Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2017
Exécuté par Sebastien (administrateur) sur SEBASTIEN-PC (15-07-2017 20:48:46)
Exécuté depuis C:\Users\Sebastien\Downloads
Profils chargés: Sebastien & DefaultAppPool (Profils disponibles: Sebastien & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() F:\MyGames\TunnelBear\TBear.Maintenance.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{A2567233-03FC-314E-A1CE-FE21122EA3F1}\YSearchUtilSVC.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Electronic Arts) F:\MyGames\Origin\OriginWebHelperService.exe
() C:\Program Files (x86)\D-Link\DWA-131\WlanWpsSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(D-Link Corp.) C:\Program Files (x86)\D-Link\DWA-131\wirelesscm.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\ns.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\ns.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
Impossible d'accéder au processus -> MicrosoftEdgeCP.exe
(MY.COM B.V.) C:\Users\Sebastien\AppData\Local\MyComGames\MyComGames.exe
(MY.COM B.V.) C:\Users\Sebastien\AppData\Local\MyComGames\MyComGames.exe
(Mail.Ru Group + Netease Games) C:\Games\Revelation Online\game\tianyu.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe.old
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [918008 2017-06-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-06-13] (Avira Operations GmbH & Co. KG)
HKLM\...\RunOnce: [ZHPCleaner_File1] => CMD /c DEL "C:\WINDOWS\system32\drivers\NetUtils2016.sys" /F /Q
HKLM\...\RunOnce: [ZHPCleaner_Folder1] => CMD /c DEL "C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Error Reporting\VideErroroReporting " /F /Q
HKLM\...\RunOnce: [ZHPCleaner] => C:\Users\Sebastien\AppData\Roaming\ZHP\ZHPCleaner.txt [9519 2017-07-15] ()
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\Run: [Spotify Web Helper] => C:\Users\Sebastien\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-08] (Spotify Ltd)
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\RunOnce: [Uninstall 17.3.6390.0509_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Sebastien\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\RunOnce: [Uninstall 17.3.6390.0509_1] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Sebastien\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {27637767-0319-11e7-9d33-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {418786a0-bc91-11e6-9d1c-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {fa2173ce-fdcc-11e6-9d31-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {fa2173ef-fdcc-11e6-9d31-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Connection Manager.lnk [2015-07-17]
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files (x86)\D-Link\DWA-131\wirelesscm.exe (D-Link Corp.)
Startup: C:\Users\Sebastien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\zSpeedup.lnk [2017-06-15]
ShortcutTarget: zSpeedup.lnk -> C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe (Avira Operations GmbH & Co. KG)
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{15dbf672-d4e2-4f05-a870-26d8a1555fb4}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{15dbf672-d4e2-4f05-a870-26d8a1555fb4}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{1c7026e3-3fc6-4b7e-ab66-f11a8d22a760}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{4fcbb779-1c07-4498-a64d-e190c6ce9fd5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65ce71ee-f488-4400-8cee-928516e26d8d}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{98f22fe9-ec9f-4286-9692-11ec0a0f45c0}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{e1484874-eb3f-4fb5-b574-a98a09724c22}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e1484874-eb3f-4fb5-b574-a98a09724c22}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131418527411228271&GUID=FD83A1EF-D877-4D95-9893-9CC726FEE71F
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {04460782-DF1F-4DBF-853F-50757050FC82} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {F1D2E54A-AFE6-41E8-AECA-5DB255071E1F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> {04460782-DF1F-4DBF-853F-50757050FC82} URL =
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> {04460782-DF1F-4DBF-853F-50757050FC82} URL =
SearchScopes: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> {9CCCF549-0BB0-42B9-B3A6-56F13944C14C} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=chr-yset_ie_syc_oracle&type=orcl_default
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine32\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-15] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-15] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-15] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-15] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> hxxp://www.google.fr/
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2017-06-10]
FireFox:
========
FF DefaultProfile: zbwu4j4s.default
FF ProfilePath: C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default [2017-07-15]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\zbwu4j4s.default ->
FF Homepage: Mozilla\Firefox\Profiles\zbwu4j4s.default -> hxxps://mail.ru/cnt/11956636?fr=ffhp1.0.3&gp=800000
FF NetworkProxy: Mozilla\Firefox\Profiles\zbwu4j4s.default -> http", "1.1.1.1"
FF NetworkProxy: Mozilla\Firefox\Profiles\zbwu4j4s.default -> http_port", 80
FF Extension: (Pas de nom) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\8154-4591-6462-f69a [2017-07-11]
FF Extension: (Avira Browser Safety) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\abs@avira.com [2017-06-07]
FF Extension: (Домашняя страница Mail.Ru) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\homepage@mail.ru [2017-07-11]
FF Extension: (Avira Password Manager) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\passwordmanager@avira.com [2017-06-07]
FF Extension: (Avira SafeSearch Plus) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\safesearchplus2@avira.com [2017-06-07]
FF Extension: (Поиск@Mail.Ru) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\search@mail.ru [2017-07-11]
FF Extension: (Adblock Plus) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-08]
FF Extension: (Adblocker for Youtube™) - C:\Program Files (x86)\Mozilla Firefox\browser\features\{5C3FD6D1-9185-4195-B5E1-FAB622427F59} [2017-06-19] [non signé]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.0.76\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.0.76\coFFAddon [2017-07-12]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.0.76\coFFAddon
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll [2015-10-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-15] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1501489425-1271094245-2879851734-1000: @my.com/Games -> C:\Users\Sebastien\AppData\Local\MyComGames\NPMyComDetector.dll [2017-06-12] (MY.COM B.V.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.youtube.com/?hl=fr&gl=FR","hxxp://www.google.fr?type=hp&ts=1426852331&from=wpm03203&uid=HitachiXHTS545050B9A300_101223PBN403X7DKW0SLX"
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default [2017-07-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-01-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Chrome Media Router) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR Profile: C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\System Profile [2017-07-14]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\Exts\Chrome.crx [2017-07-10]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\Exts\Chrome.crx [2017-07-10]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-06-20] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1524216 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [377976 2017-06-13] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2017-05-26] ()
R2 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [34984 2015-09-03] (Micro-Star Int'l Co., Ltd.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Fichier non signé]
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2106832 2015-06-29] (MSI)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4048336 2015-08-13] (MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2123216 2015-07-08] (MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4177360 2015-07-07] (MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2002896 2015-07-28] (MSI)
R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2285008 2015-09-07] (MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2072528 2015-06-29] (MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [599504 2015-07-28] (MSI)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1768912 2015-09-11] (Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\NS.exe [326144 2017-06-30] (Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-06-21] (NVIDIA Corporation)
S3 Origin Client Service; F:\MyGames\Origin\OriginClientService.exe [2122248 2017-02-11] (Electronic Arts)
R2 Origin Web Helper Service; F:\MyGames\Origin\OriginWebHelperService.exe [2184208 2017-02-11] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1326408 2017-05-14] (Overwolf LTD)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [58368 2016-02-03] (Razer Inc.) [Fichier non signé]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-07-14] (Razer Inc.)
