Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2017
Exécuté par Morgane (administrateur) sur PC-MORGANE (10-07-2017 18:47:55)
Exécuté depuis C:\Users\Morgane\Desktop
Profils chargés: UpdatusUser & Morgane (Profils disponibles: UpdatusUser & Morgane)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\WINDOWS\System32\DbxSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe
(Intel Corporation) C:\WINDOWS\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\System32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(SEIKO EPSON CORPORATION) C:\WINDOWS\System32\spool\drivers\x64\3\E_IATILGE.EXE
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSmartGestureDetector64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13632216 2013-07-09] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-07-04] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-06-18] (AVAST Software)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-04-26] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [389368 2014-02-17] (IVT Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3486520 2017-06-26] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-10-29] (Microsoft Corporation)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE [297024 2014-12-03] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-07-08] (Apple Inc.)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27784672 2017-06-27] (Skype Technologies S.A.)
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\...\MountPoints2: {e2d108fa-6b3d-11e4-be8e-543530853a8c} - "G:\setup.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-12-10] (NVIDIA Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{52BF2543-AF06-4B98-BEFC-3FD2618CAF17}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{9E0C7572-DD06-4625-B317-F88E2DCE8E81}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2721691878-3460793366-1787815060-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2721691878-3460793366-1787815060-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-2721691878-3460793366-1787815060-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2721691878-3460793366-1787815060-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-06-18] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-05] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-06-18] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-05] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-2721691878-3460793366-1787815060-1002 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-06-01] (Skype Technologies)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://search.lilo.org/results.php?q={searchTerms}
CHR DefaultSearchKeyword: Default -> lilo
CHR Profile: C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default [2017-07-10]
CHR Extension: (Google Slides) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-06]
CHR Extension: (Google Docs) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-06]
CHR Extension: (Google Drive) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-25]
CHR Extension: (YouTube) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Adblock Plus) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-21]
CHR Extension: (Recherche Google) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-06-02]
CHR Extension: (Google Sheets) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-02]
CHR Extension: (Lilo Search) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldhcdlnondjolfdmlagafpjnhglkfefl [2017-02-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Lilo.org) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejnkhmeilmiplpmenkegjaibnjbappo [2017-02-17]
CHR Extension: (Gmail) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Morgane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-01]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-06-19] (ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [Fichier non signé]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-06-18] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-06-18] (AVAST Software)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1579880 2014-02-17] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-12-16] (IVT Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-12] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-12] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [49992 2017-06-26] (Dropbox, Inc.)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [311808 2017-06-18] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [190256 2017-06-18] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334576 2017-06-18] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [49016 2017-06-18] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-06-18] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-06-18] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [128648 2017-06-18] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-06-18] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-06-18] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1007160 2017-06-18] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [569192 2017-06-18] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [158888 2017-07-05] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-06-18] (AVAST Software)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [68880 2013-09-23] (ASUS Corporation)
S3 BlueletAudio; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [33968 2012-12-19] (IVT Corporation)
S3 BlueletAudio; C:\Windows\SysWOW64\DRIVERS\blueletaudio.sys [33968 2012-12-19] (IVT Corporation)
R3 BtAudioBusSrv; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
U4 BthHFSrv; C:\WINDOWS\system32\svchost.exe [38792 2014-10-29] (Microsoft Corporation)
U4 BthHFSrv; C:\WINDOWS\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Corporation)
R3 BthL2caScoIfSrv; C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Ralink Corporation)
R3 btUrbFilterDrv; C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys [51936 2014-01-20] (Ralink Corporation)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 m76usb; C:\WINDOWS\System32\drivers\m76usb.sys [539848 2014-02-12] (Ralink Technology Corp.)
