Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-02-2017
Exécuté par Yvon (administrateur) sur YVON-PC (27-02-2017 11:14:05)
Exécuté depuis C:\Users\Yvon\Downloads
Profils chargés: Yvon (Profils disponibles: Yvon)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe
(Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Learnpulse) C:\Users\Yvon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(© 2015 Microsoft Corporation) C:\Users\Yvon\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GlassWire.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Hewlett-Packard) C:\Program Files (x86)\hp\Digital Imaging\bin\HpqSRmon.exe
(Chicony Electronics Co., Ltd.) C:\Windows\SysWOW64\DVAPTray.exe
(SPAMfighter ApS) C:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
(SPAMfighter ApS) C:\Program Files (x86)\Fighters\SPAMfighter\x64\LiveKitLoader64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GWIdlMon.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
() C:\Program Files (x86)\Photodex\ProShow Producer\scsiaccess.exe
(SPAMfighter ApS) C:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(PeerBlock, LLC) C:\Program Files\PeerBlock\peerblock.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610360 2009-07-08] ()
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3834112 2009-09-26] (O&O Software GmbH)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1803664 2016-06-07] (NVIDIA Corporation)
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1275176 2012-11-07] (Druide informatique inc.)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1130280 2012-11-07] (Druide informatique inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-02-27] (AVAST Software)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\SSMMgr.exe [536576 2008-09-03] ()
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795672 2014-11-04] (CyberLink Corp.)
HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1444880 2015-11-20] (Easybits)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150016 2008-08-20] (Hewlett-Packard)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2017-01-13] (Apple Inc.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DVAPTray] => C:\Windows\SysWOW64\DVAPTray.exe [192512 2011-03-11] (Chicony Electronics Co., Ltd.)
HKLM-x32\...\Run: [sfagent] => C:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe [1050808 2016-09-16] (SPAMfighter ApS)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [Screenpresso] => C:\Users\Yvon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [12713704 2017-02-19] (Learnpulse)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1407912 2017-01-16] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [BingSvc] => C:\Users\Yvon\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [GlassWire] => C:\Program Files (x86)\GlassWire\glasswire.exe [5788112 2016-12-26] (SecureMix LLC)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\MountPoints2: {1ea1ac8e-ffb4-11e5-aaf9-90e6ba13f37b} - K:\DVAP.exe
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\MountPoints2: {7660ff76-0569-11e6-817d-90e6ba13f37b} - K:\MAXON-Start.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1407912 2017-01-16] (Garmin Ltd. or its subsidiaries)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-27] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-27] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.conf [2016-11-26] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.conf.bak [2016-11-26] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.exe [2014-01-14] (PeerBlock, LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.log [2016-11-26] ()
BootExecute: autocheck autochk * OODBS
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{9FC0B26F-CB3E-4E14-AB6A-65C55739A35E}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-442115570-3910113752-282759261-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-442115570-3910113752-282759261-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {79888F49-D950-4EB2-B17D-680EE9747485} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM -> {D31377E4-55BC-47C3-8E99-9CA88FA3A9EA} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKLM-x32 -> {79888F49-D950-4EB2-B17D-680EE9747485} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM-x32 -> {D31377E4-55BC-47C3-8E99-9CA88FA3A9EA} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {1717832A-AFF5-4920-9A11-E0AA82304923} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {79888F49-D950-4EB2-B17D-680EE9747485} URL =
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {9108B3F6-7109-4351-BD61-6230B5890B55} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {D31377E4-55BC-47C3-8E99-9CA88FA3A9EA} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-27] (AVAST Software)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25] (Eyeo GmbH)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-17] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-27] (AVAST Software)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-17] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25] (Eyeo GmbH)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
FireFox:
========
FF ProfilePath: C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227 [2017-02-27]
FF Extension: (Module d'Antidote) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\antidote7_win_firefox_103@druide.com [2017-02-18] [non signé]
FF Extension: (LavaFox V2-Blue) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\djziggy@gmail.com [2017-02-17]
FF Extension: (Video DownloadHelper) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-02-17]
FF Extension: (Adblock Plus) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-02-17]
FF Extension: (Bitdefender QuickScan) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2017-02-26]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\features\{5a21125a-ad8b-4950-a6f6-256afda0e545}\disableSHA1rollout@mozilla.org.xpi [2017-02-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-02-27]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-02-26]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-06-12] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\AVAST Software\Avast\pam\FF
FF Extension: (Avast Passwords) - C:\Program Files\AVAST Software\Avast\pam\FF [2017-02-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-02-11] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-02-11] ()
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-17] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-17] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2015-02-09] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-12-21] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npnul32.dll [2011-03-20] (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-branding.js [2011-03-19]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-l10n.js [2011-03-19]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox.js [2011-03-19]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\reporter.js [2011-03-19]
Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default [2017-02-27]
CHR Extension: (Google Drive) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-03]
CHR Extension: (YouTube) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-10]
CHR Extension: (Adblock Plus) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-15]
CHR Extension: (Recherche Google) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-03]
CHR Extension: (Avast Passwords) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-02-16]
CHR Extension: (Avast SafePrice) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-20]
CHR Extension: (Avast Online Security) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR HKU\S-1-5-21-442115570-3910113752-282759261-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-12-21]
CHR HKLM-x32\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7142136 2017-02-27] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-27] (AVAST Software)
S3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1345880 2015-08-06] (Disc Soft Ltd)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Fichier non signé]
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1039376 2017-01-16] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-03-30] (NVIDIA Corporation)
R2 GlassWire; C:\Program Files (x86)\GlassWire\GWCtlSrv.exe [4393936 2016-12-26] (SecureMix LLC)
R2 HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [124928 2009-07-09] (Hewlett-Packard) [Fichier non signé]
S3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Fichier non signé]
R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-05-18] (Hewlett-Packard Company) [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-03-30] (NVIDIA Corporation)
R2 O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2290432 2009-09-26] (O&O Software GmbH)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2401264 2017-01-22] (IBM Corp.)
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760 2015-02-09] ()
R2 SPAMfighter Update Service; C:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe [216760 2016-09-16] (SPAMfighter ApS)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [125888 2010-09-14] (SlySoft, Inc.)
S3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [125888 2010-09-14] (SlySoft, Inc.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [309784 2017-02-27] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-02-27] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334600 2017-02-27] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-02-27] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-02-27] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32088 2017-02-27] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [126088 2017-02-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [100640 2017-02-27] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [74680 2017-02-27] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [991496 2017-02-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [547904 2017-02-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162528 2017-02-27] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [337080 2017-02-27] (AVAST Software)
S3 CV2K1; C:\Windows\System32\DRIVERS\cv2k1.sys [21608 2012-10-06] (TamoSoft)
S2 DgiVecp; C:\Windows\SysWOW64\Drivers\DgiVecp.sys [41984 2008-01-10] (Samsung Electronics Co., Ltd.) [Fichier non signé]
R3 dtultrascsibus; C:\Windows\System32\DRIVERS\dtultrascsibus.sys [30264 2016-01-18] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\DRIVERS\dtultrausbbus.sys [47160 2016-01-18] (Disc Soft Ltd)
R1 gwdrv; C:\Windows\System32\DRIVERS\gwdrv.sys [33248 2015-05-29] (SecureMix LLC)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-04-30] ()
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [380872 2017-01-22] (IBM Corp.)
R1 RapportCerberus_1804047; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1804047.sys [1264776 2017-02-07] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [580648 2017-01-22] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [250728 2017-01-22] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [504456 2017-01-22] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [603464 2017-01-22] (IBM Corp.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2015-05-19] (Anchorfree Inc.)
R3 TSCOMM; C:\Windows\System32\DRIVERS\tscomm.sys [47304 2014-04-01] (TamoSoft)
S3 TsVlb; C:\Windows\System32\DRIVERS\tsvlb.sys [22120 2012-10-06] (TamoSoft)
R1 TsVp; C:\Windows\System32\DRIVERS\tsvp.sys [26256 2012-10-06] (TamoSoft)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [14464 2015-01-27] (Western Digital Technologies) [Fichier non signé]
R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-11-04] (CyberLink Corp.)