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)
S4 SpeedupService; C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [74800 2017-06-01] (Avira Operations GmbH & Co. KG)
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.)
R2 TunnelBearMaintenance; F:\MyGames\TunnelBear\TBear.Maintenance.exe [41984 2016-09-21] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 WlanWpsSvc; C:\Program Files (x86)\D-Link\DWA-131\WlanWpsSvc.exe [167936 2008-06-26] () [Fichier non signé]
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19216 2015-07-07] (Intel(R) Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{A2567233-03FC-314E-A1CE-FE21122EA3F1}\YSearchUtilSvc.exe [160536 2015-10-19] (Yahoo Inc.)
U2 JszipService; C:\Program Files (x86)\Maoha\JiSuZip\JszipSvc.exe [X] <==== ATTENTION
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AcpiCtlDrv; C:\WINDOWS\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [167504 2017-06-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [164824 2017-06-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-04-11] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-04-11] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-06-20] (Avira Operations GmbH & Co. KG)
R3 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\BASHDefs\20160521.001\BHDrvx64.sys [1832176 2016-06-02] (Symantec Corporation)
R1 ccSet_NS; C:\WINDOWS\system32\drivers\NSx64\160A000.053\ccSetx64.sys [187520 2017-06-30] (Symantec Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-09-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-09-22] (Symantec Corporation)
R3 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\IPSDefs\20160524.004\IDSVia64.sys [876248 2016-06-02] (Symantec Corporation)
R3 ikbevent; C:\WINDOWS\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\WINDOWS\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] ()
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-06] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R1 NetUtils2016; C:\WINDOWS\system32\drivers\NetUtils2016.sys [907160 2017-07-15] () <==== ATTENTION
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys [14199224 2017-01-04] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-06-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-06-21] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-06-21] (NVIDIA Corporation)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-05-18] (The OpenVPN Project)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [3409112 2014-07-30] (Realtek Semiconductor Corporation )
R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51224 2016-04-08] (Razer Inc)
R1 RzFilter; C:\Windows\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.)
R3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [47640 2016-04-08] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 SRTSP; C:\WINDOWS\System32\Drivers\NSx64\160A000.053\SRTSP64.SYS [810136 2017-06-30] (Symantec Corporation)
R3 SRTSPX; C:\WINDOWS\system32\drivers\NSx64\160A000.053\SRTSPX64.SYS [49304 2017-06-30] (Symantec Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NSx64\160A000.053\SYMEFASI64.SYS [1868416 2017-06-30] (Symantec Corporation)
S4 SymELAM; C:\WINDOWS\system32\drivers\NSx64\160A000.053\SymELAM.sys [24608 2017-05-11] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [102568 2017-07-10] (Symantec Corporation)
R3 SymIRON; C:\WINDOWS\system32\drivers\NSx64\160A000.053\Ironx64.SYS [301288 2017-06-30] (Symantec Corporation)
R3 SymNetS; C:\WINDOWS\System32\Drivers\NSx64\160A000.053\SYMNETS.SYS [566912 2017-06-30] (Symantec Corporation)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2016-09-21] (The OpenVPN Project)
R3 tpfilter; C:\WINDOWS\System32\drivers\tpfilter.sys [25928 2015-11-11] (TP Microelectronic)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [23040 2016-07-16] (Microsoft Corporation)
R3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [43472 2016-11-26] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 WiserIso; C:\WINDOWS\System32\Drivers\vcdrom.sys [25432 2016-12-27] () <==== ATTENTION
S3 xhunter1; C:\WINDOWS\xhunter1.sys [38368 2017-05-24] (Wellbia.com Co., Ltd.)
