Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2017
Exécuté par Seb (administrateur) sur SEB-PC (11-05-2017 22:23:53)
Exécuté depuis C:\Users\Seb\Desktop
Profils chargés: Seb (Profils disponibles: Seb)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Firefox\Firefox.exe" -osint -url "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
() C:\Program Files (x86)\Explorer\iedvutils.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MSIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(AVAST Software) C:\Users\Seb\AppData\Local\background_fault\aswRD.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11465832 2010-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2122344 2010-09-14] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1894696 2010-01-08] (Synaptics Incorporated)
HKLM\...\Run: [Cm106Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (l'élément de données a 36 caractères en plus).
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-05] (Apple Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [MGSysCtrl] => C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2482176 2010-07-19] (Micro-Star International Co., Ltd.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2011-10-31] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-08-19] (DivX, LLC)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498720 2016-10-01] (Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\Run: [background_fault] => C:\Users\Seb\AppData\Local\background_fault\aswRD.exe [1419576 2017-05-09] (AVAST Software) <===== ATTENTION
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\MountPoints2: {66be70e9-66c4-11e2-85bb-406186b8691f} - H:\LGAutoRun.exe
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
IFEO\taskmgr.exe: [Debugger]
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{5562E00E-0EC9-4A39-85C8-749F541960FC}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{BA91F875-8486-4EA9-B4BC-979C299C6E8F}: [DhcpNameServer] 192.168.75.194 127.0.0.1 192.168.0.194 192.168.0.193 89.2.0.2
Tcpip\..\Interfaces\{DA70963A-163B-4E30-A5FF-BA5CEE570D2D}: [DhcpNameServer] 192.168.1.254
ManualProxies:
Internet Explorer:
==================
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=1494264911&z=6bd73ab229a61ef41dc07bag0z1t4zdo1q9zetag1g&from=che0812&uid=HitachiXHTS725050A9A364_100913PCK404VLKE90LJX
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-f4ad1980&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-f4ad1980&q={searchTerms}
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1633530422-2511851285-4157223326-1000 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-08] (Oracle Corporation)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-08] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {1C11B948-582A-433F-A98D-A8C4D5CC64F2} hxxp://but.2020.net/planner/Core/Player/2020PlayerAX_Win32.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default [2017-05-11]
FF Extension: (MEGA) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\firefox@mega.co.nz.xpi [2015-10-26] [non signé]
FF Extension: (DebrideurStreaming - Add-On) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi [2012-09-26] [non signé]
FF Extension: (Smart Bookmarks Bar) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\smartbookmarksbar@remy.juteau [2011-01-30] [non signé]
FF Extension: (Googlebar Lite) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi [2016-02-15]
FF Extension: (Bitdefender QuickScan) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-10-02]
FF Extension: (wanteeed) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2017-01-24]
FF Extension: (Site Deployment Checker) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\features\{87b1609b-c4ee-4b78-924a-a782896a2dd2}\deployment-checker@mozilla.org.xpi [2017-04-02]
FF SearchPlugin: C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\searchplugins\ourluckysites.xml [2017-04-05]
FF ProfilePath: C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default [2017-05-11]
FF Extension: (SimilarWeb) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-04-18] [non signé]
FF Extension: (FF Adr) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-04-18] [non signé]
FF Extension: (MEGA) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\firefox@mega.co.nz.xpi [2015-10-26] [non signé]
FF Extension: (DebrideurStreaming - Add-On) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi [2012-09-26] [non signé]
FF Extension: (Français Language Pack) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-03-16] [non signé]
FF Extension: (Smart Bookmarks Bar) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\smartbookmarksbar@remy.juteau [2011-01-30] [non signé]
FF Extension: (Googlebar Lite) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi [2016-02-15]
FF Extension: (Bitdefender QuickScan) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-10-02]
FF Extension: (wanteeed) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2017-01-24]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-04-03] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2016-10-15] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [Pas de fichier]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-03-17] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1633530422-2511851285-4157223326-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Seb\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-11-17] (Apple Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.ourluckysites.com/?type=sc&ts=1494264911&z=6bd73ab229a61ef41dc07bag0z1t4zdo1q9zetag1g&from=che0812&uid=HitachiXHTS725050A9A364_100913PCK404VLKE90LJX
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\firefox.js [2017-02-04]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2016-10-01]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Fichier non signé]
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 iedvutils; C:\Program Files (x86)\Explorer\iedvutils.exe [55992 2017-03-01] ()
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\System Control Manager\MSIService.exe [160768 2009-07-10] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 MVCSrv; C:\ProgramData\Package Cache\{0C8D9D70-FA5A-4CA9-763F-D8D93BC099B6}v10.1.14393.795\Installers\Universal_CRT_Tools_x86-x86_en-us.dll [108544 2017-04-05] () [Fichier non signé]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S2 NPASRE; C:\Users\Seb\AppData\Local\NPASRE\Snare.dll [830464 2017-05-10] (InterSect Alliance Pty Ltd) [Fichier non signé]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [455616 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [455616 2016-09-30] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-09-30] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 VNASRE; C:\Users\Seb\AppData\Local\VNASRE\Snare.dll [826368 2017-05-09] (InterSect Alliance Pty Ltd) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WinInstallSvc; C:\ProgramData\Microsoft\AppV\Setup\Integrator.dll [105984 2017-05-08] () [Fichier non signé]
S2 APPLEsvr; C:\ProgramData\Apple\Lockdown\InstallInfo.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-09-26] (Disc Soft Ltd)
S1 hola_net; C:\Windows\System32\DRIVERS\hola_net.sys [85488 2012-12-25] (Hola Networks Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2017-03-05] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-09-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-09-02] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-09-26] (Duplex Secure Ltd.)