S3 Netaapl; C:\WINDOWS\system32\DRIVERS\netaapl64.sys [23040 2014-08-16] (Apple Inc.) [Fichier non signé]
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Apple, Inc.) [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-10 18:47 - 2017-07-10 18:49 - 00022231 _____ C:\Users\Morgane\Desktop\FRST.txt
2017-07-10 18:47 - 2017-07-10 18:47 - 00000000 ____D C:\FRST
2017-07-10 18:46 - 2017-07-10 18:46 - 02437120 _____ (Farbar) C:\Users\Morgane\Desktop\FRST64.exe
2017-07-10 18:45 - 2017-07-10 18:46 - 02437120 _____ (Farbar) C:\Users\Morgane\Downloads\FRST64.exe
2017-07-10 18:45 - 2017-07-10 18:46 - 02437120 _____ (Farbar) C:\Users\Morgane\Downloads\FRST64 (1).exe
2017-07-10 18:34 - 2017-07-10 18:34 - 00293336 _____ C:\WINDOWS\Minidump\071017-30031-01.dmp
2017-07-09 23:58 - 2017-07-09 23:58 - 00292856 _____ C:\WINDOWS\Minidump\070917-41140-01.dmp
2017-07-05 22:32 - 2017-07-05 22:36 - 00009272 _____ C:\Users\Morgane\Desktop\ZHPCleaner.txt
2017-07-05 22:21 - 2017-07-05 22:21 - 00000884 _____ C:\Users\Morgane\Desktop\ZHPCleaner.lnk
2017-07-05 22:12 - 2017-07-05 22:12 - 00292472 _____ C:\WINDOWS\Minidump\070517-38578-01.dmp
2017-07-05 22:06 - 2017-07-05 22:06 - 02809728 _____ C:\Users\Morgane\Desktop\ZHPCleaner.exe
2017-07-03 18:20 - 2017-07-03 18:20 - 00008526 _____ C:\Users\Morgane\Desktop\ZHPFixReport.txt
2017-07-03 18:13 - 2017-07-03 18:13 - 00000000 ____D C:\Users\Morgane\Desktop\Quarantine
2017-07-03 17:54 - 2017-07-03 17:54 - 00295736 _____ C:\WINDOWS\Minidump\070317-34781-01.dmp
2017-07-03 17:50 - 2017-07-03 17:51 - 03061760 _____ (Nicolas Coolman) C:\Users\Morgane\Desktop\ZHPFix.exe
2017-07-02 13:11 - 2017-07-02 13:12 - 00296408 _____ C:\WINDOWS\Minidump\070217-47156-01.dmp
2017-06-30 22:02 - 2017-07-01 00:53 - 00000846 _____ C:\WinChk.txt
2017-06-30 22:02 - 2017-06-30 22:02 - 00315000 _____ C:\Users\Morgane\Downloads\winchk_2.0.exe
2017-06-30 22:02 - 2017-06-30 22:02 - 00315000 _____ C:\Users\Morgane\Desktop\winchk_2.0.exe
2017-06-30 22:00 - 2017-06-30 22:00 - 00002174 _____ C:\Users\Morgane\Desktop\ckfiles.txt
2017-06-30 21:39 - 2017-06-30 21:39 - 00468480 _____ () C:\Users\Morgane\Desktop\CKScanner.exe
2017-06-29 20:15 - 2017-06-29 20:16 - 00292856 _____ C:\WINDOWS\Minidump\062917-49250-01.dmp
2017-06-29 19:51 - 2017-06-29 19:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-06-29 19:16 - 2017-07-02 14:30 - 00150303 _____ C:\Users\Morgane\Desktop\ZHPDiag.txt
2017-06-29 19:02 - 2017-07-05 22:36 - 00000000 ____D C:\Users\Morgane\AppData\Roaming\ZHP
2017-06-29 19:02 - 2017-07-05 22:21 - 00000000 ____D C:\Users\Morgane\AppData\Local\ZHP
2017-06-29 19:02 - 2017-07-02 14:17 - 00000874 _____ C:\Users\Morgane\Desktop\ZHPDiag.lnk
2017-06-29 19:01 - 2017-06-29 19:01 - 02759552 _____ C:\Users\Morgane\Downloads\ZHPDiag3.exe
2017-06-29 19:01 - 2017-06-29 19:01 - 02759552 _____ C:\Users\Morgane\Desktop\ZHPDiag3.exe
2017-06-29 18:55 - 2017-06-29 18:55 - 00293432 _____ C:\WINDOWS\Minidump\062917-40796-01.dmp
2017-06-28 18:58 - 2017-06-28 18:58 - 00293240 _____ C:\WINDOWS\Minidump\062817-49000-01.dmp
2017-06-27 17:26 - 2017-06-27 17:26 - 00293240 _____ C:\WINDOWS\Minidump\062717-42781-01.dmp
2017-06-27 17:23 - 2017-06-26 19:29 - 00104600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2017-06-26 19:55 - 2017-06-26 19:57 - 00000000 _____ C:\Recovery.txt
2017-06-26 19:43 - 2017-06-26 19:43 - 00291896 _____ C:\WINDOWS\Minidump\062617-35140-01.dmp
2017-06-26 18:48 - 2017-06-26 18:48 - 00000000 __SHD C:\found.002
2017-06-26 18:08 - 2017-06-26 18:08 - 00000000 __SHD C:\found.001
2017-06-26 18:08 - 2017-06-26 18:08 - 00000000 __SHD C:\found.000
2017-06-26 17:52 - 2017-06-26 17:52 - 00292568 _____ C:\WINDOWS\Minidump\062617-54093-01.dmp
2017-06-26 17:29 - 2017-06-26 17:29 - 00292456 _____ C:\WINDOWS\Minidump\062617-47953-01.dmp
2017-06-26 12:27 - 2017-06-26 12:27 - 00049992 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-06-26 12:27 - 2017-06-26 12:27 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-06-26 12:27 - 2017-06-26 12:27 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-06-26 12:27 - 2017-06-26 12:27 - 00045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-06-22 20:43 - 2017-06-22 20:44 - 00291688 _____ C:\WINDOWS\Minidump\062217-48734-01.dmp