U4 vsserv; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-27 11:14 - 2017-02-27 11:14 - 00031969 _____ C:\Users\Yvon\Downloads\FRST.txt
2017-02-27 11:13 - 2017-02-27 11:14 - 00000000 ____D C:\FRST
2017-02-27 11:13 - 2017-02-27 11:13 - 02423296 _____ (Farbar) C:\Users\Yvon\Downloads\FRST64.exe
2017-02-27 01:15 - 2017-02-27 01:15 - 00028567 _____ C:\ProgramData\agent.1488154446.bdinstall.bin
2017-02-27 01:13 - 2017-02-27 01:13 - 00028462 _____ C:\ProgramData\agent.1488153403.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 00275447 _____ C:\ProgramData\1488151344.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 00028695 _____ C:\ProgramData\agent.1488151935.bdinstall.bin
2017-02-27 00:27 - 2017-02-27 00:27 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-02-27 00:22 - 2017-02-27 00:32 - 00000000 ____D C:\Program Files\Bitdefender
2017-02-27 00:22 - 2017-02-27 00:22 - 00000000 ____D C:\ProgramData\Bitdefender
2017-02-27 00:20 - 2017-02-27 00:20 - 00024815 _____ C:\ProgramData\1488151231.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 00029964 _____ C:\ProgramData\agent.update.1488151127.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 00008293 _____ C:\ProgramData\1488151149.bdinstall.bin
2017-02-27 00:13 - 2017-02-27 00:13 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-02-27 00:13 - 2017-02-27 00:07 - 00334600 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-02-27 00:13 - 2017-02-27 00:07 - 00309784 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-02-27 00:13 - 2017-02-27 00:07 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-02-27 00:13 - 2017-02-27 00:07 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-02-27 00:12 - 2017-02-27 00:11 - 00398408 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-02-27 00:10 - 2017-02-27 00:10 - 05154304 _____ C:\Users\Yvon\Downloads\WindowsDefender.msi
2017-02-27 00:07 - 2017-02-27 00:07 - 00003640 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2017-02-27 00:05 - 2017-02-27 00:05 - 00028931 _____ C:\ProgramData\agent.1488150289.bdinstall.bin
2017-02-27 00:01 - 2017-02-27 00:01 - 00024743 _____ C:\ProgramData\1488150110.bdinstall.bin
2017-02-26 23:54 - 2017-02-26 23:54 - 00024743 _____ C:\ProgramData\1488149632.bdinstall.bin
2017-02-26 20:24 - 2017-02-27 11:02 - 00000000 ____D C:\Program Files\Bitdefender Agent
2017-02-26 20:24 - 2017-02-26 20:24 - 00042456 _____ C:\ProgramData\1488137081.bdinstall.bin
2017-02-26 20:24 - 2017-02-26 20:24 - 00024431 _____ C:\ProgramData\1488137093.bdinstall.bin
2017-02-26 20:24 - 2017-02-26 20:24 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2017-02-26 20:23 - 2017-02-26 20:24 - 06324336 _____ C:\Users\Yvon\Downloads\bitdefender_isecurity_qs.exe
2017-02-23 20:26 - 2017-02-23 20:26 - 01201256 _____ (Adobe Systems Incorporated) C:\Users\Yvon\Downloads\flashplayer24au_ha_install(1).exe
2017-02-17 20:50 - 2017-02-17 20:50 - 32854184 _____ (Tweaking.com) C:\Users\Yvon\Downloads\tweaking.com_windows_repair_aio_setup_3.9.25.exe
2017-02-17 15:54 - 2017-02-17 15:54 - 00245616 _____ C:\Users\Yvon\Downloads\Firefox Setup Stub 51.0.1 (2).exe
2017-02-17 15:53 - 2017-02-17 15:53 - 00245616 _____ C:\Users\Yvon\Downloads\Firefox Setup Stub 51.0.1 (1).exe
2017-02-17 15:52 - 2017-02-17 15:52 - 00245616 _____ C:\Users\Yvon\Downloads\Firefox Setup Stub 51.0.1.exe
2017-02-17 15:46 - 2017-02-17 15:46 - 00000000 ____D C:\Users\Yvon\Documents\Anciennes données de Firefox
2017-02-15 22:43 - 2017-02-15 22:44 - 09579594 _____ C:\Users\Yvon\Downloads\Outlook-Signal-Spam-2003-2007-2010-2013--32-64-bits.zip
2017-02-15 21:08 - 2017-02-15 21:08 - 126195051 _____ C:\Users\Yvon\Downloads\Tuto photodex version 6 en francais.mp4
2017-02-15 21:05 - 2017-02-15 21:19 - 00000000 ____D C:\Users\Yvon\Documents\Proshow Tutos
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Weddings
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Wedding Memories MediaSource
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Vintage
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Transition Pack vol
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Escapes
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Color Album
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Brush-Transition
2017-02-15 20:40 - 2017-02-16 11:14 - 00000000 ____D C:\Users\Yvon\Downloads\rgb manuela-07
2017-02-15 20:40 - 2017-02-16 11:14 - 00000000 ____D C:\Users\Yvon\Downloads\5185
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\theatergangbang-full
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\StylePack vol
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\rgb marina-03
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\rgb dana-02
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\proshow stylepack weddings
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Grunge 2
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Grunge 1
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Grunge
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\4068 0 mp4 1080s
2017-02-15 20:40 - 2017-02-15 20:40 - 00000000 ____D C:\Users\Yvon\Downloads\Photodex ProShow Producer Gold v4 52 3053 StylePack GFXTRA
2017-02-15 20:40 - 2017-02-15 20:40 - 00000000 ____D C:\Users\Yvon\Downloads\fdg-MF200467 1
2017-02-15 20:34 - 2017-02-15 20:34 - 01201256 _____ (Adobe Systems Incorporated) C:\Users\Yvon\Downloads\flashplayer24au_ha_install.exe
2017-02-15 19:54 - 2017-02-15 19:54 - 00007233 _____ C:\Users\Yvon\Downloads\Crossover.zip
2017-02-15 19:53 - 2017-02-15 19:53 - 00006482 _____ C:\Users\Yvon\Downloads\Barn Doors.zip
2017-02-15 19:51 - 2017-02-15 19:51 - 00022747 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 014.zip
2017-02-15 19:51 - 2017-02-15 19:51 - 00015790 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 007.zip
2017-02-15 19:51 - 2017-02-15 19:51 - 00012270 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 010.zip
2017-02-15 19:50 - 2017-02-15 19:50 - 01224090 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 001.zip
2017-02-15 19:50 - 2017-02-15 19:50 - 00146059 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 002.zip
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 40
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 39
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 38
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 37
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 28
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 27
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 26
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 25
2017-02-15 19:35 - 2017-02-15 19:35 - 00000000 ____D C:\Users\Yvon\Downloads\PSSG by Softpk
2017-02-15 19:34 - 2017-02-15 19:35 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 32
2017-02-15 19:34 - 2017-02-15 19:34 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 31
2017-02-15 19:34 - 2017-02-15 19:34 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 30
2017-02-15 19:34 - 2017-02-15 19:34 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 29
2017-02-15 19:25 - 2016-12-29 13:43 - 00133056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-02-15 19:25 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-02-15 19:25 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2017-02-15 19:25 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-02-15 19:25 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2017-02-15 19:23 - 2016-12-29 14:06 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-15 17:54 - 2017-02-15 17:54 - 00003506 _____ C:\Windows\System32\Tasks\{835C172B-B19F-41E8-B2DE-512E637C462C}