U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2013-09-06] (Seiko Epson Corporation)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2010-07-16] (C-Media Electronics Inc)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-11 19:52 - 2017-05-11 20:39 - 00000000 ____D C:\Users\Seb\AppData\Roaming\WinSAPSvc
2017-05-11 19:52 - 2017-05-11 19:52 - 00001991 _____ C:\Users\Seb\Desktop\big_bang_empire.lnk
2017-05-11 19:52 - 2017-05-11 19:52 - 00000000 _____ C:\Windows\SysWOW64\3333333
2017-05-11 19:52 - 2017-05-11 19:52 - 00000000 _____ C:\Windows\SysWOW64\1111111
2017-05-11 19:51 - 2017-05-11 19:52 - 00000000 ____D C:\Users\Seb\AppData\Local\NPASRE
2017-05-11 19:51 - 2017-05-11 19:51 - 00003600 _____ C:\Windows\System32\Tasks\Milimili
2017-05-11 19:51 - 2017-05-11 19:51 - 00000000 _____ C:\Windows\SysWOW64\00
2017-05-11 19:50 - 2017-05-11 20:38 - 00000000 ____D C:\Program Files (x86)\5914A47Etmp
2017-05-11 18:49 - 2017-05-11 18:49 - 02769408 _____ C:\Users\Seb\Desktop\ZHPCleaner.exe
2017-05-11 18:49 - 2017-05-11 18:49 - 00000830 _____ C:\Users\Seb\Desktop\ZHPCleaner.lnk
2017-05-10 21:45 - 2017-05-10 21:49 - 00021662 _____ C:\Users\Seb\Desktop\Fixlog.txt
2017-05-10 21:45 - 2017-05-10 21:45 - 00000000 ____D C:\Users\Seb\Desktop\FRST-OlderVersion
2017-05-09 12:05 - 2017-05-11 19:51 - 00000000 _____ C:\Windows\SysWOW64\1111
2017-05-09 12:05 - 2017-05-10 08:54 - 00000000 ____D C:\Users\Seb\AppData\Local\background_fault
2017-05-09 10:35 - 2017-05-09 10:35 - 00000000 ____D C:\Users\Seb\AppData\Local\VNASRE
2017-05-08 20:25 - 2017-05-11 20:28 - 00000000 ____D C:\Users\Seb\AppData\Local\ZHP
2017-05-08 19:50 - 2017-05-11 19:56 - 00000000 _____ C:\Windows\SysWOW64\22
2017-05-08 19:24 - 2017-05-08 19:24 - 00049036 _____ C:\Users\Seb\Desktop\Addition.txt
2017-05-08 19:04 - 2017-05-08 19:04 - 00000000 ____D C:\Users\Seb\AppData\Local\Bookness
2017-05-08 19:04 - 2017-05-08 19:04 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-08 19:04 - 2017-05-08 19:04 - 00000000 ____D C:\Program Files (x86)\Bookness
2017-05-08 19:03 - 2017-05-08 19:03 - 00000000 ____D C:\Users\Public\Documents\chrome
2017-05-08 18:56 - 2017-05-11 22:24 - 00027104 _____ C:\Users\Seb\Desktop\FRST.txt
2017-05-08 18:55 - 2017-05-11 22:23 - 00000000 ____D C:\FRST
2017-05-08 18:53 - 2017-05-08 18:53 - 02429440 _____ (Farbar) C:\Users\Seb\Downloads\Non confirmé 751130.crdownload
2017-05-08 18:52 - 2017-05-10 21:45 - 02429440 _____ (Farbar) C:\Users\Seb\Desktop\FRST64.exe
2017-05-08 18:15 - 2017-05-11 19:52 - 00001965 _____ C:\Users\Seb\Desktop\BigFarm.lnk
2017-04-23 11:44 - 2017-04-23 11:44 - 00165889 _____ C:\Users\Seb\Downloads\FALL.pdf
2017-04-23 11:31 - 2017-04-23 11:31 - 00438056 _____ C:\Users\Seb\Downloads\Convocation TMD Paris 2017 FR.pdf
2017-04-20 18:16 - 2017-04-20 18:16 - 00000000 _____ C:\Windows\SysWOW64\33
2017-04-20 17:47 - 2017-05-11 19:51 - 00000000 _____ C:\Windows\SysWOW64\11
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-11 21:47 - 2012-04-11 15:37 - 00001088 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1633530422-2511851285-4157223326-1000UA.job
2017-05-11 21:47 - 2012-04-11 15:37 - 00000000 ____D C:\Users\Seb\AppData\Local\Facebook
2017-05-11 20:47 - 2009-07-14 06:45 - 00018928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-11 20:47 - 2009-07-14 06:45 - 00018928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-11 20:46 - 2010-05-12 10:44 - 00750526 _____ C:\Windows\system32\perfh00C.dat
2017-05-11 20:46 - 2010-05-12 10:44 - 00151616 _____ C:\Windows\system32\perfc00C.dat
2017-05-11 20:46 - 2009-07-14 07:13 - 01677476 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-11 20:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-11 20:41 - 2017-03-05 14:24 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2017-05-11 20:38 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-11 20:37 - 2011-01-28 20:12 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Mozilla