2017-06-20 18:59 - 2017-06-03 04:31 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-20 18:59 - 2017-06-03 04:31 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-20 18:25 - 2017-06-20 18:25 - 00026618 _____ C:\Users\Morgane\Downloads\Vikings - 04x20 - The Reckoning.FLEET.French.C.orig.Addic7ed.com (1).srt
2017-06-20 18:22 - 2017-06-20 18:22 - 00026618 _____ C:\Users\Morgane\Downloads\Vikings - 04x20 - The Reckoning.FLEET.French.C.orig.Addic7ed.com.srt
2017-06-20 18:10 - 2017-06-20 18:10 - 00018751 _____ C:\Users\Morgane\Downloads\Vikings.S04E20.The.Reckoning.1080p.WEB-DL.DD5.1.H.264-DRACULA[ettv][https---worldwidetorrents.eu].torrent
2017-06-19 08:08 - 2017-06-19 08:08 - 00000000 ____D C:\Users\Morgane\AppData\LocalLow\uTorrent
2017-06-18 21:30 - 2017-06-18 21:30 - 00097760 _____ C:\Users\Morgane\Downloads\vikings-s04e19-vostfr-bluray-720p-hdtv.torrent
2017-06-18 21:29 - 2017-06-18 21:29 - 00031076 _____ C:\Users\Morgane\Downloads\vikings-s04e19-vostfr-hdtv.torrent
2017-06-18 18:17 - 2017-06-02 14:15 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-06-18 18:17 - 2017-06-02 14:12 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-06-18 18:17 - 2017-06-02 14:12 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2017-06-18 18:17 - 2017-06-02 14:06 - 01001984 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-18 18:17 - 2017-06-02 14:01 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-06-18 18:17 - 2017-06-02 13:30 - 03635200 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-06-18 18:17 - 2017-06-02 13:03 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-18 18:17 - 2017-06-02 12:58 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-06-18 18:17 - 2017-06-02 12:25 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-06-18 18:17 - 2017-06-02 12:24 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2017-06-18 18:17 - 2017-06-02 12:17 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2017-06-18 18:17 - 2017-06-02 12:02 - 02751488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-06-18 18:17 - 2017-06-02 11:43 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-06-18 18:17 - 2017-06-02 11:43 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-06-18 18:17 - 2017-05-15 21:58 - 00121184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-18 18:17 - 2017-05-14 22:44 - 04170240 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-06-18 18:17 - 2017-05-14 22:42 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-18 18:17 - 2017-05-14 22:26 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-06-18 18:17 - 2017-05-14 22:19 - 25738752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-18 18:17 - 2017-05-14 22:19 - 01364040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-06-18 18:17 - 2017-05-14 22:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-06-18 18:17 - 2017-05-14 21:55 - 05975040 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-18 18:17 - 2017-05-14 21:32 - 07077376 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2017-06-18 18:17 - 2017-05-14 21:31 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-06-18 18:17 - 2017-05-14 21:22 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-06-18 18:17 - 2017-05-14 21:19 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-06-18 18:17 - 2017-05-14 21:11 - 20274688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-06-18 18:17 - 2017-05-14 21:10 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-06-18 18:17 - 2017-05-14 21:04 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-18 18:17 - 2017-05-14 21:03 - 00373080 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-18 18:17 - 2017-05-14 20:54 - 15252992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-18 18:17 - 2017-05-14 20:52 - 03240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-06-18 18:17 - 2017-05-14 20:48 - 05274112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2017-06-18 18:17 - 2017-05-14 