2017-02-15 17:29 - 2017-02-15 17:29 - 00003246 _____ C:\Windows\System32\Tasks\{95858C97-4CEA-40A0-860F-3B1D5B037C20}
2017-02-15 15:03 - 2017-02-15 15:03 - 08605660 _____ C:\Users\Yvon\Downloads\Flutter Mix Styles.rar
2017-02-15 14:55 - 2017-02-15 14:55 - 62016217 _____ C:\Users\Yvon\Downloads\Transition Pack Volume 2.rar
2017-02-15 14:50 - 2017-02-15 14:50 - 50852621 _____ C:\Users\Yvon\Downloads\ProShow Transition Pack Volume 1.rar
2017-02-15 14:42 - 2017-02-15 14:43 - 159171856 _____ C:\Users\Yvon\Downloads\Style Pack Vintage dinhquanx4.rar
2017-02-15 14:41 - 2017-02-15 14:44 - 322823979 _____ C:\Users\Yvon\Downloads\Effects Pack Portraits.rar
2017-02-15 14:41 - 2017-02-15 14:43 - 298426543 _____ C:\Users\Yvon\Downloads\ProShow_Effects_Sports_Action.rar
2017-02-15 14:41 - 2017-02-15 14:41 - 139093877 _____ C:\Users\Yvon\Downloads\ProShow Effects Pack Volume 6(1).rar
2017-02-15 14:32 - 2017-02-15 14:33 - 00000000 ____D C:\Users\Yvon\Downloads\Proshow Style Photodex Pack 6
2017-02-15 14:32 - 2017-02-15 14:32 - 139093877 _____ C:\Users\Yvon\Downloads\ProShow Effects Pack Volume 6.rar
2017-02-15 14:29 - 2017-02-15 14:30 - 13587009 _____ C:\Users\Yvon\Downloads\Proshow StylePack vol.5.rar
2017-02-15 14:29 - 2017-02-15 14:29 - 23120217 _____ C:\Users\Yvon\Downloads\ProShow StylePack vol.4.rar
2017-02-15 14:27 - 2017-02-15 14:27 - 08790616 _____ C:\Users\Yvon\Downloads\ProShow StylePack vol.2.rar
2017-02-15 13:30 - 2017-02-15 13:59 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Styles
2017-02-15 13:14 - 2017-02-15 13:14 - 00003502 _____ C:\Windows\System32\Tasks\{CFA2F304-F822-4777-808E-3E51E7E993E4}
2017-02-14 17:11 - 2017-02-14 19:28 - 00000000 ____D C:\Users\Yvon\Downloads\Pimmel Bingo 10 Part 4
2017-02-14 16:41 - 2017-02-15 08:57 - 00000000 ____D C:\Users\Yvon\Desktop\Deepwater Horizon 2016 1080p BluRay x264
2017-02-14 16:41 - 2017-02-14 20:56 - 00000000 ____D C:\Users\Yvon\Desktop\Doctor Strange 2016 1080p 264
2017-02-14 14:56 - 2017-02-14 14:56 - 00000000 ____D C:\Users\Yvon\Downloads\unknownFileName
2017-02-14 14:53 - 2017-02-14 14:53 - 00000000 ____D C:\Users\Yvon\Downloads\HJM2TDA1
2017-02-14 12:49 - 2017-02-14 13:54 - 00000000 ____D C:\Users\Yvon\Downloads\FB DoraBukkake
2017-02-12 17:23 - 2017-02-12 17:23 - 00005788 _____ C:\Users\Yvon\Documents\1 sans titre.wav
2017-02-12 11:57 - 2017-02-18 11:47 - 00000000 ____D C:\Users\Yvon\Desktop\Photos_Retouchés
2017-02-12 11:11 - 2017-02-12 13:04 - 00000000 ___RD C:\Users\Yvon\Desktop\100CANON
2017-02-09 10:16 - 2017-02-09 11:43 - 00000000 ____D C:\Users\Yvon\Downloads\Britta - 25 Years Old - - 27-March-2008 -
2017-02-09 10:12 - 2017-02-09 13:31 - 00000000 ____D C:\Users\Yvon\Downloads\Dominika - 21 Years Old - - 05-February-2007 -
2017-01-31 12:52 - 2017-02-10 12:55 - 00000000 ____D C:\Users\Yvon\Desktop\Cdiscount
2017-01-30 18:56 - 2017-01-30 18:56 - 00071796 _____ C:\Users\Yvon\Documents\Résiliation Cdiscount.pdf
2017-01-29 19:17 - 2017-01-29 19:17 - 00001903 _____ C:\Users\Public\Desktop\GlassWire.lnk
2017-01-29 19:17 - 2017-01-29 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GlassWire
2017-01-29 19:17 - 2017-01-29 19:17 - 00000000 ____D C:\Program Files (x86)\GlassWire
2017-01-29 19:17 - 2015-05-29 05:30 - 00008657 _____ C:\Windows\system32\Drivers\gwdrv.cat
2017-01-29 19:17 - 2015-05-29 05:15 - 00033248 _____ (SecureMix LLC) C:\Windows\system32\Drivers\gwdrv.sys
2017-01-29 19:16 - 2017-01-29 19:16 - 30633160 _____ (SecureMix LLC) C:\Users\Yvon\Downloads\GlassWireSetup_1.2.88.exe
2017-01-29 17:02 - 2017-01-29 17:02 - 00000000 ____D C:\Users\Yvon\Downloads\GlassWire 1.2.64b Elite Version - Cracked By {Nick The Greek}
2017-01-29 16:27 - 2017-01-29 16:27 - 04015056 _____ C:\Users\Yvon\Desktop\adwcleaner_6.043.exe
2017-01-28 09:58 - 2017-02-10 23:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-27 11:11 - 2016-11-18 17:51 - 00000000 ____D C:\Users\Yvon\AppData\LocalLow\Mozilla
2017-02-27 09:11 - 2009-07-14 05:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-27 09:11 - 2009-07-14 05:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-27 09:03 - 2016-10-03 20:00 - 00000000 ____D C:\Program Files\PeerBlock
2017-02-27 08:59 - 2015-03-01 09:34 - 01319055 _____ C:\Windows\system32\oodbs.lor
2017-02-27 08:59 - 2015-02-05 10:46 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2017-02-27 08:59 - 2015-02-05 08:54 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-27 08:59 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-27 08:32 - 2016-03-03 16:42 - 00000000 ____D C:\AdwCleaner
2017-02-27 07:20 - 2015-09-24 06:20 - 00000258 _____ C:\Windows\Tasks\CCleanerClean.job
2017-02-27 07:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-27 01:13 - 2016-03-23 08:36 - 00003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458718589
2017-02-27 01:05 - 2015-11-19 13:02 - 00374874 _____ C:\Users\Yvon\AppData\Local\census.cache
2017-02-27 01:05 - 2015-11-19 13:02 - 00127634 _____ C:\Users\Yvon\AppData\Local\ars.cache
2017-02-27 00:54 - 2015-02-05 08:59 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-27 00:27 - 2015-10-04 18:11 - 00000000 ____D C:\Temp
2017-02-27 00:13 - 2015-02-05 09:02 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-02-27 00:11 - 2015-06-03 12:57 - 00162528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-02-27 00:11 - 2015-06-03 12:57 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148815082008104
2017-02-27 00:11 - 2015-02-05 09:02 - 00126088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00100640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00074680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-02-27 00:09 - 2016-03-23 08:36 - 00032088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-02-27 00:09 - 2015-02-05 09:02 - 00991496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-02-26 23:57 - 2016-10-25 21:28 - 00001924 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2017-02-26 21:37 - 2016-04-18 14:57 - 00000000 ____D C:\Users\Yvon\Downloads\Daemon Tools Ultra 4.0.1.0425_Le_Bon
2017-02-26 21:37 - 2016-01-18 09:20 - 00000000 ____D C:\Users\Yvon\Downloads\DAEMON Tools Ultra 4.0.0.0423.0-NEOSOFT
2017-02-26 21:33 - 2015-12-03 22:18 - 00000000 ____D C:\Users\Yvon\Downloads\Steganos Privacy Suite 17.0.3 + Keygen + 100% Working
2017-02-26 21:33 - 2015-12-03 22:15 - 64412863 _____ C:\Users\Yvon\Downloads\Steganos Privacy Suite 17.0.1.zip
2017-02-26 20:17 - 2016-08-09 22:19 - 00000000 ____D C:\Users\Yvon\AppData\Roaming\QuickScan
2017-02-26 19:51 - 2015-11-23 09:05 - 00000000 ____D C:\Users\Yvon\AppData\Local\CrashDumps
2017-02-26 19:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2017-02-26 18:57 - 2015-10-14 06:27 - 00000000 ____D C:\Program Files\CCleaner
2017-02-26 18:55 - 2016-10-20 21:05 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-26 18:04 - 2015-02-13 10:23 - 00000000 ____D C:\Users\Yvon\Downloads\Druide_Téléchargement
2017-02-24 12:09 - 2015-07-21 16:35 - 00000000 ____D C:\Users\Yvon\Documents\1 Terrien_ Discour de Philip Wollen Retirons les Animaux du Menu
2017-02-23 20:23 - 2015-02-04 22:11 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-23 09:54 - 2015-02-05 09:02 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-22 20:01 - 2015-04-08 10:33 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-22 16:45 - 2015-02-05 16:55 - 00000000 ____D C:\Users\Yvon\dwhelper
2017-02-20 16:16 - 2015-02-05 06:57 - 00699662 _____ C:\Windows\system32\perfh00C.dat
2017-02-20 16:16 - 2015-02-05 06:57 - 00132796 _____ C:\Windows\system32\perfc00C.dat
2017-02-20 16:16 - 2009-07-14 06:13 - 01577142 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-20 08:10 - 2016-03-23 16:40 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-02-19 16:27 - 2015-02-05 12:58 - 00000000 ____D C:\Users\Yvon\AppData\Local\Adobe