2017-05-11 20:37 - 2011-01-27 18:47 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-11 20:35 - 2017-03-05 15:48 - 00003084 _____ C:\Users\Seb\Desktop\ZHPCleaner.txt
2017-05-11 20:35 - 2017-03-05 14:27 - 00000000 ____D C:\Users\Seb\AppData\Roaming\ZHP
2017-05-11 19:52 - 2017-03-16 01:24 - 00000000 _____ C:\Users\Public\Documents\report.dat
2017-05-11 19:52 - 2014-10-20 23:18 - 00001938 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-05-11 19:51 - 2017-03-15 21:25 - 00000000 ____D C:\Program Files (x86)\MIO
2017-05-11 18:21 - 2012-04-11 15:37 - 00001066 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1633530422-2511851285-4157223326-1000Core.job
2017-05-10 22:09 - 2015-11-05 21:41 - 00000000 ____D C:\Users\Seb\AppData\Roaming\YCanPDF
2017-05-10 22:09 - 2013-12-15 19:05 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-10 22:09 - 2013-10-30 19:50 - 00000000 ____D C:\Users\Public\CineForm
2017-05-10 22:09 - 2012-03-14 20:38 - 00000000 ____D C:\Users\Seb\.gimp-2.6
2017-05-10 22:09 - 2011-01-27 19:59 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Adobe
2017-05-10 22:09 - 2010-09-26 16:18 - 00000000 ____D C:\Windows\Panther
2017-05-10 22:09 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\security
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PLA
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\IME
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2017-05-10 22:08 - 2015-08-24 17:51 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Samsung
2017-05-10 22:08 - 2014-03-22 16:34 - 00000000 ____D C:\Users\Seb\AppData\Roaming\TuneUp Software
2017-05-10 22:08 - 2013-12-17 20:52 - 00000000 ____D C:\Users\Seb\AppData\Local\NVIDIA Corporation
2017-05-10 22:08 - 2013-12-17 20:50 - 00000000 ____D C:\Users\Seb\AppData\Local\NVIDIA
2017-05-10 22:08 - 2013-10-31 20:57 - 00000000 ____D C:\Users\Seb\AppData\Local\Plex Media Server
2017-05-10 22:08 - 2013-10-21 20:30 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Epson
2017-05-10 22:08 - 2013-06-04 20:10 - 00000000 ___RD C:\Users\Seb\Google Drive
2017-05-10 22:08 - 2012-09-03 17:57 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Azureus
2017-05-10 22:08 - 2012-08-28 18:14 - 00000000 ____D C:\Program Files (x86)\HP
2017-05-10 22:08 - 2012-08-28 17:58 - 00000000 ___RD C:\Users\Seb\Documents\Scanned Documents
2017-05-10 22:08 - 2012-04-26 20:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-10 22:08 - 2012-04-11 15:45 - 00000000 ____D C:\Users\Seb\Documents\Youcam
2017-05-10 22:08 - 2012-02-28 20:32 - 00000000 ____D C:\Users\Seb\AppData\Roaming\uTorrent
2017-05-10 22:08 - 2011-12-27 14:05 - 00000000 ____D C:\Users\Seb\AppData\Roaming\redsn0w
2017-05-10 22:08 - 2011-05-08 13:42 - 00000000 ____D C:\Users\Seb\AppData\Roaming\dvdcss
2017-05-10 22:08 - 2011-04-12 18:36 - 00000000 ____D C:\Users\Seb\AppData\Local\Songr
2017-05-10 22:08 - 2011-03-05 17:57 - 00000000 ____D C:\Users\Seb\AppData\Roaming\NVIDIA
2017-05-10 22:08 - 2011-02-18 19:42 - 00000000 ____D C:\Users\Seb\AppData\Roaming\DAEMON Tools Lite
2017-05-10 22:08 - 2011-02-05 12:49 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Apple Computer
2017-05-10 22:08 - 2011-02-05 12:49 - 00000000 ____D C:\Users\Seb\AppData\Local\Apple Computer
2017-05-10 22:08 - 2011-02-01 19:55 - 00000000 ____D C:\Users\Seb\AppData\Local\Windows Live
2017-05-10 22:08 - 2011-01-30 21:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2017-05-10 22:08 - 2011-01-30 19:14 - 00000000 ____D C:\Users\Seb\Documents\iphone
2017-05-10 22:08 - 2011-01-28 20:34 - 00000000 ____D C:\Users\Seb\AppData\Roaming\vlc
2017-05-10 22:08 - 2011-01-28 20:12 - 00000000 ____D C:\Users\Seb\AppData\Local\Mozilla
2017-05-10 22:08 - 2011-01-27 19:57 - 00000000 ____D C:\Users\Seb\AppData\Local\Google
2017-05-10 22:08 - 2011-01-27 18:48 - 00000000 ____D C:\Users\Seb
2017-05-10 22:07 - 2016-11-18 19:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-10 22:07 - 2015-03-05 22:50 - 00000000 ____D C:\Program Files\iTunes
