-09-14 23:22 - 2016-09-01 03:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-09-14 23:22 - 2016-09-01 03:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-09-14 23:22 - 2016-09-01 03:48 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-09-14 23:22 - 2016-09-01 03:45 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-09-14 23:22 - 2016-09-01 03:34 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-09-14 23:22 - 2016-09-01 03:31 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-09-14 23:22 - 2016-09-01 03:30 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-09-14 23:22 - 2016-09-01 03:29 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-09-14 23:22 - 2016-09-01 03:29 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-09-14 23:22 - 2016-09-01 03:27 - 13808128 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-09-14 23:22 - 2016-09-01 03:24 - 04607488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-09-14 23:22 - 2016-09-01 02:43 - 02445824 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-09-14 23:22 - 2016-09-01 02:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-09-14 23:22 - 2016-09-01 02:38 - 01316352 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-09-14 22:39 - 2016-09-02 17:21 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-09-14 22:39 - 2016-09-02 17:21 - 03944680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-09-14 22:39 - 2016-09-02 17:21 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-09-14 22:39 - 2016-09-02 17:21 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-09-14 22:39 - 2016-09-02 17:18 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-09-14 22:39 - 2016-09-02 17:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-09-14 22:39 - 2016-09-02 16:53 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-09-14 22:39 - 2016-09-02 16:53 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-09-14 22:39 - 2016-09-02 16:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-09-14 22:39 - 2016-09-02 16:53 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-09-14 22:39 - 2016-09-02 16:53 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-09-14 22:39 - 2016-09-02 16:51 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-09-14 22:39 - 2016-09-02 16:49 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-09-14 22:39 - 2016-09-02 16:49 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-09-14 22:39 - 2016-09-02 16:49 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-09-14 22:39 - 2016-09-02 16:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-09-14 22:39 - 2016-09-02 16:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-09-14 22:39 - 2016-09-02 16:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-09-14 22:39 - 2016-09-02 16:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-09-14 22:36 - 2016-08-06 17:15 - 00581632 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-09-14 22:32 - 2016-08-16 04:48 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-09-14 22:32 - 2016-08-16 04:28 - 02399232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-09-14 22:32 - 2016-08-12 18:21 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-09-14 22:32 - 2016-08-12 18:21 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-09-14 22:32 - 2016-08-12 18:21 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-10-13 11:38 - 2015-10-16 09:24 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-13 11:04 - 2014-06-05 18:05 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3954560266-2712325161-3536269069-1001UA.job
2016-10-13 11:04 - 2012-03-04 00:20 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-13 08:09 - 2015-10-15 19:34 - 00000000 ____D C:\Users\Jean\AppData\Roaming\MPC-HC
2016-10-13 08:09 - 2014-05-06 21:52 - 00000000 ____D C:\Users\Jean\AppData\Local\CrashDumps