2017-02-19 16:25 - 2016-03-23 16:40 - 00004054 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-02-19 16:25 - 2015-02-05 16:46 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-02-19 16:25 - 2015-02-05 16:46 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-19 16:25 - 2015-02-05 16:45 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-17 22:00 - 2009-07-14 05:45 - 05270824 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-17 21:55 - 2015-02-05 08:45 - 00178184 _____ C:\Users\Yvon\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-17 21:46 - 2016-11-15 11:56 - 00003160 _____ C:\Windows\System32\Tasks\SidebarExecute
2017-02-17 21:42 - 2009-07-14 03:34 - 00000514 _____ C:\Windows\win.ini
2017-02-17 20:52 - 2016-11-07 17:40 - 00002161 _____ C:\Users\Yvon\Desktop\Tweaking.com - Windows Repair.lnk
2017-02-17 20:52 - 2016-11-07 17:39 - 00003650 _____ C:\Windows\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2017-02-16 14:16 - 2015-02-18 10:02 - 00000000 ____D C:\Users\Yvon\AppData\Local\JDownloader 2.0
2017-02-16 09:28 - 2016-08-08 21:14 - 00000000 ____D C:\Program Files (x86)\Signal Spam
2017-02-15 22:44 - 2016-08-08 21:14 - 00000000 ____D C:\Users\Yvon\Documents\Add-in Express
2017-02-15 22:29 - 2015-02-05 09:04 - 00000000 ____D C:\Program Files\Unlocker
2017-02-15 19:25 - 2015-04-15 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-02-15 19:25 - 2015-02-05 08:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-15 19:23 - 2015-02-05 08:53 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-15 19:23 - 2015-02-05 08:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-15 19:15 - 2015-02-06 08:25 - 00000000 ____D C:\Windows\system32\MRT
2017-02-15 19:04 - 2015-02-06 08:25 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-02-15 17:58 - 2015-02-08 08:29 - 00000000 ____D C:\Program Files (x86)\ProShow MediaSource - Wedding Essentials
2017-02-07 08:03 - 2015-11-05 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Sécurité des points d'accès
2017-02-06 22:42 - 2015-02-05 13:59 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-03 19:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2017-01-31 22:14 - 2016-04-22 21:43 - 00000000 ____D C:\Users\Yvon\Downloads\Johnny Hallyday - De L'Amour (2015)
2017-01-29 18:58 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\Performance
2017-01-29 18:26 - 2009-07-14 03:34 - 00000855 _____ C:\Windows\system32\Drivers\etc\hosts_bak_41
2017-01-29 08:36 - 2015-02-05 09:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
==================== Fichiers à la racine de certains dossiers =======
2015-02-13 18:05 - 2015-02-13 18:05 - 0000034 _____ () C:\Users\Yvon\AppData\Roaming\AdobeWLCMCache.dat
2015-03-09 12:15 - 2015-03-10 17:14 - 0000098 _____ () C:\Users\Yvon\AppData\Roaming\Camdata.ini
2015-03-09 12:15 - 2015-03-10 17:14 - 0000408 _____ () C:\Users\Yvon\AppData\Roaming\CamLayout.ini
2015-03-09 12:15 - 2015-03-10 17:14 - 0000408 _____ () C:\Users\Yvon\AppData\Roaming\CamShapes.ini
2015-03-09 12:15 - 2015-03-10 17:14 - 0004509 _____ () C:\Users\Yvon\AppData\Roaming\CamStudio.cfg
2016-04-11 10:26 - 2016-04-11 17:04 - 0000038 _____ () C:\Users\Yvon\AppData\Roaming\DVAP.set
2015-03-05 16:58 - 2015-12-31 15:43 - 0000132 _____ () C:\Users\Yvon\AppData\Roaming\Préférences Adobe GIF Format CC
2015-03-05 18:01 - 2016-08-02 18:39 - 0000132 _____ () C:\Users\Yvon\AppData\Roaming\Préférences Adobe PNG Format CC
2015-02-13 09:16 - 2016-11-24 10:59 - 0001456 _____ () C:\Users\Yvon\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2015-11-19 13:02 - 2017-02-27 01:05 - 0127634 _____ () C:\Users\Yvon\AppData\Local\ars.cache
2016-10-26 11:19 - 2016-10-26 11:19 - 0000129 _____ () C:\Users\Yvon\AppData\Local\cb5f50515e80384575dfd31798d64ad9
2015-11-19 13:02 - 2017-02-27 01:05 - 0374874 _____ () C:\Users\Yvon\AppData\Local\census.cache
2017-01-16 23:57 - 2017-01-16 23:57 - 0003584 _____ () C:\Users\Yvon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-19 12:35 - 2015-11-19 12:35 - 0000036 _____ () C:\Users\Yvon\AppData\Local\housecall.guid.cache
2016-11-06 15:55 - 2016-11-06 15:55 - 0000017 _____ () C:\Users\Yvon\AppData\Local\resmon.resmoncfg
2016-01-18 13:41 - 2016-01-18 13:47 - 0000080 ___SH () C:\ProgramData\.zreglib
2017-02-26 20:24 - 2017-02-26 20:24 - 0042456 _____ () C:\ProgramData\1488137081.bdinstall.bin
2017-02-26 20:24 - 2017-02-26 20:24 - 0024431 _____ () C:\ProgramData\1488137093.bdinstall.bin
2017-02-26 23:54 - 2017-02-26 23:54 - 0024743 _____ () C:\ProgramData\1488149632.bdinstall.bin
2017-02-27 00:01 - 2017-02-27 00:01 - 0024743 _____ () C:\ProgramData\1488150110.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 0008293 _____ () C:\ProgramData\1488151149.bdinstall.bin
2017-02-27 00:20 - 2017-02-27 00:20 - 0024815 _____ () C:\ProgramData\1488151231.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 0275447 _____ () C:\ProgramData\1488151344.bdinstall.bin
2017-02-27 00:05 - 2017-02-27 00:05 - 0028931 _____ () C:\ProgramData\agent.1488150289.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 0028695 _____ () C:\ProgramData\agent.1488151935.bdinstall.bin
2017-02-27 01:13 - 2017-02-27 01:13 - 0028462 _____ () C:\ProgramData\agent.1488153403.bdinstall.bin
2017-02-27 01:15 - 2017-02-27 01:15 - 0028567 _____ () C:\ProgramData\agent.1488154446.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 0029964 _____ () C:\ProgramData\agent.update.1488151127.bdinstall.bin
2015-03-09 11:53 - 2015-03-09 11:53 - 0005103 _____ () C:\ProgramData\vczcspay.tpu
Certains fichiers dans TEMP:
====================
2017-02-27 04:06 - 2017-02-27 04:06 - 0003584 _____ () C:\Users\Yvon\AppData\Local\Temp\8ju4zurm.dll
2017-02-26 20:22 - 2017-02-26 20:22 - 6324336 _____ () C:\Users\Yvon\AppData\Local\Temp\bitdefender_isecurity_[quickscan].exe
2017-02-26 23:56 - 2017-02-26 23:56 - 1075200 _____ (Opera Software) C:\Users\Yvon\AppData\Local\Temp\safezone_installer_2017226569541.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-22 08:36
==================== Fin de FRST.txt ============================
Exécuté par Yvon (administrateur) sur YVON-PC (27-02-2017 11:14:05)
Exécuté depuis C:\Users\Yvon\Downloads
Profils chargés: Yvon (Profils disponibles: Yvon)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe
(Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Learnpulse) C:\Users\Yvon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(© 2015 Microsoft Corporation) C:\Users\Yvon\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GlassWire.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Hewlett-Packard) C:\Program Files (x86)\hp\Digital Imaging\bin\HpqSRmon.exe
(Chicony Electronics Co., Ltd.) C:\Windows\SysWOW64\DVAPTray.exe
(SPAMfighter ApS) C:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
(SPAMfighter ApS) C:\Program Files (x86)\Fighters\SPAMfighter\x64\LiveKitLoader64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(SecureMix LLC) C:\Program Files (x86)\GlassWire\GWIdlMon.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
() C:\Program Files (x86)\Photodex\ProShow Producer\scsiaccess.exe
(SPAMfighter ApS) C:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(PeerBlock, LLC) C:\Program Files\PeerBlock\peerblock.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610360 2009-07-08] ()
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [3834112 2009-09-26] (O&O Software GmbH)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1803664 2016-06-07] (NVIDIA Corporation)
HKLM\...\Run: [AgentAntidote64] => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1275176 2012-11-07] (Druide informatique inc.)
HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1130280 2012-11-07] (Druide informatique inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-02-27] (AVAST Software)
HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\SSMMgr.exe [536576 2008-09-03] ()
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795672 2014-11-04] (CyberLink Corp.)
HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1444880 2015-11-20] (Easybits)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150016 2008-08-20] (Hewlett-Packard)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2017-01-13] (Apple Inc.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DVAPTray] => C:\Windows\SysWOW64\DVAPTray.exe [192512 2011-03-11] (Chicony Electronics Co., Ltd.)
HKLM-x32\...\Run: [sfagent] => C:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe [1050808 2016-09-16] (SPAMfighter ApS)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [Screenpresso] => C:\Users\Yvon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [12713704 2017-02-19] (Learnpulse)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1407912 2017-01-16] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [BingSvc] => C:\Users\Yvon\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\Run: [GlassWire] => C:\Program Files (x86)\GlassWire\glasswire.exe [5788112 2016-12-26] (SecureMix LLC)
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\MountPoints2: {1ea1ac8e-ffb4-11e5-aaf9-90e6ba13f37b} - K:\DVAP.exe
HKU\S-1-5-21-442115570-3910113752-282759261-1000\...\MountPoints2: {7660ff76-0569-11e6-817d-90e6ba13f37b} - K:\MAXON-Start.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1407912 2017-01-16] (Garmin Ltd. or its subsidiaries)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-27] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-27] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.conf [2016-11-26] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.conf.bak [2016-11-26] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.exe [2014-01-14] (PeerBlock, LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\peerblock.log [2016-11-26] ()
BootExecute: autocheck autochk * OODBS
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Pas de fichier
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{9FC0B26F-CB3E-4E14-AB6A-65C55739A35E}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-442115570-3910113752-282759261-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-442115570-3910113752-282759261-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {79888F49-D950-4EB2-B17D-680EE9747485} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM -> {D31377E4-55BC-47C3-8E99-9CA88FA3A9EA} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKLM-x32 -> {79888F49-D950-4EB2-B17D-680EE9747485} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM-x32 -> {D31377E4-55BC-47C3-8E99-9CA88FA3A9EA} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {1717832A-AFF5-4920-9A11-E0AA82304923} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {79888F49-D950-4EB2-B17D-680EE9747485} URL =
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {9108B3F6-7109-4351-BD61-6230B5890B55} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> {D31377E4-55BC-47C3-8E99-9CA88FA3A9EA} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-02-27] (AVAST Software)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-02-25] (Eyeo GmbH)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-17] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-02-27] (AVAST Software)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-17] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25] (Eyeo GmbH)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-442115570-3910113752-282759261-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems Incorporated)
FireFox:
========
FF ProfilePath: C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227 [2017-02-27]
FF Extension: (Module d'Antidote) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\antidote7_win_firefox_103@druide.com [2017-02-18] [non signé]
FF Extension: (LavaFox V2-Blue) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\djziggy@gmail.com [2017-02-17]
FF Extension: (Video DownloadHelper) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-02-17]
FF Extension: (Adblock Plus) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-02-17]
FF Extension: (Bitdefender QuickScan) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2017-02-26]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Yvon\AppData\Roaming\Mozilla\Firefox\Profiles\5wp5vmsr.default-1487342798227\features\{5a21125a-ad8b-4950-a6f6-256afda0e545}\disableSHA1rollout@mozilla.org.xpi [2017-02-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-02-27]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-02-26]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-06-12] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\AVAST Software\Avast\pam\FF
FF Extension: (Avast Passwords) - C:\Program Files\AVAST Software\Avast\pam\FF [2017-02-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-02-11] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-02-11] ()
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-17] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-17] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2015-02-09] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-12-21] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npnul32.dll [2011-03-20] (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-branding.js [2011-03-19]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox-l10n.js [2011-03-19]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\firefox.js [2011-03-19]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\reporter.js [2011-03-19]
Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default [2017-02-27]
CHR Extension: (Google Drive) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-03]
CHR Extension: (YouTube) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-10]
CHR Extension: (Adblock Plus) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-15]
CHR Extension: (Recherche Google) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-03]
CHR Extension: (Avast Passwords) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-02-16]
CHR Extension: (Avast SafePrice) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-20]
CHR Extension: (Avast Online Security) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Yvon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR HKU\S-1-5-21-442115570-3910113752-282759261-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-12-21]
CHR HKLM-x32\...\Chrome\Extension: [emhginjpijfggbofeediiojmdlmlkoik] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7142136 2017-02-27] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-27] (AVAST Software)
S3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1345880 2015-08-06] (Disc Soft Ltd)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Fichier non signé]
S2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1039376 2017-01-16] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-03-30] (NVIDIA Corporation)
R2 GlassWire; C:\Program Files (x86)\GlassWire\GWCtlSrv.exe [4393936 2016-12-26] (SecureMix LLC)
R2 HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [124928 2009-07-09] (Hewlett-Packard) [Fichier non signé]
S3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Fichier non signé]
R2 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2009-05-18] (Hewlett-Packard Company) [Fichier non signé]
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-03-30] (NVIDIA Corporation)
R2 O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2290432 2009-09-26] (O&O Software GmbH)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2401264 2017-01-22] (IBM Corp.)
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760 2015-02-09] ()
R2 SPAMfighter Update Service; C:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe [216760 2016-09-16] (SPAMfighter ApS)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [125888 2010-09-14] (SlySoft, Inc.)
S3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [125888 2010-09-14] (SlySoft, Inc.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [309784 2017-02-27] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [189768 2017-02-27] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334600 2017-02-27] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [48528 2017-02-27] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-02-27] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32088 2017-02-27] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [126088 2017-02-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [100640 2017-02-27] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [74680 2017-02-27] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [991496 2017-02-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [547904 2017-02-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162528 2017-02-27] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [337080 2017-02-27] (AVAST Software)
S3 CV2K1; C:\Windows\System32\DRIVERS\cv2k1.sys [21608 2012-10-06] (TamoSoft)
S2 DgiVecp; C:\Windows\SysWOW64\Drivers\DgiVecp.sys [41984 2008-01-10] (Samsung Electronics Co., Ltd.) [Fichier non signé]
R3 dtultrascsibus; C:\Windows\System32\DRIVERS\dtultrascsibus.sys [30264 2016-01-18] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\DRIVERS\dtultrausbbus.sys [47160 2016-01-18] (Disc Soft Ltd)
R1 gwdrv; C:\Windows\System32\DRIVERS\gwdrv.sys [33248 2015-05-29] (SecureMix LLC)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-04-30] ()
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [380872 2017-01-22] (IBM Corp.)
R1 RapportCerberus_1804047; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1804047.sys [1264776 2017-02-07] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [580648 2017-01-22] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [250728 2017-01-22] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [504456 2017-01-22] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [603464 2017-01-22] (IBM Corp.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2015-05-19] (Anchorfree Inc.)
R3 TSCOMM; C:\Windows\System32\DRIVERS\tscomm.sys [47304 2014-04-01] (TamoSoft)
S3 TsVlb; C:\Windows\System32\DRIVERS\tsvlb.sys [22120 2012-10-06] (TamoSoft)
R1 TsVp; C:\Windows\System32\DRIVERS\tsvp.sys [26256 2012-10-06] (TamoSoft)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64.sys [14464 2015-01-27] (Western Digital Technologies) [Fichier non signé]
R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [32456 2014-11-04] (CyberLink Corp.)