2017-05-10 22:07 - 2013-10-21 19:59 - 00000000 ____D C:\Program Files\EpsonNet
2017-05-10 22:07 - 2012-08-28 18:13 - 00000000 ____D C:\HP_ePrint_Mobile
2017-05-10 22:07 - 2010-09-26 16:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-10 22:07 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2017-05-10 22:07 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2017-05-10 22:07 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-05-09 19:15 - 2012-09-20 15:17 - 00004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-05-09 19:15 - 2012-04-11 15:34 - 00803320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-05-09 19:15 - 2011-11-15 18:50 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-09 19:15 - 2011-05-18 18:33 - 00144888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-09 19:15 - 2010-09-26 17:43 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-08 19:04 - 2017-03-01 21:44 - 00002085 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-08 18:11 - 2010-09-26 17:20 - 00000000 ____D C:\Program Files (x86)\Java
2017-05-08 18:09 - 2014-05-08 12:50 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-05-08 18:03 - 2017-02-05 21:00 - 00000000 ____D C:\Program Files (x86)\t5sy9j1d
2017-04-29 11:37 - 2011-03-15 19:35 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-29 11:37 - 2011-03-15 19:35 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-26 21:02 - 2011-01-30 18:07 - 00000000 ____D C:\Users\Seb\Documents\seb
==================== Fichiers à la racine de certains dossiers =======
2017-03-04 13:11 - 2017-03-05 14:16 - 0002172 _____ () C:\Program Files (x86)\metadata
2017-02-04 12:13 - 2017-02-04 12:13 - 1907529 _____ () C:\Users\Seb\AppData\Roaming\Apis.tst
2015-09-26 22:11 - 2015-09-26 22:11 - 0000043 _____ () C:\Users\Seb\AppData\Roaming\WB.CFG
2012-02-01 23:53 - 2012-12-03 21:41 - 0000600 _____ () C:\Users\Seb\AppData\Roaming\winscp.rnd
2011-06-09 20:45 - 2011-06-09 20:45 - 0000000 _____ () C:\Users\Seb\AppData\Local\{1747BA8F-0977-4473-BF0F-2ABAB973BD5B}
2011-07-20 18:57 - 2011-07-20 18:59 - 0000000 _____ () C:\Users\Seb\AppData\Local\{1EC243E4-F597-4DBC-AE00-9036EB54FC1C}
2011-06-09 20:47 - 2011-06-09 20:47 - 0000000 _____ () C:\Users\Seb\AppData\Local\{46C74B05-6DBF-4938-B08F-357BF07062C5}
2011-05-10 18:44 - 2011-05-10 18:44 - 0000000 _____ () C:\Users\Seb\AppData\Local\{A89DA884-A93D-4082-A3D9-2E679AB28BF2}
2011-07-20 19:00 - 2011-07-20 19:00 - 0000000 _____ () C:\Users\Seb\AppData\Local\{C09A68E2-5C0B-4D38-A693-A2EAC612C297}
2015-08-24 17:57 - 2015-08-24 17:57 - 0262474 _____ () C:\ProgramData\1440431774.bdinstall.bin
2012-08-28 18:06 - 2016-04-10 19:55 - 0007592 _____ () C:\ProgramData\hpzinstall.log
Fichiers à déplacer ou supprimer:
====================
C:\Users\Seb\AppData\Local\background_fault\aswRD.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-10 18:47
==================== Fin de FRST.txt ============================
Exécuté par Seb (administrateur) sur SEB-PC (11-05-2017 22:23:53)
Exécuté depuis C:\Users\Seb\Desktop
Profils chargés: Seb (Profils disponibles: Seb)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Firefox\Firefox.exe" -osint -url "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
() C:\Program Files (x86)\Explorer\iedvutils.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MSIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(AVAST Software) C:\Users\Seb\AppData\Local\background_fault\aswRD.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Moncar\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11465832 2010-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2122344 2010-09-14] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1894696 2010-01-08] (Synaptics Incorporated)
HKLM\...\Run: [Cm106Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (l'élément de données a 36 caractères en plus).