R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2015-05-25] (SplitmediaLabs Limited)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-24] (Intel Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 20:48 - 2017-07-15 20:48 - 02435584 _____ (Farbar) C:\Users\Sebastien\Downloads\FRST64.exe
2017-07-15 20:48 - 2017-07-15 20:48 - 00031856 _____ C:\Users\Sebastien\Downloads\FRST.txt
2017-07-15 20:48 - 2017-07-15 20:48 - 00000000 ____D C:\FRST
2017-07-15 20:47 - 2017-07-15 20:47 - 01780736 _____ (Farbar) C:\Users\Sebastien\Downloads\FRST.exe
2017-07-15 19:56 - 2017-07-15 20:46 - 00009519 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.txt
2017-07-15 19:51 - 2017-07-15 19:51 - 02827648 _____ C:\Users\Sebastien\Downloads\ZHPCleaner.exe
2017-07-15 19:51 - 2017-07-15 19:51 - 00000933 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.lnk
2017-07-15 19:08 - 2017-07-15 19:08 - 00006103 _____ C:\Users\Sebastien\Desktop\ZHPFixReport.txt
2017-07-15 18:54 - 2017-07-15 18:54 - 00003292 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-07-15 18:51 - 2017-07-15 18:51 - 00000000 ____D C:\Users\Sebastien\Downloads\Quarantine
2017-07-15 18:50 - 2017-07-15 19:09 - 03061760 _____ (Nicolas Coolman) C:\Users\Sebastien\Downloads\ZHPFix.exe
2017-07-15 18:06 - 2017-07-15 18:06 - 00001534 _____ C:\RstHosts.txt
2017-07-15 18:05 - 2017-07-15 18:05 - 00353632 _____ C:\Users\Sebastien\Downloads\rsthosts_2.0.exe
2017-07-15 17:34 - 2017-07-15 17:34 - 00315000 _____ C:\Users\Sebastien\Downloads\winchk_2.0.exe
2017-07-15 17:34 - 2017-07-15 17:34 - 00000818 _____ C:\WinChk.txt
2017-07-15 17:31 - 2017-07-15 17:31 - 00000127 _____ C:\Users\Sebastien\Downloads\ckfiles.txt
2017-07-15 17:25 - 2017-07-15 17:25 - 00468480 _____ () C:\Users\Sebastien\Downloads\CKScanner.exe
2017-07-15 15:38 - 2017-07-15 19:17 - 00219674 _____ C:\Users\Sebastien\Desktop\ZHPDiag.txt
2017-07-15 15:35 - 2017-07-15 20:46 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\ZHP
2017-07-15 15:35 - 2017-07-15 19:51 - 00000000 ____D C:\Users\Sebastien\AppData\Local\ZHP
2017-07-15 15:35 - 2017-07-15 15:35 - 02785152 _____ C:\Users\Sebastien\Downloads\ZHPDiag3 (1).exe
2017-07-15 15:35 - 2017-07-15 15:35 - 00000923 _____ C:\Users\Sebastien\Desktop\ZHPDiag.lnk
2017-07-15 15:34 - 2017-07-15 15:34 - 02785152 _____ C:\Users\Sebastien\Downloads\ZHPDiag3.exe
2017-07-15 12:39 - 2017-07-15 12:39 - 00000000 ____H C:\ProgramData\6f0d33d1bfa0433c912ca1575cb8a2b0.000a0002
2017-07-14 15:13 - 2017-07-14 15:13 - 00002872 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-07-14 13:51 - 2017-07-14 13:51 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2017-07-13 15:09 - 2017-07-13 15:09 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-12 12:20 - 2017-07-15 12:15 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2017-07-12 12:16 - 2017-07-12 12:16 - 00003388 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2017-07-11 14:58 - 2017-07-11 14:58 - 00000000 ____D C:\ProgramData\Mail.Ru
2017-07-10 17:58 - 2017-07-10 17:58 - 00001222 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2017-07-08 14:46 - 2017-07-08 14:46 - 00000000 ____D C:\Users\Sebastien\AppData\Local\UNP
2017-07-07 14:37 - 2017-07-07 14:38 - 00000000 ____D C:\Program Files\UNP
2017-07-07 14:37 - 2017-07-07 14:37 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-30 13:31 - 2017-06-30 13:31 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:31 - 2017-06-30 13:31 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-21 09:07 - 00146552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-06-29 19:06 - 2017-06-29 19:06 - 00000222 _____ C:\Users\Sebastien\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS (Test Server).url
2017-06-23 14:04 - 2017-06-24 19:23 - 00003294 _____ C:\WINDOWS\System32\Tasks\ac5cd09fe35a156bd2ebf1996e2267db
2017-06-22 07:57 - 2017-06-22 07:57 - 00051631 _____ C:\WINDOWS\uninstaller.dat
2017-06-20 13:45 - 2017-06-20 13:44 - 00060920 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 20:37 - 2017-06-07 14:26 - 00000000 ____D C:\Users\Sebastien\AppData\LocalLow\Mozilla
2017-07-15 19:57 - 2017-06-12 14:59 - 00907160 _____ C:\WINDOWS\system32\Drivers\NetUtils2016.sys
2017-07-15 19:37 - 2015-08-26 15:41 - 00000000 ____D C:\Program Files (x86)\Steam
2017-07-15 18:54 - 2015-08-21 00:28 - 00002477 _____ C:\Users\Sebastien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-07-15 18:54 - 2015-08-21 00:28 - 00000000 ___RD C:\Users\Sebastien\OneDrive
2017-07-15 16:40 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-07-15 16:34 - 2015-09-16 19:17 - 00000000 ____D C:\Program Files (x86)\NCH Software
2017-07-15 16:33 - 2016-09-28 20:52 - 00000000 ____D C:\WINDOWS\System32\Tasks\NCH Software
2017-07-15 15:44 - 2015-07-09 15:48 - 00000000 ____D C:\Users\Sebastien\AppData\Local\CrashDumps
2017-07-15 15:27 - 2016-09-28 20:41 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-07-15 14:15 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-15 12:39 - 2017-06-12 00:36 - 00000000 ____D C:\Users\Sebastien\AppData\Local\MyComGames
2017-07-15 12:25 - 2016-09-28 20:42 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-15 12:17 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-15 12:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-15 12:14 - 2016-09-28 20:45 - 00006954 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-15 12:14 - 2016-07-17 00:40 - 02303456 _____ C:\WINDOWS\system32\perfh00C.dat
2017-07-15 12:14 - 2016-07-17 00:40 - 00630882 _____ C:\WINDOWS\system32\perfc00C.dat
2017-07-15 12:13 - 2016-09-28 20:45 - 00000000 ____D C:\Users\Sebastien
2017-07-15 12:08 - 2017-06-12 14:59 - 00624640 _____ C:\WINDOWS\system32\NetUtils2016.dll
2017-07-15 03:51 - 2016-09-28 20:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-15 03:51 - 2015-10-18 16:58 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-07-15 03:50 - 2016-07-16 08:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-07-15 03:49 - 2015-07-18 22:41 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\TS3Client
2017-07-14 20:59 - 2015-10-30 14:23 - 00000000 ____D C:\Users\Sebastien\Documents\ManiaPlanet
2017-07-14 20:26 - 2015-10-30 14:23 - 00000000 ____D C:\ProgramData\ManiaPlanet
2017-07-14 13:51 - 2015-07-17 13:52 - 00000000 ____D C:\Program Files\Common Files\AV
2017-07-13 22:49 - 2015-07-07 22:09 - 00000000 ____D C:\Users\Sebastien\AppData\Local\ElevatedDiagnostics
2017-07-13 15:02 - 2015-10-30 14:23 - 00000000 ____D C:\Program Files (x86)\ManiaPlanet
2017-07-12 13:57 - 2015-07-17 13:27 - 135225752 ____C (Microsoft Corporation) C:\Users\Sebastien\Desktop\MRT.exe