20:46 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-06-18 18:17 - 2017-05-14 20:44 - 04549120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-06-18 18:17 - 2017-05-14 20:40 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-06-18 18:17 - 2017-05-14 20:38 - 07796736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-18 18:17 - 2017-05-14 20:37 - 01544704 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-06-18 18:17 - 2017-05-14 20:30 - 13664768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-06-18 18:17 - 2017-05-14 20:27 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-06-18 18:17 - 2017-05-14 20:16 - 05268992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-06-18 18:17 - 2017-05-14 20:15 - 02767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-06-18 18:17 - 2017-05-14 20:13 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-06-18 18:17 - 2017-05-14 20:11 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-06-18 18:17 - 2017-05-14 20:11 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-06-18 18:17 - 2017-05-14 20:06 - 07441240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-18 18:17 - 2017-05-14 20:06 - 01737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-06-18 18:17 - 2017-05-14 20:06 - 01502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-06-18 18:17 - 2017-05-12 19:05 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-18 18:17 - 2017-05-12 18:16 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-06-18 18:17 - 2017-05-12 18:13 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-06-18 18:17 - 2017-05-12 17:51 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2017-06-18 18:17 - 2017-05-12 17:50 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2017-06-18 18:17 - 2017-05-12 17:48 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-06-18 18:17 - 2017-05-12 17:47 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-06-18 18:17 - 2017-05-12 06:10 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-18 18:17 - 2017-05-12 04:58 - 01985536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-18 18:17 - 2017-05-12 04:48 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-18 18:17 - 2017-05-12 04:18 - 03714560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-18 18:17 - 2017-05-12 04:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2017-06-18 18:17 - 2017-05-12 04:10 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2017-06-18 18:17 - 2017-05-12 04:07 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2017-06-18 18:17 - 2017-05-12 04:06 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-06-18 18:17 - 2017-05-12 04:04 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-06-18 18:17 - 2017-05-12 04:00 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2017-06-18 18:17 - 2017-05-12 01:36 - 22361848 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-18 18:17 - 2017-05-12 01:32 - 19788672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-06-18 18:17 - 2017-05-10 20:19 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2017-06-18 18:17 - 2017-05-06 18:05 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-18 18:17 - 2017-05-06 18:04 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-18 18:17 - 2017-04-06 19:37 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-06-18 18:17 - 2017-04-06 19:16 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2017-06-18 18:17 - 2017-04-06 18:50 - 01436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-06-18 18:17 - 2017-04-06 18:46 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-06-18 18:17 - 2017-04-06 18:46 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-06-18 18:17 - 2017-04-06 18:35 - 01362432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-06-18 18:17 - 2017-04-06 18:15 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2017-06-18 18:17 - 2017-04-06 17:44 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2017-06-18 18:17 - 2017-04-02 16:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-06-18 18:17 - 2017-04-02 15:40 - 02013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-06-18 