2016-10-13 08:08 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-10-13 08:06 - 2014-12-11 16:03 - 00000000 ____D C:\Users\Jean\AppData\Roaming\ZHP
2016-10-13 08:04 - 2012-03-01 23:57 - 00000000 ____D C:\Users\Jean\AppData\Local\Google
2016-10-13 04:09 - 2013-08-15 13:50 - 00000000 ____D C:\Windows\system32\MRT
2016-10-13 03:11 - 2012-03-05 10:28 - 141042968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-13 03:06 - 2012-03-03 10:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-13 03:05 - 2012-03-03 10:10 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 02:09 - 2015-07-28 01:17 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-12 22:39 - 2014-11-28 19:18 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-10-12 22:39 - 2014-11-28 19:18 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-10-12 22:38 - 2012-03-03 19:27 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-12 22:16 - 2016-06-02 09:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-10-12 22:04 - 2014-06-05 18:05 - 00001022 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3954560266-2712325161-3536269069-1001Core.job
2016-10-12 22:04 - 2012-03-04 00:20 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-12 21:47 - 2012-03-01 23:44 - 00000000 ____D C:\Users\Jean
2016-10-12 21:32 - 2009-07-14 06:34 - 00022464 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-12 21:32 - 2009-07-14 06:34 - 00022464 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-12 21:26 - 2015-10-03 00:44 - 00001002 _____ C:\Windows\Tasks\Google Software Updater.job
2016-10-12 21:26 - 2012-03-03 19:30 - 00000000 ____D C:\ProgramData\Google Updater
2016-10-12 21:20 - 2012-03-04 20:20 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-12 21:20 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-12 21:19 - 2016-02-17 01:30 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-10-12 21:19 - 2015-01-18 16:04 - 00000000 ____D C:\Users\Jean\AppData\LocalLow\COMODO
2016-10-12 21:19 - 2014-10-14 10:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2016-10-12 21:19 - 2014-10-14 10:41 - 00000000 ____D C:\Program Files\Glary Utilities 5
2016-10-12 21:19 - 2014-05-30 12:31 - 00000000 ____D C:\ProgramData\RogueKiller
2016-10-12 21:19 - 2012-11-23 12:44 - 00000000 ____D C:\Program Files\TeamViewer
2016-10-12 21:19 - 2012-04-25 09:07 - 00000000 ____D C:\Users\Jean\AppData\Roaming\Mozilla
2016-10-12 21:19 - 2012-03-11 12:27 - 00000000 ____D C:\Users\LogMeInRemoteUser
2016-10-12 21:19 - 2012-03-05 17:49 - 00000000 ____D C:\Users\UpdatusUser
2016-10-12 21:19 - 2012-03-05 16:09 - 00000000 ____D C:\Users\Jean\AppData\Roaming\dvdcss
2016-10-12 21:19 - 2012-03-04 00:43 - 00000000 ____D C:\Users\Jean\AppData\Roaming\IrfanView
2016-10-12 21:16 - 2014-11-16 18:32 - 00000000 ____D C:\Users\Jean\AppData\Roaming\Skype
2016-10-12 21:16 - 2012-04-25 09:07 - 00000000 ____D C:\Users\Jean\AppData\Local\Mozilla
2016-10-12 21:16 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2016-10-12 21:15 - 2012-03-17 20:40 - 00000000 ____D C:\ProgramData\Real
2016-10-07 20:30 - 2012-11-11 18:50 - 00000000 ____D C:\Users\Jean\AppData\Local\Spotify
2016-10-07 20:27 - 2012-11-11 18:50 - 00000000 ____D C:\Users\Jean\AppData\Roaming\Spotify
2016-10-07 13:27 - 2012-03-18 18:23 - 00000000 ____D C:\Users\Jean\AppData\Roaming\uTorrent
2016-10-07 13:23 - 2016-02-22 14:41 - 00000000 ____D C:\AdwCleaner
2016-10-07 07:14 - 2014-05-30 12:32 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-10-06 20:08 - 2014-11-16 18:31 - 00000000 ____D C:\ProgramData\Skype
2016-10-06 10:48 - 2012-03-01 23:47 - 01684992 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-06 10:48 - 2009-07-14 10:39 - 00753444 _____ C:\Windows\system32\perfh00C.dat
2016-10-06 10:48 - 2009-07-14 10:39 - 00152180 _____ C:\Windows\system32\perfc00C.dat
2016-10-03 16:10 - 2015-02-05 16:51 - 00000000 ____D C:\Users\Jean\AppData\LocalLow\Adblock Plus for IE