2017-07-12 13:57 - 2015-07-17 13:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 12:16 - 2016-07-19 12:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2017-07-12 12:16 - 2015-08-24 10:36 - 00000000 ____D C:\WINDOWS\system32\Drivers\NSx64
2017-07-11 18:49 - 2015-07-17 23:08 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\Spotify
2017-07-10 17:58 - 2017-06-12 15:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-07-10 17:58 - 2015-07-01 09:12 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-10 15:24 - 2016-04-20 23:01 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\discord
2017-07-10 14:04 - 2015-08-24 17:35 - 00102568 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2017-07-10 14:04 - 2015-08-24 10:38 - 00008309 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2017-07-10 01:47 - 2016-09-28 20:45 - 00000000 ____D C:\Users\DefaultAppPool
2017-07-09 19:18 - 2015-07-17 23:12 - 00000000 ____D C:\Users\Sebastien\AppData\Local\Spotify
2017-07-08 14:58 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-06-30 16:46 - 2017-01-12 20:57 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 16:46 - 2017-01-12 20:57 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-30 13:31 - 2016-12-21 19:25 - 00001500 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-06-30 13:31 - 2016-09-28 20:42 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-30 13:30 - 2016-09-28 20:42 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-06-30 13:30 - 2016-09-28 20:42 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-29 19:06 - 2015-10-08 21:10 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-06-28 12:45 - 2017-06-12 15:18 - 00000000 ____D C:\Users\Public\Speedup Sessions
2017-06-26 21:24 - 2016-12-21 13:22 - 00001273 _____ C:\Users\Sebastien\Desktop\Razer Cortex.lnk
2017-06-25 15:24 - 2016-09-28 20:42 - 00000000 ____D C:\Program Files (x86)\Razer
2017-06-25 14:09 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-06-25 04:58 - 2016-02-25 00:33 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\OBS
2017-06-23 14:39 - 2017-06-09 14:59 - 00000000 ____D C:\Program Files (x86)\5e1n843J6z
2017-06-23 14:14 - 2017-06-12 14:59 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\devnull
2017-06-21 14:10 - 2017-06-13 01:00 - 00003796 _____ C:\WINDOWS\System32\Tasks\AdapterUpdater
2017-06-21 14:10 - 2017-06-12 14:59 - 00003764 _____ C:\WINDOWS\System32\Tasks\updater
2017-06-21 09:07 - 2017-05-13 19:57 - 00179320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-06-21 09:07 - 2017-01-14 12:41 - 00057976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-06-21 09:07 - 2016-12-21 19:25 - 01903224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 01755256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 01489528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 01317496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 00121464 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-06-21 09:07 - 2016-09-01 19:07 - 00048248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-06-20 22:58 - 2016-12-21 19:25 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-06-20 13:44 - 2017-06-12 15:20 - 00167504 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-06-20 13:44 - 2017-06-12 15:20 - 00164824 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-06-20 13:44 - 2017-06-12 15:20 - 00038048 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2017-06-19 14:59 - 2017-06-07 13:57 - 00000290 __RSH C:\ProgramData\ntuser.pol
2017-06-18 19:34 - 2016-12-21 13:22 - 00001047 _____ C:\Users\Sebastien\Desktop\Steam.lnk
2017-06-16 18:32 - 2017-06-13 01:00 - 00000000 ____D C:\Users\Default\AppData\Local\AdvinstAnalytics
2017-06-16 18:32 - 2017-06-13 01:00 - 00000000 ____D C:\Users\Default User\AppData\Local\AdvinstAnalytics
2017-06-15 15:36 - 2015-07-01 09:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
==================== Fichiers à la racine de certains dossiers =======
2015-12-31 00:45 - 2015-12-31 04:20 - 0000129 _____ () C:\Users\Sebastien\AppData\Roaming\D2Info0
2015-12-31 00:56 - 2015-12-31 02:18 - 0000008 _____ () C:\Users\Sebastien\AppData\Roaming\DofusAppId0_1
2015-12-31 00:45 - 2015-12-31 05:25 - 0000008 _____ () C:\Users\Sebastien\AppData\Roaming\DofusAppId0_2
2015-12-31 01:21 - 2015-12-31 01:23 - 0000008 _____ () C:\Users\Sebastien\AppData\Roaming\DofusAppId0_3
2016-02-22 01:20 - 2016-02-22 01:20 - 0000000 _____ () C:\Users\Sebastien\AppData\Roaming\mediaload.io.url.lock
2015-09-16 19:17 - 2015-09-16 19:17 - 0001167 _____ () C:\Users\Sebastien\AppData\Roaming\trace_FilterInstaller.1.txt
2015-09-16 19:17 - 2016-11-26 16:12 - 0001167 _____ () C:\Users\Sebastien\AppData\Roaming\trace_FilterInstaller.txt
2015-09-16 19:17 - 2016-11-26 16:12 - 0000000 _____ () C:\Users\Sebastien\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2015-08-28 14:09 - 2016-09-20 18:31 - 0007598 _____ () C:\Users\Sebastien\AppData\Local\Resmon.ResmonCfg
2017-07-15 12:39 - 2017-07-15 12:39 - 0000000 ____H () C:\ProgramData\6f0d33d1bfa0433c912ca1575cb8a2b0.000a0002
2017-06-10 16:55 - 2017-06-10 16:55 - 0000231 _____ () C:\ProgramData\fontcacheev1.dat
2016-12-21 19:25 - 2017-01-14 12:41 - 0007564 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-21 19:25 - 2017-01-12 16:42 - 0005307 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Fichiers à déplacer ou supprimer:
====================
C:\ProgramData\fontcacheev1.dat
Certains fichiers dans TEMP:
====================
2015-06-25 07:53 - 2015-06-25 07:53 - 0032056 _____ (TuneUp Software) C:\Users\Sebastien\AppData\Local\Temp\SDShelEx-x64.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-10 14:07
==================== Fin de FRST.txt ============================
Exécuté par Sebastien (administrateur) sur SEBASTIEN-PC (15-07-2017 20:48:46)
Exécuté depuis C:\Users\Sebastien\Downloads
Profils chargés: Sebastien & DefaultAppPool (Profils disponibles: Sebastien & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
() F:\MyGames\TunnelBear\TBear.Maintenance.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{A2567233-03FC-314E-A1CE-FE21122EA3F1}\YSearchUtilSVC.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Electronic Arts) F:\MyGames\Origin\OriginWebHelperService.exe
() C:\Program Files (x86)\D-Link\DWA-131\WlanWpsSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(D-Link Corp.) C:\Program Files (x86)\D-Link\DWA-131\wirelesscm.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\ns.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\ns.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