17:52 - 2017-06-18 18:18 - 00004172 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-06-18 17:52 - 2017-06-18 17:45 - 00049016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-06-18 17:52 - 2017-06-18 17:44 - 00334576 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-06-18 17:52 - 2017-06-18 17:44 - 00311808 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-06-18 17:52 - 2017-06-18 17:44 - 00190256 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-06-18 17:51 - 2017-06-18 17:51 - 00400456 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-06-15 21:11 - 2017-06-15 21:12 - 00292760 _____ C:\WINDOWS\Minidump\061517-186171-01.dmp
2017-06-14 23:40 - 2017-06-14 23:41 - 00292200 _____ C:\WINDOWS\Minidump\061417-43343-01.dmp
2017-06-14 23:31 - 2017-06-14 23:31 - 00292776 _____ C:\WINDOWS\Minidump\061417-42921-01.dmp
2017-06-14 20:57 - 2017-06-14 20:57 - 00300992 _____ C:\WINDOWS\Minidump\061417-75625-01.dmp
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-10 18:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-10 18:42 - 2016-01-12 13:19 - 00001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-07-10 18:41 - 2014-08-30 21:49 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2721691878-3460793366-1787815060-1002
2017-07-10 18:40 - 2014-09-14 21:45 - 00003808 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9DA5FF7B-30FF-47C0-95C9-039BA642864C}
2017-07-10 18:39 - 2017-02-28 13:18 - 00001543 _____ C:\Users\Morgane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AsusSmartGestureDetector.lnk
2017-07-10 18:38 - 2014-08-30 20:39 - 00000074 _____ C:\Users\Morgane\AppData\Roaming\sp_data.sys
2017-07-10 18:37 - 2016-03-17 14:57 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2017-07-10 18:37 - 2014-09-14 01:33 - 00000000 ___DO C:\Users\Morgane\OneDrive
2017-07-10 18:37 - 2014-06-09 14:13 - 00004268 _____ C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2017-07-10 18:36 - 2014-01-21 16:40 - 00000966 _____ C:\WINDOWS\SysWOW64\bscs.ini
2017-07-10 18:35 - 2016-01-12 13:19 - 00001206 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-07-10 18:35 - 2014-06-09 14:13 - 00000043 _____ C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2017-07-10 18:34 - 2016-04-24 04:53 - 477412496 _____ C:\WINDOWS\MEMORY.DMP
2017-07-10 18:34 - 2016-04-24 04:53 - 00000000 ____D C:\WINDOWS\Minidump
2017-07-10 18:34 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-07 18:36 - 2014-09-14 00:52 - 00000000 ____D C:\Users\Morgane
2017-07-07 17:49 - 2014-09-14 00:52 - 00000000 ____D C:\Users\UpdatusUser
2017-07-06 00:32 - 2016-03-30 17:32 - 00000941 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {3574B05A-A364-4C1B-A946-E1344EC7E18E}.job
2017-07-06 00:32 - 2016-03-30 17:32 - 00000755 _____ C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {3574B05A-A364-4C1B-A946-E1344EC7E18E}.job
2017-07-06 00:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-07-05 22:45 - 2014-08-30 21:24 - 00000000 ____D C:\ProgramData\AVAST Software
2017-07-05 22:43 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-07-05 22:35 - 2014-11-19 21:20 - 00000000 ____D C:\Users\Morgane\AppData\Local\app
2017-07-05 22:23 - 2014-08-30 21:27 - 00158888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2017-07-03 17:56 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2017-07-02 21:21 - 2014-12-25 00:07 - 00002986 _____ C:\WINDOWS\SysWOW64\REMOTEDEVICE.INI
2017-07-01 09:42 - 2017-05-08 22:56 - 00047104 ___SH C:\Users\Morgane\Desktop\Thumbs.db
2017-06-30 19:33 - 2014-08-30 21:22 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-30 19:33 - 2014-08-30 21:22 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-30 18:50 - 2015-08-25 12:31 - 00000000 ____D C:\ProgramData\Skype
2017-06-29 19:51 - 2016-01-12 13:18 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-06-29 19:39 - 2014-12-29 16:18 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-06-29 19:38 - 2014-12-29 16:17 - 00000000 ____D C:\ProgramData\Apple
2017-06-29 19:30 - 2015-01-11 20:19 - 00007680 _____ C:\WINDOWS\system32\--traceoff