U4 vsserv; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-27 11:14 - 2017-02-27 11:14 - 00031969 _____ C:\Users\Yvon\Downloads\FRST.txt
2017-02-27 11:13 - 2017-02-27 11:14 - 00000000 ____D C:\FRST
2017-02-27 11:13 - 2017-02-27 11:13 - 02423296 _____ (Farbar) C:\Users\Yvon\Downloads\FRST64.exe
2017-02-27 01:15 - 2017-02-27 01:15 - 00028567 _____ C:\ProgramData\agent.1488154446.bdinstall.bin
2017-02-27 01:13 - 2017-02-27 01:13 - 00028462 _____ C:\ProgramData\agent.1488153403.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 00275447 _____ C:\ProgramData\1488151344.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 00028695 _____ C:\ProgramData\agent.1488151935.bdinstall.bin
2017-02-27 00:27 - 2017-02-27 00:27 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-02-27 00:22 - 2017-02-27 00:32 - 00000000 ____D C:\Program Files\Bitdefender
2017-02-27 00:22 - 2017-02-27 00:22 - 00000000 ____D C:\ProgramData\Bitdefender
2017-02-27 00:20 - 2017-02-27 00:20 - 00024815 _____ C:\ProgramData\1488151231.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 00029964 _____ C:\ProgramData\agent.update.1488151127.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 00008293 _____ C:\ProgramData\1488151149.bdinstall.bin
2017-02-27 00:13 - 2017-02-27 00:13 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-02-27 00:13 - 2017-02-27 00:07 - 00334600 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-02-27 00:13 - 2017-02-27 00:07 - 00309784 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-02-27 00:13 - 2017-02-27 00:07 - 00189768 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-02-27 00:13 - 2017-02-27 00:07 - 00048528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-02-27 00:12 - 2017-02-27 00:11 - 00398408 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-02-27 00:10 - 2017-02-27 00:10 - 05154304 _____ C:\Users\Yvon\Downloads\WindowsDefender.msi
2017-02-27 00:07 - 2017-02-27 00:07 - 00003640 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2017-02-27 00:05 - 2017-02-27 00:05 - 00028931 _____ C:\ProgramData\agent.1488150289.bdinstall.bin
2017-02-27 00:01 - 2017-02-27 00:01 - 00024743 _____ C:\ProgramData\1488150110.bdinstall.bin
2017-02-26 23:54 - 2017-02-26 23:54 - 00024743 _____ C:\ProgramData\1488149632.bdinstall.bin
2017-02-26 20:24 - 2017-02-27 11:02 - 00000000 ____D C:\Program Files\Bitdefender Agent
2017-02-26 20:24 - 2017-02-26 20:24 - 00042456 _____ C:\ProgramData\1488137081.bdinstall.bin
2017-02-26 20:24 - 2017-02-26 20:24 - 00024431 _____ C:\ProgramData\1488137093.bdinstall.bin
2017-02-26 20:24 - 2017-02-26 20:24 - 00000000 ____D C:\ProgramData\Bitdefender Agent
2017-02-26 20:23 - 2017-02-26 20:24 - 06324336 _____ C:\Users\Yvon\Downloads\bitdefender_isecurity_qs.exe
2017-02-23 20:26 - 2017-02-23 20:26 - 01201256 _____ (Adobe Systems Incorporated) C:\Users\Yvon\Downloads\flashplayer24au_ha_install(1).exe
2017-02-17 20:50 - 2017-02-17 20:50 - 32854184 _____ (Tweaking.com) C:\Users\Yvon\Downloads\tweaking.com_windows_repair_aio_setup_3.9.25.exe
2017-02-17 15:54 - 2017-02-17 15:54 - 00245616 _____ C:\Users\Yvon\Downloads\Firefox Setup Stub 51.0.1 (2).exe
2017-02-17 15:53 - 2017-02-17 15:53 - 00245616 _____ C:\Users\Yvon\Downloads\Firefox Setup Stub 51.0.1 (1).exe
2017-02-17 15:52 - 2017-02-17 15:52 - 00245616 _____ C:\Users\Yvon\Downloads\Firefox Setup Stub 51.0.1.exe
2017-02-17 15:46 - 2017-02-17 15:46 - 00000000 ____D C:\Users\Yvon\Documents\Anciennes données de Firefox
2017-02-15 22:43 - 2017-02-15 22:44 - 09579594 _____ C:\Users\Yvon\Downloads\Outlook-Signal-Spam-2003-2007-2010-2013--32-64-bits.zip
2017-02-15 21:08 - 2017-02-15 21:08 - 126195051 _____ C:\Users\Yvon\Downloads\Tuto photodex version 6 en francais.mp4
2017-02-15 21:05 - 2017-02-15 21:19 - 00000000 ____D C:\Users\Yvon\Documents\Proshow Tutos
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Weddings
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Wedding Memories MediaSource
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Vintage
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Transition Pack vol
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Escapes
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Color Album
2017-02-15 20:41 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Brush-Transition
2017-02-15 20:40 - 2017-02-16 11:14 - 00000000 ____D C:\Users\Yvon\Downloads\rgb manuela-07
2017-02-15 20:40 - 2017-02-16 11:14 - 00000000 ____D C:\Users\Yvon\Downloads\5185
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\theatergangbang-full
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\StylePack vol
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\rgb marina-03
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\rgb dana-02
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\proshow stylepack weddings
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Grunge 2
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Grunge 1
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\Grunge
2017-02-15 20:40 - 2017-02-16 11:12 - 00000000 ____D C:\Users\Yvon\Downloads\4068 0 mp4 1080s
2017-02-15 20:40 - 2017-02-15 20:40 - 00000000 ____D C:\Users\Yvon\Downloads\Photodex ProShow Producer Gold v4 52 3053 StylePack GFXTRA
2017-02-15 20:40 - 2017-02-15 20:40 - 00000000 ____D C:\Users\Yvon\Downloads\fdg-MF200467 1
2017-02-15 20:34 - 2017-02-15 20:34 - 01201256 _____ (Adobe Systems Incorporated) C:\Users\Yvon\Downloads\flashplayer24au_ha_install.exe
2017-02-15 19:54 - 2017-02-15 19:54 - 00007233 _____ C:\Users\Yvon\Downloads\Crossover.zip
2017-02-15 19:53 - 2017-02-15 19:53 - 00006482 _____ C:\Users\Yvon\Downloads\Barn Doors.zip
2017-02-15 19:51 - 2017-02-15 19:51 - 00022747 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 014.zip
2017-02-15 19:51 - 2017-02-15 19:51 - 00015790 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 007.zip
2017-02-15 19:51 - 2017-02-15 19:51 - 00012270 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 010.zip
2017-02-15 19:50 - 2017-02-15 19:50 - 01224090 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 001.zip
2017-02-15 19:50 - 2017-02-15 19:50 - 00146059 _____ C:\Users\Yvon\Downloads\Pete's Caption Style 002.zip
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 40
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 39
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 38
2017-02-15 19:42 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 37
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 28
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 27
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 26
2017-02-15 19:41 - 2017-02-15 19:42 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 25
2017-02-15 19:35 - 2017-02-15 19:35 - 00000000 ____D C:\Users\Yvon\Downloads\PSSG by Softpk
2017-02-15 19:34 - 2017-02-15 19:35 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 32
2017-02-15 19:34 - 2017-02-15 19:34 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 31
2017-02-15 19:34 - 2017-02-15 19:34 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 30
2017-02-15 19:34 - 2017-02-15 19:34 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Style Pack vol 29