Impossible d'accéder au processus -> MicrosoftEdgeCP.exe
(MY.COM B.V.) C:\Users\Sebastien\AppData\Local\MyComGames\MyComGames.exe
(MY.COM B.V.) C:\Users\Sebastien\AppData\Local\MyComGames\MyComGames.exe
(Mail.Ru Group + Netease Games) C:\Games\Revelation Online\game\tianyu.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe.old
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [918008 2017-06-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-06-13] (Avira Operations GmbH & Co. KG)
HKLM\...\RunOnce: [ZHPCleaner_File1] => CMD /c DEL "C:\WINDOWS\system32\drivers\NetUtils2016.sys" /F /Q
HKLM\...\RunOnce: [ZHPCleaner_Folder1] => CMD /c DEL "C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Error Reporting\VideErroroReporting " /F /Q
HKLM\...\RunOnce: [ZHPCleaner] => C:\Users\Sebastien\AppData\Roaming\ZHP\ZHPCleaner.txt [9519 2017-07-15] ()
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\Run: [Spotify Web Helper] => C:\Users\Sebastien\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-08] (Spotify Ltd)
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd)
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\RunOnce: [Uninstall 17.3.6390.0509_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Sebastien\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\RunOnce: [Uninstall 17.3.6390.0509_1] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Sebastien\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {27637767-0319-11e7-9d33-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {418786a0-bc91-11e6-9d1c-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {fa2173ce-fdcc-11e6-9d31-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\...\MountPoints2: {fa2173ef-fdcc-11e6-9d31-d8cb8a3b9677} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Connection Manager.lnk [2015-07-17]
ShortcutTarget: Wireless Connection Manager.lnk -> C:\Program Files (x86)\D-Link\DWA-131\wirelesscm.exe (D-Link Corp.)
Startup: C:\Users\Sebastien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\zSpeedup.lnk [2017-06-15]
ShortcutTarget: zSpeedup.lnk -> C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe (Avira Operations GmbH & Co. KG)
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{15dbf672-d4e2-4f05-a870-26d8a1555fb4}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{15dbf672-d4e2-4f05-a870-26d8a1555fb4}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{1c7026e3-3fc6-4b7e-ab66-f11a8d22a760}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{4fcbb779-1c07-4498-a64d-e190c6ce9fd5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65ce71ee-f488-4400-8cee-928516e26d8d}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{98f22fe9-ec9f-4286-9692-11ec0a0f45c0}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{e1484874-eb3f-4fb5-b574-a98a09724c22}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{e1484874-eb3f-4fb5-b574-a98a09724c22}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
HKU\S-1-5-21-1501489425-1271094245-2879851734-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131418527411228271&GUID=FD83A1EF-D877-4D95-9893-9CC726FEE71F
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {04460782-DF1F-4DBF-853F-50757050FC82} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {F1D2E54A-AFE6-41E8-AECA-5DB255071E1F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> {04460782-DF1F-4DBF-853F-50757050FC82} URL =
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> {04460782-DF1F-4DBF-853F-50757050FC82} URL =
SearchScopes: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> {9CCCF549-0BB0-42B9-B3A6-56F13944C14C} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=chr-yset_ie_syc_oracle&type=orcl_default
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine32\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-15] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-15] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-15] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-15] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.10.0.83\coIEPlg.dll [2017-06-30] (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1501489425-1271094245-2879851734-1000 -> hxxp://www.google.fr/
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2017-06-10]
FireFox:
========
FF DefaultProfile: zbwu4j4s.default
FF ProfilePath: C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default [2017-07-15]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\zbwu4j4s.default ->
FF Homepage: Mozilla\Firefox\Profiles\zbwu4j4s.default -> hxxps://mail.ru/cnt/11956636?fr=ffhp1.0.3&gp=800000
FF NetworkProxy: Mozilla\Firefox\Profiles\zbwu4j4s.default -> http", "1.1.1.1"
FF NetworkProxy: Mozilla\Firefox\Profiles\zbwu4j4s.default -> http_port", 80
FF Extension: (Pas de nom) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\8154-4591-6462-f69a [2017-07-11]
FF Extension: (Avira Browser Safety) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\abs@avira.com [2017-06-07]
FF Extension: (Домашняя страница Mail.Ru) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\homepage@mail.ru [2017-07-11]
FF Extension: (Avira Password Manager) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\passwordmanager@avira.com [2017-06-07]
FF Extension: (Avira SafeSearch Plus) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\safesearchplus2@avira.com [2017-06-07]
FF Extension: (Поиск@Mail.Ru) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\search@mail.ru [2017-07-11]
FF Extension: (Adblock Plus) - C:\Users\Sebastien\AppData\Roaming\Mozilla\Firefox\Profiles\zbwu4j4s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-08]
FF Extension: (Adblocker for Youtube™) - C:\Program Files (x86)\Mozilla Firefox\browser\features\{5C3FD6D1-9185-4195-B5E1-FAB622427F59} [2017-06-19] [non signé]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.0.76\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.0.76\coFFAddon [2017-07-12]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.0.76\coFFAddon
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll [2015-10-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-15] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1501489425-1271094245-2879851734-1000: @my.com/Games -> C:\Users\Sebastien\AppData\Local\MyComGames\NPMyComDetector.dll [2017-06-12] (MY.COM B.V.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxps://www.youtube.com/?hl=fr&gl=FR","hxxp://www.google.fr?type=hp&ts=1426852331&from=wpm03203&uid=HitachiXHTS545050B9A300_101223PBN403X7DKW0SLX"