2017-06-29 19:26 - 2016-07-05 09:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-06-29 19:26 - 2016-07-05 09:36 - 00000000 ____D C:\Program Files (x86)\Java
2017-06-27 18:26 - 2014-08-30 18:37 - 00000000 ____D C:\Users\Morgane\AppData\Roaming\vlc
2017-06-27 17:39 - 2015-11-02 20:29 - 00052736 ___SH C:\Users\Morgane\Documents\Thumbs.db
2017-06-27 17:30 - 2015-04-03 19:20 - 00003428 _____ C:\WINDOWS\System32\Tasks\Apple Diagnostics
2017-06-26 17:51 - 2014-08-30 21:28 - 00000000 ____D C:\Program Files\Google
2017-06-26 17:51 - 2014-08-30 21:21 - 00000000 ____D C:\Program Files (x86)\Google
2017-06-26 17:37 - 2014-08-31 22:10 - 00000000 ____D C:\Program Files (x86)\WinRAR
2017-06-26 17:35 - 2014-08-30 21:21 - 00000000 ____D C:\Users\Morgane\AppData\Local\Google
2017-06-26 17:17 - 2016-03-31 23:04 - 00003922 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1459458258
2017-06-26 17:17 - 2016-03-31 23:04 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-06-20 18:56 - 2013-08-22 16:44 - 00513048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-20 18:48 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2017-06-20 18:41 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-20 18:39 - 2014-09-02 00:45 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-20 18:31 - 2014-09-02 00:45 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-19 08:40 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-18 20:26 - 2016-10-10 22:28 - 00000000 ____D C:\Users\Morgane\Documents\Stage 3a
2017-06-18 18:12 - 2016-01-12 13:18 - 00000000 ____D C:\Users\Morgane\AppData\Local\Dropbox
2017-06-18 18:01 - 2015-08-25 12:31 - 00000000 ____D C:\Users\Morgane\AppData\Roaming\Skype
2017-06-18 17:51 - 2014-08-30 21:27 - 00569192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-06-18 17:51 - 2014-08-30 21:27 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-06-18 17:51 - 2014-08-30 21:27 - 00158368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys.149780116146802
2017-06-18 17:51 - 2014-08-30 21:27 - 00128648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-06-18 17:51 - 2014-08-30 21:27 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-06-18 17:51 - 2014-08-30 21:27 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-06-18 17:51 - 2014-08-30 21:27 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-06-18 17:48 - 2014-08-30 18:23 - 00001088 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-06-18 17:47 - 2016-03-31 16:08 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-06-18 17:47 - 2014-08-30 21:27 - 01007160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-06-15 21:05 - 2014-03-18 12:02 - 01824010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-15 21:05 - 2014-03-18 11:26 - 00812350 _____ C:\WINDOWS\system32\perfh00C.dat
2017-06-15 21:05 - 2014-03-18 11:26 - 00159412 _____ C:\WINDOWS\system32\perfc00C.dat
2017-06-14 23:25 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-10 11:26 - 2017-03-15 22:11 - 00000000 ___RD C:\Program Files (x86)\Skype
==================== Fichiers à la racine de certains dossiers =======
2014-08-30 20:39 - 2017-07-10 18:38 - 0000074 _____ () C:\Users\Morgane\AppData\Roaming\sp_data.sys
2015-07-25 21:42 - 2015-07-25 21:42 - 0004608 _____ () C:\Users\Morgane\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-01 16:13 - 2015-04-19 16:57 - 1163264 _____ () C:\Users\Morgane\AppData\Local\package.nw.new
2016-02-28 11:55 - 2016-02-28 11:55 - 0010218 _____ () C:\ProgramData\regid.2015-05.exe.textpad_83F5EF12-C2F9-4C11-A5C5-57A7B2D7AD25.swidtag
2013-04-26 01:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-04-26 01:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-04-26 01:15 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
Fichiers à déplacer ou supprimer:
====================
C:\Users\Morgane\cleanup-fluent-Pc-Morgane-10140.bat
C:\Users\Morgane\cleanup-fluent-Pc-Morgane-7844.bat
C:\Users\Morgane\cleanup-fluent-Pc-Morgane-8464.bat
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-03-06 12:57
==================== Fin de FRST.txt ============================