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-05] (Apple Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [MGSysCtrl] => C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2482176 2010-07-19] (Micro-Star International Co., Ltd.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2011-10-31] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-08-19] (DivX, LLC)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498720 2016-10-01] (Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\Run: [background_fault] => C:\Users\Seb\AppData\Local\background_fault\aswRD.exe [1419576 2017-05-09] (AVAST Software) <===== ATTENTION
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\...\MountPoints2: {66be70e9-66c4-11e2-85bb-406186b8691f} - H:\LGAutoRun.exe
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
IFEO\taskmgr.exe: [Debugger]
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{5562E00E-0EC9-4A39-85C8-749F541960FC}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{BA91F875-8486-4EA9-B4BC-979C299C6E8F}: [DhcpNameServer] 192.168.75.194 127.0.0.1 192.168.0.194 192.168.0.193 89.2.0.2
Tcpip\..\Interfaces\{DA70963A-163B-4E30-A5FF-BA5CEE570D2D}: [DhcpNameServer] 192.168.1.254
ManualProxies:
Internet Explorer:
==================
HKU\S-1-5-21-1633530422-2511851285-4157223326-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=1494264911&z=6bd73ab229a61ef41dc07bag0z1t4zdo1q9zetag1g&from=che0812&uid=HitachiXHTS725050A9A364_100913PCK404VLKE90LJX
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-f4ad1980&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-f4ad1980&q={searchTerms}
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1633530422-2511851285-4157223326-1000 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-08] (Oracle Corporation)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-08] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-06-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {1C11B948-582A-433F-A98D-A8C4D5CC64F2} hxxp://but.2020.net/planner/Core/Player/2020PlayerAX_Win32.cab
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default [2017-05-11]
FF Extension: (MEGA) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\firefox@mega.co.nz.xpi [2015-10-26] [non signé]
FF Extension: (DebrideurStreaming - Add-On) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi [2012-09-26] [non signé]
FF Extension: (Smart Bookmarks Bar) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\smartbookmarksbar@remy.juteau [2011-01-30] [non signé]
FF Extension: (Googlebar Lite) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi [2016-02-15]
FF Extension: (Bitdefender QuickScan) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-10-02]
FF Extension: (wanteeed) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2017-01-24]
FF Extension: (Site Deployment Checker) - C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\features\{87b1609b-c4ee-4b78-924a-a782896a2dd2}\deployment-checker@mozilla.org.xpi [2017-04-02]
FF SearchPlugin: C:\Users\Seb\AppData\Roaming\Mozilla\Firefox\Profiles\ml19w8s3.default\searchplugins\ourluckysites.xml [2017-04-05]
FF ProfilePath: C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default [2017-05-11]
FF Extension: (SimilarWeb) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-04-18] [non signé]
FF Extension: (FF Adr) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-04-18] [non signé]
FF Extension: (MEGA) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\firefox@mega.co.nz.xpi [2015-10-26] [non signé]
FF Extension: (DebrideurStreaming - Add-On) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi [2012-09-26] [non signé]
FF Extension: (Français Language Pack) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-03-16] [non signé]
FF Extension: (Smart Bookmarks Bar) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\smartbookmarksbar@remy.juteau [2011-01-30] [non signé]
FF Extension: (Googlebar Lite) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi [2016-02-15]
FF Extension: (Bitdefender QuickScan) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-10-02]
FF Extension: (wanteeed) - C:\Users\Seb\AppData\Roaming\Firefox\Firefox\Profiles\ml19w8s3.default\Extensions\{EDB6A15C-5F8C-4531-92FA-98E988CF233C}.xpi [2017-01-24]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-04-03] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2016-10-15] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [Pas de fichier]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-08] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-03-17] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1633530422-2511851285-4157223326-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Seb\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-11-17] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-11-17] (Apple Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.ourluckysites.com/?type=sc&ts=1494264911&z=6bd73ab229a61ef41dc07bag0z1t4zdo1q9zetag1g&from=che0812&uid=HitachiXHTS725050A9A364_100913PCK404VLKE90LJX
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\firefox.js [2017-02-04]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2016-10-01]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Fichier non signé]
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 iedvutils; C:\Program Files (x86)\Explorer\iedvutils.exe [55992 2017-03-01] ()
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Micro Star SCM; C:\Program Files (x86)\System Control Manager\MSIService.exe [160768 2009-07-10] (Micro-Star International Co., Ltd.) [Fichier non signé]
R2 MVCSrv; C:\ProgramData\Package Cache\{0C8D9D70-FA5A-4CA9-763F-D8D93BC099B6}v10.1.14393.795\Installers\Universal_CRT_Tools_x86-x86_en-us.dll [108544 2017-04-05] () [Fichier non signé]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S2 NPASRE; C:\Users\Seb\AppData\Local\NPASRE\Snare.dll [830464 2017-05-10] (InterSect Alliance Pty Ltd) [Fichier non signé]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [455616 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [455616 2016-09-30] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-09-30] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 VNASRE; C:\Users\Seb\AppData\Local\VNASRE\Snare.dll [826368 2017-05-09] (InterSect Alliance Pty Ltd) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WinInstallSvc; C:\ProgramData\Microsoft\AppV\Setup\Integrator.dll [105984 2017-05-08] () [Fichier non signé]
S2 APPLEsvr; C:\ProgramData\Apple\Lockdown\InstallInfo.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-09-26] (Disc Soft Ltd)
S1 hola_net; C:\Windows\System32\DRIVERS\hola_net.sys [85488 2012-12-25] (Hola Networks Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2017-03-05] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-09-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-09-02] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-09-26] (Duplex Secure Ltd.)