2017-02-15 19:25 - 2016-12-29 13:43 - 00133056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-02-15 19:25 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-02-15 19:25 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2017-02-15 19:25 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-02-15 19:25 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2017-02-15 19:23 - 2016-12-29 14:06 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-15 17:54 - 2017-02-15 17:54 - 00003506 _____ C:\Windows\System32\Tasks\{835C172B-B19F-41E8-B2DE-512E637C462C}
2017-02-15 17:29 - 2017-02-15 17:29 - 00003246 _____ C:\Windows\System32\Tasks\{95858C97-4CEA-40A0-860F-3B1D5B037C20}
2017-02-15 15:03 - 2017-02-15 15:03 - 08605660 _____ C:\Users\Yvon\Downloads\Flutter Mix Styles.rar
2017-02-15 14:55 - 2017-02-15 14:55 - 62016217 _____ C:\Users\Yvon\Downloads\Transition Pack Volume 2.rar
2017-02-15 14:50 - 2017-02-15 14:50 - 50852621 _____ C:\Users\Yvon\Downloads\ProShow Transition Pack Volume 1.rar
2017-02-15 14:42 - 2017-02-15 14:43 - 159171856 _____ C:\Users\Yvon\Downloads\Style Pack Vintage dinhquanx4.rar
2017-02-15 14:41 - 2017-02-15 14:44 - 322823979 _____ C:\Users\Yvon\Downloads\Effects Pack Portraits.rar
2017-02-15 14:41 - 2017-02-15 14:43 - 298426543 _____ C:\Users\Yvon\Downloads\ProShow_Effects_Sports_Action.rar
2017-02-15 14:41 - 2017-02-15 14:41 - 139093877 _____ C:\Users\Yvon\Downloads\ProShow Effects Pack Volume 6(1).rar
2017-02-15 14:32 - 2017-02-15 14:33 - 00000000 ____D C:\Users\Yvon\Downloads\Proshow Style Photodex Pack 6
2017-02-15 14:32 - 2017-02-15 14:32 - 139093877 _____ C:\Users\Yvon\Downloads\ProShow Effects Pack Volume 6.rar
2017-02-15 14:29 - 2017-02-15 14:30 - 13587009 _____ C:\Users\Yvon\Downloads\Proshow StylePack vol.5.rar
2017-02-15 14:29 - 2017-02-15 14:29 - 23120217 _____ C:\Users\Yvon\Downloads\ProShow StylePack vol.4.rar
2017-02-15 14:27 - 2017-02-15 14:27 - 08790616 _____ C:\Users\Yvon\Downloads\ProShow StylePack vol.2.rar
2017-02-15 13:30 - 2017-02-15 13:59 - 00000000 ____D C:\Users\Yvon\Downloads\ProShow Styles
2017-02-15 13:14 - 2017-02-15 13:14 - 00003502 _____ C:\Windows\System32\Tasks\{CFA2F304-F822-4777-808E-3E51E7E993E4}
2017-02-14 17:11 - 2017-02-14 19:28 - 00000000 ____D C:\Users\Yvon\Downloads\Pimmel Bingo 10 Part 4
2017-02-14 16:41 - 2017-02-15 08:57 - 00000000 ____D C:\Users\Yvon\Desktop\Deepwater Horizon 2016 1080p BluRay x264
2017-02-14 16:41 - 2017-02-14 20:56 - 00000000 ____D C:\Users\Yvon\Desktop\Doctor Strange 2016 1080p 264
2017-02-14 14:56 - 2017-02-14 14:56 - 00000000 ____D C:\Users\Yvon\Downloads\unknownFileName
2017-02-14 14:53 - 2017-02-14 14:53 - 00000000 ____D C:\Users\Yvon\Downloads\HJM2TDA1
2017-02-14 12:49 - 2017-02-14 13:54 - 00000000 ____D C:\Users\Yvon\Downloads\FB DoraBukkake
2017-02-12 17:23 - 2017-02-12 17:23 - 00005788 _____ C:\Users\Yvon\Documents\1 sans titre.wav
2017-02-12 11:57 - 2017-02-18 11:47 - 00000000 ____D C:\Users\Yvon\Desktop\Photos_Retouchés
2017-02-12 11:11 - 2017-02-12 13:04 - 00000000 ___RD C:\Users\Yvon\Desktop\100CANON
2017-02-09 10:16 - 2017-02-09 11:43 - 00000000 ____D C:\Users\Yvon\Downloads\Britta - 25 Years Old - - 27-March-2008 -
2017-02-09 10:12 - 2017-02-09 13:31 - 00000000 ____D C:\Users\Yvon\Downloads\Dominika - 21 Years Old - - 05-February-2007 -
2017-01-31 12:52 - 2017-02-10 12:55 - 00000000 ____D C:\Users\Yvon\Desktop\Cdiscount
2017-01-30 18:56 - 2017-01-30 18:56 - 00071796 _____ C:\Users\Yvon\Documents\Résiliation Cdiscount.pdf
2017-01-29 19:17 - 2017-01-29 19:17 - 00001903 _____ C:\Users\Public\Desktop\GlassWire.lnk
2017-01-29 19:17 - 2017-01-29 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GlassWire
2017-01-29 19:17 - 2017-01-29 19:17 - 00000000 ____D C:\Program Files (x86)\GlassWire
2017-01-29 19:17 - 2015-05-29 05:30 - 00008657 _____ C:\Windows\system32\Drivers\gwdrv.cat
2017-01-29 19:17 - 2015-05-29 05:15 - 00033248 _____ (SecureMix LLC) C:\Windows\system32\Drivers\gwdrv.sys
2017-01-29 19:16 - 2017-01-29 19:16 - 30633160 _____ (SecureMix LLC) C:\Users\Yvon\Downloads\GlassWireSetup_1.2.88.exe
2017-01-29 17:02 - 2017-01-29 17:02 - 00000000 ____D C:\Users\Yvon\Downloads\GlassWire 1.2.64b Elite Version - Cracked By {Nick The Greek}
2017-01-29 16:27 - 2017-01-29 16:27 - 04015056 _____ C:\Users\Yvon\Desktop\adwcleaner_6.043.exe
2017-01-28 09:58 - 2017-02-10 23:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-27 11:11 - 2016-11-18 17:51 - 00000000 ____D C:\Users\Yvon\AppData\LocalLow\Mozilla
2017-02-27 09:11 - 2009-07-14 05:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-27 09:11 - 2009-07-14 05:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-27 09:03 - 2016-10-03 20:00 - 00000000 ____D C:\Program Files\PeerBlock
2017-02-27 08:59 - 2015-03-01 09:34 - 01319055 _____ C:\Windows\system32\oodbs.lor
2017-02-27 08:59 - 2015-02-05 10:46 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2017-02-27 08:59 - 2015-02-05 08:54 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-27 08:59 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-27 08:32 - 2016-03-03 16:42 - 00000000 ____D C:\AdwCleaner
2017-02-27 07:20 - 2015-09-24 06:20 - 00000258 _____ C:\Windows\Tasks\CCleanerClean.job
2017-02-27 07:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-27 01:13 - 2016-03-23 08:36 - 00003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458718589
2017-02-27 01:05 - 2015-11-19 13:02 - 00374874 _____ C:\Users\Yvon\AppData\Local\census.cache
2017-02-27 01:05 - 2015-11-19 13:02 - 00127634 _____ C:\Users\Yvon\AppData\Local\ars.cache
2017-02-27 00:54 - 2015-02-05 08:59 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-27 00:27 - 2015-10-04 18:11 - 00000000 ____D C:\Temp
2017-02-27 00:13 - 2015-02-05 09:02 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-02-27 00:11 - 2015-06-03 12:57 - 00162528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-02-27 00:11 - 2015-06-03 12:57 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00337080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148815082008104
2017-02-27 00:11 - 2015-02-05 09:02 - 00126088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00100640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-02-27 00:11 - 2015-02-05 09:02 - 00074680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-02-27 00:09 - 2016-03-23 08:36 - 00032088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-02-27 00:09 - 2015-02-05 09:02 - 00991496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-02-26 23:57 - 2016-10-25 21:28 - 00001924 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2017-02-26 21:37 - 2016-04-18 14:57 - 00000000 ____D C:\Users\Yvon\Downloads\Daemon Tools Ultra 4.0.1.0425_Le_Bon
2017-02-26 21:37 - 2016-01-18 09:20 - 00000000 ____D C:\Users\Yvon\Downloads\DAEMON Tools Ultra 4.0.0.0423.0-NEOSOFT
2017-02-26 21:33 - 2015-12-03 22:18 - 00000000 ____D C:\Users\Yvon\Downloads\Steganos Privacy Suite 17.0.3 + Keygen + 100% Working
2017-02-26 21:33 - 2015-12-03 22:15 - 64412863 _____ C:\Users\Yvon\Downloads\Steganos Privacy Suite 17.0.1.zip
2017-02-26 20:17 - 2016-08-09 22:19 - 00000000 ____D C:\Users\Yvon\AppData\Roaming\QuickScan
2017-02-26 19:51 - 2015-11-23 09:05 - 00000000 ____D C:\Users\Yvon\AppData\Local\CrashDumps