2016-10-02 10:40 - 2015-08-07 14:31 - 00000000 ____D C:\Users\Jean\AppData\Roaming\gtk-2.0
2016-09-30 23:26 - 2016-03-09 17:56 - 00000000 ____D C:\FFOutput
2016-09-30 22:16 - 2016-08-14 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-09-28 19:21 - 2009-07-14 06:53 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-09-27 16:46 - 2013-08-25 16:39 - 00140272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-09-27 16:46 - 2013-08-25 16:39 - 00118240 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-09-22 21:59 - 2012-11-23 12:49 - 00000000 ____D C:\Users\Jean\AppData\Roaming\TeamViewer
2016-09-22 21:53 - 2014-10-14 10:42 - 00001054 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2016-09-20 14:17 - 2016-07-26 18:45 - 00000998 _____ C:\Users\Public\Desktop\Avira Phantom VPN.lnk
2016-09-20 08:26 - 2016-08-02 16:29 - 00001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malware Hunter.lnk
2016-09-15 09:37 - 2015-03-16 10:54 - 00343352 _____ C:\Windows\system32\FNTCACHE.DAT
==================== Fichiers à la racine de certains dossiers =======
2015-02-26 16:05 - 2015-02-26 23:15 - 0000453 _____ () C:\Users\Jean\AppData\Roaming\burnaware.ini
2014-02-10 16:43 - 2014-02-10 16:47 - 0000038 _____ () C:\Users\Jean\AppData\Roaming\mbam.context.scan
2012-06-10 08:32 - 2012-07-28 09:38 - 0000041 _____ () C:\Users\Jean\AppData\Roaming\Offre.ini
2013-08-15 16:13 - 2013-08-15 16:51 - 0000033 _____ () C:\Users\Jean\AppData\Roaming\pcouffin.log
2014-12-23 00:57 - 2014-12-23 01:17 - 0016952 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\1eaadjc.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0018724 ____T () C:\Users\Jean\AppData\Roaming\Microsoft\bass.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0014392 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\kfgresk.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0013984 ____T () C:\Users\Jean\AppData\Roaming\Microsoft\mjcriu.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0010808 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\peaadje.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0026200 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\Jean\AppData\Roaming\Microsoft\qwadjb.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0015416 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\rsaadjd.dll
2014-12-23 00:57 - 2014-12-23 01:17 - 0098360 ____T (Un4seen Developments) C:\Users\Jean\AppData\Roaming\Microsoft\~DFK377adec.tmp
2015-12-04 00:18 - 2016-08-19 19:45 - 0000130 _____ () C:\Users\Jean\AppData\Local\1f6e5d065d976f04453dfe1f4a62c1b5
2015-06-05 17:43 - 2015-12-04 00:17 - 0000130 _____ () C:\Users\Jean\AppData\Local\22457798ca993df6610f05e825d893dd
2014-03-04 18:25 - 2014-04-08 23:52 - 0000129 _____ () C:\Users\Jean\AppData\Local\4254df77b767eb9623f741d5d989ce69
2014-04-09 11:57 - 2015-06-04 22:46 - 0000130 _____ () C:\Users\Jean\AppData\Local\af6ae2fd29896b691ca1cd90c0d1db97
2014-02-25 13:47 - 2014-02-25 13:47 - 0000129 _____ () C:\Users\Jean\AppData\Local\c3fb2e0daf2464bc38cab89b62fecb81
2012-05-03 05:04 - 2015-12-11 19:09 - 0050688 _____ () C:\Users\Jean\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-29 18:16 - 2014-02-14 11:13 - 0000130 _____ () C:\Users\Jean\AppData\Local\f3a88aa165b2b5161945bbb3e7f4be70
2014-10-02 22:22 - 2014-10-02 22:22 - 0004096 ____H () C:\Users\Jean\AppData\Local\keyfile3.drm
2015-03-12 01:00 - 2015-03-12 01:00 - 0002358 _____ () C:\Users\Jean\AppData\Local\recently-used.xbel
2013-04-18 00:26 - 2013-04-19 09:23 - 0000040 ___SH () C:\ProgramData\.zreglib
2012-03-04 12:22 - 2016-04-06 21:27 - 0001534 _____ () C:\ProgramData\ss.ini
Certains fichiers dans TEMP:
====================
C:\Users\Jean\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-11-20 01:31
==================== Fin de FRST.txt ============================