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default [2017-07-14]
CHR Extension: (Norton Identity Safe) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-01-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Chrome Media Router) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR Profile: C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\System Profile [2017-07-14]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\Exts\Chrome.crx [2017-07-10]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\Exts\Chrome.crx [2017-07-10]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-06-20] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1524216 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [377976 2017-06-13] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2017-05-26] ()
R2 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [34984 2015-09-03] (Micro-Star Int'l Co., Ltd.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Fichier non signé]
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2106832 2015-06-29] (MSI)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4048336 2015-08-13] (MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2123216 2015-07-08] (MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4177360 2015-07-07] (MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2002896 2015-07-28] (MSI)
R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2285008 2015-09-07] (MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2072528 2015-06-29] (MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [599504 2015-07-28] (MSI)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1768912 2015-09-11] (Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.10.0.83\NS.exe [326144 2017-06-30] (Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-06-21] (NVIDIA Corporation)
S3 Origin Client Service; F:\MyGames\Origin\OriginClientService.exe [2122248 2017-02-11] (Electronic Arts)
R2 Origin Web Helper Service; F:\MyGames\Origin\OriginWebHelperService.exe [2184208 2017-02-11] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1326408 2017-05-14] (Overwolf LTD)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [58368 2016-02-03] (Razer Inc.) [Fichier non signé]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-07-14] (Razer Inc.)
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)
S4 SpeedupService; C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [74800 2017-06-01] (Avira Operations GmbH & Co. KG)
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.)
R2 TunnelBearMaintenance; F:\MyGames\TunnelBear\TBear.Maintenance.exe [41984 2016-09-21] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 WlanWpsSvc; C:\Program Files (x86)\D-Link\DWA-131\WlanWpsSvc.exe [167936 2008-06-26] () [Fichier non signé]
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19216 2015-07-07] (Intel(R) Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{A2567233-03FC-314E-A1CE-FE21122EA3F1}\YSearchUtilSvc.exe [160536 2015-10-19] (Yahoo Inc.)
U2 JszipService; C:\Program Files (x86)\Maoha\JiSuZip\JszipSvc.exe [X] <==== ATTENTION
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AcpiCtlDrv; C:\WINDOWS\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [167504 2017-06-20] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [164824 2017-06-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-04-11] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-04-11] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-06-20] (Avira Operations GmbH & Co. KG)
R3 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\BASHDefs\20160521.001\BHDrvx64.sys [1832176 2016-06-02] (Symantec Corporation)
R1 ccSet_NS; C:\WINDOWS\system32\drivers\NSx64\160A000.053\ccSetx64.sys [187520 2017-06-30] (Symantec Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497368 2016-09-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156888 2016-09-22] (Symantec Corporation)
R3 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.7.0.76\Definitions\IPSDefs\20160524.004\IDSVia64.sys [876248 2016-06-02] (Symantec Corporation)
R3 ikbevent; C:\WINDOWS\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\WINDOWS\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] ()
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2015-01-06] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R1 NetUtils2016; C:\WINDOWS\system32\drivers\NetUtils2016.sys [907160 2017-07-15] () <==== ATTENTION
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys [14199224 2017-01-04] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-06-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-06-21] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-06-21] (NVIDIA Corporation)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-05-18] (The OpenVPN Project)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [3409112 2014-07-30] (Realtek Semiconductor Corporation )
R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51224 2016-04-08] (Razer Inc)
R1 RzFilter; C:\Windows\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.)
R3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [47640 2016-04-08] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 SRTSP; C:\WINDOWS\System32\Drivers\NSx64\160A000.053\SRTSP64.SYS [810136 2017-06-30] (Symantec Corporation)
R3 SRTSPX; C:\WINDOWS\system32\drivers\NSx64\160A000.053\SRTSPX64.SYS [49304 2017-06-30] (Symantec Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NSx64\160A000.053\SYMEFASI64.SYS [1868416 2017-06-30] (Symantec Corporation)
S4 SymELAM; C:\WINDOWS\system32\drivers\NSx64\160A000.053\SymELAM.sys [24608 2017-05-11] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [102568 2017-07-10] (Symantec Corporation)
R3 SymIRON; C:\WINDOWS\system32\drivers\NSx64\160A000.053\Ironx64.SYS [301288 2017-06-30] (Symantec Corporation)
R3 SymNetS; C:\WINDOWS\System32\Drivers\NSx64\160A000.053\SYMNETS.SYS [566912 2017-06-30] (Symantec Corporation)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2016-09-21] (The OpenVPN Project)
R3 tpfilter; C:\WINDOWS\System32\drivers\tpfilter.sys [25928 2015-11-11] (TP Microelectronic)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [23040 2016-07-16] (Microsoft Corporation)
R3 voxaldriver; C:\WINDOWS\system32\DRIVERS\voxaldriverx64.sys [43472 2016-11-26] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 WiserIso; C:\WINDOWS\System32\Drivers\vcdrom.sys [25432 2016-12-27] () <==== ATTENTION
S3 xhunter1; C:\WINDOWS\xhunter1.sys [38368 2017-05-24] (Wellbia.com Co., Ltd.)