U5 TMUSB; C:\Windows\System32\DRIVERS\TMUSB64.SYS [63096 2013-09-06] (Seiko Epson Corporation)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2010-07-16] (C-Media Electronics Inc)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-11 19:52 - 2017-05-11 20:39 - 00000000 ____D C:\Users\Seb\AppData\Roaming\WinSAPSvc
2017-05-11 19:52 - 2017-05-11 19:52 - 00001991 _____ C:\Users\Seb\Desktop\big_bang_empire.lnk
2017-05-11 19:52 - 2017-05-11 19:52 - 00000000 _____ C:\Windows\SysWOW64\3333333
2017-05-11 19:52 - 2017-05-11 19:52 - 00000000 _____ C:\Windows\SysWOW64\1111111
2017-05-11 19:51 - 2017-05-11 19:52 - 00000000 ____D C:\Users\Seb\AppData\Local\NPASRE
2017-05-11 19:51 - 2017-05-11 19:51 - 00003600 _____ C:\Windows\System32\Tasks\Milimili
2017-05-11 19:51 - 2017-05-11 19:51 - 00000000 _____ C:\Windows\SysWOW64\00
2017-05-11 19:50 - 2017-05-11 20:38 - 00000000 ____D C:\Program Files (x86)\5914A47Etmp
2017-05-11 18:49 - 2017-05-11 18:49 - 02769408 _____ C:\Users\Seb\Desktop\ZHPCleaner.exe
2017-05-11 18:49 - 2017-05-11 18:49 - 00000830 _____ C:\Users\Seb\Desktop\ZHPCleaner.lnk
2017-05-10 21:45 - 2017-05-10 21:49 - 00021662 _____ C:\Users\Seb\Desktop\Fixlog.txt
2017-05-10 21:45 - 2017-05-10 21:45 - 00000000 ____D C:\Users\Seb\Desktop\FRST-OlderVersion
2017-05-09 12:05 - 2017-05-11 19:51 - 00000000 _____ C:\Windows\SysWOW64\1111
2017-05-09 12:05 - 2017-05-10 08:54 - 00000000 ____D C:\Users\Seb\AppData\Local\background_fault
2017-05-09 10:35 - 2017-05-09 10:35 - 00000000 ____D C:\Users\Seb\AppData\Local\VNASRE
2017-05-08 20:25 - 2017-05-11 20:28 - 00000000 ____D C:\Users\Seb\AppData\Local\ZHP
2017-05-08 19:50 - 2017-05-11 19:56 - 00000000 _____ C:\Windows\SysWOW64\22
2017-05-08 19:24 - 2017-05-08 19:24 - 00049036 _____ C:\Users\Seb\Desktop\Addition.txt
2017-05-08 19:04 - 2017-05-08 19:04 - 00000000 ____D C:\Users\Seb\AppData\Local\Bookness
2017-05-08 19:04 - 2017-05-08 19:04 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-08 19:04 - 2017-05-08 19:04 - 00000000 ____D C:\Program Files (x86)\Bookness
2017-05-08 19:03 - 2017-05-08 19:03 - 00000000 ____D C:\Users\Public\Documents\chrome
2017-05-08 18:56 - 2017-05-11 22:24 - 00027104 _____ C:\Users\Seb\Desktop\FRST.txt
2017-05-08 18:55 - 2017-05-11 22:23 - 00000000 ____D C:\FRST
2017-05-08 18:53 - 2017-05-08 18:53 - 02429440 _____ (Farbar) C:\Users\Seb\Downloads\Non confirmé 751130.crdownload
2017-05-08 18:52 - 2017-05-10 21:45 - 02429440 _____ (Farbar) C:\Users\Seb\Desktop\FRST64.exe
2017-05-08 18:15 - 2017-05-11 19:52 - 00001965 _____ C:\Users\Seb\Desktop\BigFarm.lnk
2017-04-23 11:44 - 2017-04-23 11:44 - 00165889 _____ C:\Users\Seb\Downloads\FALL.pdf
2017-04-23 11:31 - 2017-04-23 11:31 - 00438056 _____ C:\Users\Seb\Downloads\Convocation TMD Paris 2017 FR.pdf
2017-04-20 18:16 - 2017-04-20 18:16 - 00000000 _____ C:\Windows\SysWOW64\33
2017-04-20 17:47 - 2017-05-11 19:51 - 00000000 _____ C:\Windows\SysWOW64\11
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-11 21:47 - 2012-04-11 15:37 - 00001088 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1633530422-2511851285-4157223326-1000UA.job
2017-05-11 21:47 - 2012-04-11 15:37 - 00000000 ____D C:\Users\Seb\AppData\Local\Facebook
2017-05-11 20:47 - 2009-07-14 06:45 - 00018928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-11 20:47 - 2009-07-14 06:45 - 00018928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-11 20:46 - 2010-05-12 10:44 - 00750526 _____ C:\Windows\system32\perfh00C.dat
2017-05-11 20:46 - 2010-05-12 10:44 - 00151616 _____ C:\Windows\system32\perfc00C.dat