2017-02-26 19:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2017-02-26 18:57 - 2015-10-14 06:27 - 00000000 ____D C:\Program Files\CCleaner
2017-02-26 18:55 - 2016-10-20 21:05 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-26 18:04 - 2015-02-13 10:23 - 00000000 ____D C:\Users\Yvon\Downloads\Druide_Téléchargement
2017-02-24 12:09 - 2015-07-21 16:35 - 00000000 ____D C:\Users\Yvon\Documents\1 Terrien_ Discour de Philip Wollen Retirons les Animaux du Menu
2017-02-23 20:23 - 2015-02-04 22:11 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-23 09:54 - 2015-02-05 09:02 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-22 20:01 - 2015-04-08 10:33 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-22 16:45 - 2015-02-05 16:55 - 00000000 ____D C:\Users\Yvon\dwhelper
2017-02-20 16:16 - 2015-02-05 06:57 - 00699662 _____ C:\Windows\system32\perfh00C.dat
2017-02-20 16:16 - 2015-02-05 06:57 - 00132796 _____ C:\Windows\system32\perfc00C.dat
2017-02-20 16:16 - 2009-07-14 06:13 - 01577142 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-20 08:10 - 2016-03-23 16:40 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-02-19 16:27 - 2015-02-05 12:58 - 00000000 ____D C:\Users\Yvon\AppData\Local\Adobe
2017-02-19 16:25 - 2016-03-23 16:40 - 00004054 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-02-19 16:25 - 2015-02-05 16:46 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-02-19 16:25 - 2015-02-05 16:46 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-19 16:25 - 2015-02-05 16:45 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-17 22:00 - 2009-07-14 05:45 - 05270824 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-17 21:55 - 2015-02-05 08:45 - 00178184 _____ C:\Users\Yvon\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-17 21:46 - 2016-11-15 11:56 - 00003160 _____ C:\Windows\System32\Tasks\SidebarExecute
2017-02-17 21:42 - 2009-07-14 03:34 - 00000514 _____ C:\Windows\win.ini
2017-02-17 20:52 - 2016-11-07 17:40 - 00002161 _____ C:\Users\Yvon\Desktop\Tweaking.com - Windows Repair.lnk
2017-02-17 20:52 - 2016-11-07 17:39 - 00003650 _____ C:\Windows\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2017-02-16 14:16 - 2015-02-18 10:02 - 00000000 ____D C:\Users\Yvon\AppData\Local\JDownloader 2.0
2017-02-16 09:28 - 2016-08-08 21:14 - 00000000 ____D C:\Program Files (x86)\Signal Spam
2017-02-15 22:44 - 2016-08-08 21:14 - 00000000 ____D C:\Users\Yvon\Documents\Add-in Express
2017-02-15 22:29 - 2015-02-05 09:04 - 00000000 ____D C:\Program Files\Unlocker
2017-02-15 19:25 - 2015-04-15 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-02-15 19:25 - 2015-02-05 08:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-15 19:23 - 2015-02-05 08:53 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-15 19:23 - 2015-02-05 08:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-15 19:15 - 2015-02-06 08:25 - 00000000 ____D C:\Windows\system32\MRT
2017-02-15 19:04 - 2015-02-06 08:25 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-02-15 17:58 - 2015-02-08 08:29 - 00000000 ____D C:\Program Files (x86)\ProShow MediaSource - Wedding Essentials
2017-02-07 08:03 - 2015-11-05 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Sécurité des points d'accès
2017-02-06 22:42 - 2015-02-05 13:59 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-03 19:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2017-01-31 22:14 - 2016-04-22 21:43 - 00000000 ____D C:\Users\Yvon\Downloads\Johnny Hallyday - De L'Amour (2015)
2017-01-29 18:58 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\Performance
2017-01-29 18:26 - 2009-07-14 03:34 - 00000855 _____ C:\Windows\system32\Drivers\etc\hosts_bak_41
2017-01-29 08:36 - 2015-02-05 09:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
==================== Fichiers à la racine de certains dossiers =======
2015-02-13 18:05 - 2015-02-13 18:05 - 0000034 _____ () C:\Users\Yvon\AppData\Roaming\AdobeWLCMCache.dat
2015-03-09 12:15 - 2015-03-10 17:14 - 0000098 _____ () C:\Users\Yvon\AppData\Roaming\Camdata.ini
2015-03-09 12:15 - 2015-03-10 17:14 - 0000408 _____ () C:\Users\Yvon\AppData\Roaming\CamLayout.ini
2015-03-09 12:15 - 2015-03-10 17:14 - 0000408 _____ () C:\Users\Yvon\AppData\Roaming\CamShapes.ini
2015-03-09 12:15 - 2015-03-10 17:14 - 0004509 _____ () C:\Users\Yvon\AppData\Roaming\CamStudio.cfg
2016-04-11 10:26 - 2016-04-11 17:04 - 0000038 _____ () C:\Users\Yvon\AppData\Roaming\DVAP.set
2015-03-05 16:58 - 2015-12-31 15:43 - 0000132 _____ () C:\Users\Yvon\AppData\Roaming\Préférences Adobe GIF Format CC
2015-03-05 18:01 - 2016-08-02 18:39 - 0000132 _____ () C:\Users\Yvon\AppData\Roaming\Préférences Adobe PNG Format CC
2015-02-13 09:16 - 2016-11-24 10:59 - 0001456 _____ () C:\Users\Yvon\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2015-11-19 13:02 - 2017-02-27 01:05 - 0127634 _____ () C:\Users\Yvon\AppData\Local\ars.cache
2016-10-26 11:19 - 2016-10-26 11:19 - 0000129 _____ () C:\Users\Yvon\AppData\Local\cb5f50515e80384575dfd31798d64ad9
2015-11-19 13:02 - 2017-02-27 01:05 - 0374874 _____ () C:\Users\Yvon\AppData\Local\census.cache
2017-01-16 23:57 - 2017-01-16 23:57 - 0003584 _____ () C:\Users\Yvon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-19 12:35 - 2015-11-19 12:35 - 0000036 _____ () C:\Users\Yvon\AppData\Local\housecall.guid.cache
2016-11-06 15:55 - 2016-11-06 15:55 - 0000017 _____ () C:\Users\Yvon\AppData\Local\resmon.resmoncfg
2016-01-18 13:41 - 2016-01-18 13:47 - 0000080 ___SH () C:\ProgramData\.zreglib
2017-02-26 20:24 - 2017-02-26 20:24 - 0042456 _____ () C:\ProgramData\1488137081.bdinstall.bin
2017-02-26 20:24 - 2017-02-26 20:24 - 0024431 _____ () C:\ProgramData\1488137093.bdinstall.bin
2017-02-26 23:54 - 2017-02-26 23:54 - 0024743 _____ () C:\ProgramData\1488149632.bdinstall.bin
2017-02-27 00:01 - 2017-02-27 00:01 - 0024743 _____ () C:\ProgramData\1488150110.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 0008293 _____ () C:\ProgramData\1488151149.bdinstall.bin
2017-02-27 00:20 - 2017-02-27 00:20 - 0024815 _____ () C:\ProgramData\1488151231.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 0275447 _____ () C:\ProgramData\1488151344.bdinstall.bin
2017-02-27 00:05 - 2017-02-27 00:05 - 0028931 _____ () C:\ProgramData\agent.1488150289.bdinstall.bin
2017-02-27 00:32 - 2017-02-27 00:32 - 0028695 _____ () C:\ProgramData\agent.1488151935.bdinstall.bin
2017-02-27 01:13 - 2017-02-27 01:13 - 0028462 _____ () C:\ProgramData\agent.1488153403.bdinstall.bin
2017-02-27 01:15 - 2017-02-27 01:15 - 0028567 _____ () C:\ProgramData\agent.1488154446.bdinstall.bin
2017-02-27 00:19 - 2017-02-27 00:19 - 0029964 _____ () C:\ProgramData\agent.update.1488151127.bdinstall.bin
2015-03-09 11:53 - 2015-03-09 11:53 - 0005103 _____ () C:\ProgramData\vczcspay.tpu
Certains fichiers dans TEMP:
====================
2017-02-27 04:06 - 2017-02-27 04:06 - 0003584 _____ () C:\Users\Yvon\AppData\Local\Temp\8ju4zurm.dll
2017-02-26 20:22 - 2017-02-26 20:22 - 6324336 _____ () C:\Users\Yvon\AppData\Local\Temp\bitdefender_isecurity_[quickscan].exe
2017-02-26 23:56 - 2017-02-26 23:56 - 1075200 _____ (Opera Software) C:\Users\Yvon\AppData\Local\Temp\safezone_installer_2017226569541.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-22 08:36
==================== Fin de FRST.txt ============================