R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2015-05-25] (SplitmediaLabs Limited)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-24] (Intel Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 20:48 - 2017-07-15 20:48 - 02435584 _____ (Farbar) C:\Users\Sebastien\Downloads\FRST64.exe
2017-07-15 20:48 - 2017-07-15 20:48 - 00031856 _____ C:\Users\Sebastien\Downloads\FRST.txt
2017-07-15 20:48 - 2017-07-15 20:48 - 00000000 ____D C:\FRST
2017-07-15 20:47 - 2017-07-15 20:47 - 01780736 _____ (Farbar) C:\Users\Sebastien\Downloads\FRST.exe
2017-07-15 19:56 - 2017-07-15 20:46 - 00009519 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.txt
2017-07-15 19:51 - 2017-07-15 19:51 - 02827648 _____ C:\Users\Sebastien\Downloads\ZHPCleaner.exe
2017-07-15 19:51 - 2017-07-15 19:51 - 00000933 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.lnk
2017-07-15 19:08 - 2017-07-15 19:08 - 00006103 _____ C:\Users\Sebastien\Desktop\ZHPFixReport.txt
2017-07-15 18:54 - 2017-07-15 18:54 - 00003292 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-07-15 18:51 - 2017-07-15 18:51 - 00000000 ____D C:\Users\Sebastien\Downloads\Quarantine
2017-07-15 18:50 - 2017-07-15 19:09 - 03061760 _____ (Nicolas Coolman) C:\Users\Sebastien\Downloads\ZHPFix.exe
2017-07-15 18:06 - 2017-07-15 18:06 - 00001534 _____ C:\RstHosts.txt
2017-07-15 18:05 - 2017-07-15 18:05 - 00353632 _____ C:\Users\Sebastien\Downloads\rsthosts_2.0.exe
2017-07-15 17:34 - 2017-07-15 17:34 - 00315000 _____ C:\Users\Sebastien\Downloads\winchk_2.0.exe
2017-07-15 17:34 - 2017-07-15 17:34 - 00000818 _____ C:\WinChk.txt
2017-07-15 17:31 - 2017-07-15 17:31 - 00000127 _____ C:\Users\Sebastien\Downloads\ckfiles.txt
2017-07-15 17:25 - 2017-07-15 17:25 - 00468480 _____ () C:\Users\Sebastien\Downloads\CKScanner.exe
2017-07-15 15:38 - 2017-07-15 19:17 - 00219674 _____ C:\Users\Sebastien\Desktop\ZHPDiag.txt
2017-07-15 15:35 - 2017-07-15 20:46 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\ZHP
2017-07-15 15:35 - 2017-07-15 19:51 - 00000000 ____D C:\Users\Sebastien\AppData\Local\ZHP
2017-07-15 15:35 - 2017-07-15 15:35 - 02785152 _____ C:\Users\Sebastien\Downloads\ZHPDiag3 (1).exe
2017-07-15 15:35 - 2017-07-15 15:35 - 00000923 _____ C:\Users\Sebastien\Desktop\ZHPDiag.lnk
2017-07-15 15:34 - 2017-07-15 15:34 - 02785152 _____ C:\Users\Sebastien\Downloads\ZHPDiag3.exe
2017-07-15 12:39 - 2017-07-15 12:39 - 00000000 ____H C:\ProgramData\6f0d33d1bfa0433c912ca1575cb8a2b0.000a0002
2017-07-14 15:13 - 2017-07-14 15:13 - 00002872 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-07-14 13:51 - 2017-07-14 13:51 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2017-07-13 15:09 - 2017-07-13 15:09 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-12 12:20 - 2017-07-15 12:15 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2017-07-12 12:16 - 2017-07-12 12:16 - 00003388 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2017-07-11 14:58 - 2017-07-11 14:58 - 00000000 ____D C:\ProgramData\Mail.Ru
2017-07-10 17:58 - 2017-07-10 17:58 - 00001222 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2017-07-08 14:46 - 2017-07-08 14:46 - 00000000 ____D C:\Users\Sebastien\AppData\Local\UNP
2017-07-07 14:37 - 2017-07-07 14:38 - 00000000 ____D C:\Program Files\UNP
2017-07-07 14:37 - 2017-07-07 14:37 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-30 13:31 - 2017-06-30 13:31 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:31 - 2017-06-30 13:31 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-30 13:30 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:30 - 2017-06-21 09:07 - 00146552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-06-29 19:06 - 2017-06-29 19:06 - 00000222 _____ C:\Users\Sebastien\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS (Test Server).url
2017-06-23 14:04 - 2017-06-24 19:23 - 00003294 _____ C:\WINDOWS\System32\Tasks\ac5cd09fe35a156bd2ebf1996e2267db
2017-06-22 07:57 - 2017-06-22 07:57 - 00051631 _____ C:\WINDOWS\uninstaller.dat
2017-06-20 13:45 - 2017-06-20 13:44 - 00060920 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-07-15 20:37 - 2017-06-07 14:26 - 00000000 ____D C:\Users\Sebastien\AppData\LocalLow\Mozilla
2017-07-15 19:57 - 2017-06-12 14:59 - 00907160 _____ C:\WINDOWS\system32\Drivers\NetUtils2016.sys
2017-07-15 19:37 - 2015-08-26 15:41 - 00000000 ____D C:\Program Files (x86)\Steam
2017-07-15 18:54 - 2015-08-21 00:28 - 00002477 _____ C:\Users\Sebastien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-07-15 18:54 - 2015-08-21 00:28 - 00000000 ___RD C:\Users\Sebastien\OneDrive
2017-07-15 16:40 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-07-15 16:34 - 2015-09-16 19:17 - 00000000 ____D C:\Program Files (x86)\NCH Software
2017-07-15 16:33 - 2016-09-28 20:52 - 00000000 ____D C:\WINDOWS\System32\Tasks\NCH Software
2017-07-15 15:44 - 2015-07-09 15:48 - 00000000 ____D C:\Users\Sebastien\AppData\Local\CrashDumps
2017-07-15 15:27 - 2016-09-28 20:41 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-07-15 14:15 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-15 12:39 - 2017-06-12 00:36 - 00000000 ____D C:\Users\Sebastien\AppData\Local\MyComGames
2017-07-15 12:25 - 2016-09-28 20:42 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-15 12:17 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-15 12:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-07-15 12:14 - 2016-09-28 20:45 - 00006954 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-15 12:14 - 2016-07-17 00:40 - 02303456 _____ C:\WINDOWS\system32\perfh00C.dat