2017-05-11 20:46 - 2009-07-14 07:13 - 01677476 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-11 20:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-11 20:41 - 2017-03-05 14:24 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2017-05-11 20:38 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-11 20:37 - 2011-01-28 20:12 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Mozilla
2017-05-11 20:37 - 2011-01-27 18:47 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-11 20:35 - 2017-03-05 15:48 - 00003084 _____ C:\Users\Seb\Desktop\ZHPCleaner.txt
2017-05-11 20:35 - 2017-03-05 14:27 - 00000000 ____D C:\Users\Seb\AppData\Roaming\ZHP
2017-05-11 19:52 - 2017-03-16 01:24 - 00000000 _____ C:\Users\Public\Documents\report.dat
2017-05-11 19:52 - 2014-10-20 23:18 - 00001938 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-05-11 19:51 - 2017-03-15 21:25 - 00000000 ____D C:\Program Files (x86)\MIO
2017-05-11 18:21 - 2012-04-11 15:37 - 00001066 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1633530422-2511851285-4157223326-1000Core.job
2017-05-10 22:09 - 2015-11-05 21:41 - 00000000 ____D C:\Users\Seb\AppData\Roaming\YCanPDF
2017-05-10 22:09 - 2013-12-15 19:05 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-10 22:09 - 2013-10-30 19:50 - 00000000 ____D C:\Users\Public\CineForm
2017-05-10 22:09 - 2012-03-14 20:38 - 00000000 ____D C:\Users\Seb\.gimp-2.6
2017-05-10 22:09 - 2011-01-27 19:59 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Adobe
2017-05-10 22:09 - 2010-09-26 16:18 - 00000000 ____D C:\Windows\Panther
2017-05-10 22:09 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\security
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PLA
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\IME
2017-05-10 22:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2017-05-10 22:08 - 2015-08-24 17:51 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Samsung
2017-05-10 22:08 - 2014-03-22 16:34 - 00000000 ____D C:\Users\Seb\AppData\Roaming\TuneUp Software
2017-05-10 22:08 - 2013-12-17 20:52 - 00000000 ____D C:\Users\Seb\AppData\Local\NVIDIA Corporation
2017-05-10 22:08 - 2013-12-17 20:50 - 00000000 ____D C:\Users\Seb\AppData\Local\NVIDIA
2017-05-10 22:08 - 2013-10-31 20:57 - 00000000 ____D C:\Users\Seb\AppData\Local\Plex Media Server
2017-05-10 22:08 - 2013-10-21 20:30 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Epson
2017-05-10 22:08 - 2013-06-04 20:10 - 00000000 ___RD C:\Users\Seb\Google Drive
2017-05-10 22:08 - 2012-09-03 17:57 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Azureus
2017-05-10 22:08 - 2012-08-28 18:14 - 00000000 ____D C:\Program Files (x86)\HP
2017-05-10 22:08 - 2012-08-28 17:58 - 00000000 ___RD C:\Users\Seb\Documents\Scanned Documents
2017-05-10 22:08 - 2012-04-26 20:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-10 22:08 - 2012-04-11 15:45 - 00000000 ____D C:\Users\Seb\Documents\Youcam
2017-05-10 22:08 - 2012-02-28 20:32 - 00000000 ____D C:\Users\Seb\AppData\Roaming\uTorrent
2017-05-10 22:08 - 2011-12-27 14:05 - 00000000 ____D C:\Users\Seb\AppData\Roaming\redsn0w
2017-05-10 22:08 - 2011-05-08 13:42 - 00000000 ____D C:\Users\Seb\AppData\Roaming\dvdcss
2017-05-10 22:08 - 2011-04-12 18:36 - 00000000 ____D C:\Users\Seb\AppData\Local\Songr
2017-05-10 22:08 - 2011-03-05 17:57 - 00000000 ____D C:\Users\Seb\AppData\Roaming\NVIDIA
2017-05-10 22:08 - 2011-02-18 19:42 - 00000000 ____D C:\Users\Seb\AppData\Roaming\DAEMON Tools Lite
2017-05-10 22:08 - 2011-02-05 12:49 - 00000000 ____D C:\Users\Seb\AppData\Roaming\Apple Computer
2017-05-10 22:08 - 2011-02-05 12:49 - 00000000 ____D C:\Users\Seb\AppData\Local\Apple Computer
2017-05-10 22:08 - 2011-02-01 19:55 - 00000000 ____D C:\Users\Seb\AppData\Local\Windows Live
2017-05-10 22:08 - 2011-01-30 21:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2017-05-10 22:08 - 2011-01-30 19:14 - 00000000 ____D C:\Users\Seb\Documents\iphone
2017-05-10 22:08 - 2011-01-28 20:34 - 00000000 ____D C:\Users\Seb\AppData\Roaming\vlc
2017-05-10 22:08 - 2011-01-28 20:12 - 00000000 ____D C:\Users\Seb\AppData\Local\Mozilla
2017-05-10 22:08 - 2011-01-27 19:57 - 00000000 ____D C:\Users\Seb\AppData\Local\Google
2017-05-10 22:08 - 2011-01-27 18:48 - 00000000 ____D C:\Users\Seb
2017-05-10 22:07 - 2016-11-18 19:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-10 22:07 - 2015-03-05 22:50 - 00000000 ____D C:\Program Files\iTunes
2017-05-10 22:07 - 2013-10-21 19:59 - 00000000 ____D C:\Program Files\EpsonNet
2017-05-10 22:07 - 2012-08-28 18:13 - 00000000 ____D C:\HP_ePrint_Mobile
2017-05-10 22:07 - 2010-09-26 16:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-10 22:07 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2017-05-10 22:07 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2017-05-10 22:07 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-05-09 19:15 - 2012-09-20 15:17 - 00004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-05-09 19:15 - 2012-04-11 15:34 - 00803320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-05-09 19:15 - 2011-11-15 18:50 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-09 19:15 - 2011-05-18 18:33 - 00144888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-05-09 19:15 - 2010-09-26 17:43 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-08 19:04 - 2017-03-01 21:44 - 00002085 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-08 18:11 - 2010-09-26 17:20 - 00000000 ____D C:\Program Files (x86)\Java
2017-05-08 18:09 - 2014-05-08 12:50 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-05-08 18:03 - 2017-02-05 21:00 - 00000000 ____D C:\Program Files (x86)\t5sy9j1d
2017-04-29 11:37 - 2011-03-15 19:35 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-29 11:37 - 2011-03-15 19:35 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-26 21:02 - 2011-01-30 18:07 - 00000000 ____D C:\Users\Seb\Documents\seb
==================== Fichiers à la racine de certains dossiers =======
2017-03-04 13:11 - 2017-03-05 14:16 - 0002172 _____ () C:\Program Files (x86)\metadata
2017-02-04 12:13 - 2017-02-04 12:13 - 1907529 _____ () C:\Users\Seb\AppData\Roaming\Apis.tst
2015-09-26 22:11 - 2015-09-26 22:11 - 0000043 _____ () C:\Users\Seb\AppData\Roaming\WB.CFG
2012-02-01 23:53 - 2012-12-03 21:41 - 0000600 _____ () C:\Users\Seb\AppData\Roaming\winscp.rnd
2011-06-09 20:45 - 2011-06-09 20:45 - 0000000 _____ () C:\Users\Seb\AppData\Local\{1747BA8F-0977-4473-BF0F-2ABAB973BD5B}
2011-07-20 18:57 - 2011-07-20 18:59 - 0000000 _____ () C:\Users\Seb\AppData\Local\{1EC243E4-F597-4DBC-AE00-9036EB54FC1C}
2011-06-09 20:47 - 2011-06-09 20:47 - 0000000 _____ () C:\Users\Seb\AppData\Local\{46C74B05-6DBF-4938-B08F-357BF07062C5}
2011-05-10 18:44 - 2011-05-10 18:44 - 0000000 _____ () C:\Users\Seb\AppData\Local\{A89DA884-A93D-4082-A3D9-2E679AB28BF2}
2011-07-20 19:00 - 2011-07-20 19:00 - 0000000 _____ () C:\Users\Seb\AppData\Local\{C09A68E2-5C0B-4D38-A693-A2EAC612C297}
2015-08-24 17:57 - 2015-08-24 17:57 - 0262474 _____ () C:\ProgramData\1440431774.bdinstall.bin
2012-08-28 18:06 - 2016-04-10 19:55 - 0007592 _____ () C:\ProgramData\hpzinstall.log
Fichiers à déplacer ou supprimer:
====================
C:\Users\Seb\AppData\Local\background_fault\aswRD.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-10 18:47
==================== Fin de FRST.txt ============================