2017-07-15 12:14 - 2016-07-17 00:40 - 00630882 _____ C:\WINDOWS\system32\perfc00C.dat
2017-07-15 12:13 - 2016-09-28 20:45 - 00000000 ____D C:\Users\Sebastien
2017-07-15 12:08 - 2017-06-12 14:59 - 00624640 _____ C:\WINDOWS\system32\NetUtils2016.dll
2017-07-15 03:51 - 2016-09-28 20:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-15 03:51 - 2015-10-18 16:58 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-07-15 03:50 - 2016-07-16 08:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-07-15 03:49 - 2015-07-18 22:41 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\TS3Client
2017-07-14 20:59 - 2015-10-30 14:23 - 00000000 ____D C:\Users\Sebastien\Documents\ManiaPlanet
2017-07-14 20:26 - 2015-10-30 14:23 - 00000000 ____D C:\ProgramData\ManiaPlanet
2017-07-14 13:51 - 2015-07-17 13:52 - 00000000 ____D C:\Program Files\Common Files\AV
2017-07-13 22:49 - 2015-07-07 22:09 - 00000000 ____D C:\Users\Sebastien\AppData\Local\ElevatedDiagnostics
2017-07-13 15:02 - 2015-10-30 14:23 - 00000000 ____D C:\Program Files (x86)\ManiaPlanet
2017-07-12 13:57 - 2015-07-17 13:27 - 135225752 ____C (Microsoft Corporation) C:\Users\Sebastien\Desktop\MRT.exe
2017-07-12 13:57 - 2015-07-17 13:27 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 12:16 - 2016-07-19 12:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2017-07-12 12:16 - 2015-08-24 10:36 - 00000000 ____D C:\WINDOWS\system32\Drivers\NSx64
2017-07-11 18:49 - 2015-07-17 23:08 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\Spotify
2017-07-10 17:58 - 2017-06-12 15:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-07-10 17:58 - 2015-07-01 09:12 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-10 15:24 - 2016-04-20 23:01 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\discord
2017-07-10 14:04 - 2015-08-24 17:35 - 00102568 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2017-07-10 14:04 - 2015-08-24 10:38 - 00008309 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2017-07-10 01:47 - 2016-09-28 20:45 - 00000000 ____D C:\Users\DefaultAppPool
2017-07-09 19:18 - 2015-07-17 23:12 - 00000000 ____D C:\Users\Sebastien\AppData\Local\Spotify
2017-07-08 14:58 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-06-30 16:46 - 2017-01-12 20:57 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-30 16:46 - 2017-01-12 20:57 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-30 13:31 - 2016-12-21 19:25 - 00001500 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-06-30 13:31 - 2016-09-28 20:42 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-30 13:30 - 2016-09-28 20:42 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-06-30 13:30 - 2016-09-28 20:42 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-29 19:06 - 2015-10-08 21:10 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-06-28 12:45 - 2017-06-12 15:18 - 00000000 ____D C:\Users\Public\Speedup Sessions
2017-06-26 21:24 - 2016-12-21 13:22 - 00001273 _____ C:\Users\Sebastien\Desktop\Razer Cortex.lnk
2017-06-25 15:24 - 2016-09-28 20:42 - 00000000 ____D C:\Program Files (x86)\Razer
2017-06-25 14:09 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2017-06-25 04:58 - 2016-02-25 00:33 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\OBS
2017-06-23 14:39 - 2017-06-09 14:59 - 00000000 ____D C:\Program Files (x86)\5e1n843J6z
2017-06-23 14:14 - 2017-06-12 14:59 - 00000000 ____D C:\Users\Sebastien\AppData\Roaming\devnull
2017-06-21 14:10 - 2017-06-13 01:00 - 00003796 _____ C:\WINDOWS\System32\Tasks\AdapterUpdater
2017-06-21 14:10 - 2017-06-12 14:59 - 00003764 _____ C:\WINDOWS\System32\Tasks\updater
2017-06-21 09:07 - 2017-05-13 19:57 - 00179320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-06-21 09:07 - 2017-01-14 12:41 - 00057976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-06-21 09:07 - 2016-12-21 19:25 - 01903224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 01755256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 01489528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 01317496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-06-21 09:07 - 2016-12-21 19:25 - 00121464 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-06-21 09:07 - 2016-09-01 19:07 - 00048248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-06-20 22:58 - 2016-12-21 19:25 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-06-20 13:44 - 2017-06-12 15:20 - 00167504 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-06-20 13:44 - 2017-06-12 15:20 - 00164824 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-06-20 13:44 - 2017-06-12 15:20 - 00038048 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2017-06-19 14:59 - 2017-06-07 13:57 - 00000290 __RSH C:\ProgramData\ntuser.pol
2017-06-18 19:34 - 2016-12-21 13:22 - 00001047 _____ C:\Users\Sebastien\Desktop\Steam.lnk
2017-06-16 18:32 - 2017-06-13 01:00 - 00000000 ____D C:\Users\Default\AppData\Local\AdvinstAnalytics
2017-06-16 18:32 - 2017-06-13 01:00 - 00000000 ____D C:\Users\Default User\AppData\Local\AdvinstAnalytics
2017-06-15 15:36 - 2015-07-01 09:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
==================== Fichiers à la racine de certains dossiers =======
2015-12-31 00:45 - 2015-12-31 04:20 - 0000129 _____ () C:\Users\Sebastien\AppData\Roaming\D2Info0
2015-12-31 00:56 - 2015-12-31 02:18 - 0000008 _____ () C:\Users\Sebastien\AppData\Roaming\DofusAppId0_1
2015-12-31 00:45 - 2015-12-31 05:25 - 0000008 _____ () C:\Users\Sebastien\AppData\Roaming\DofusAppId0_2
2015-12-31 01:21 - 2015-12-31 01:23 - 0000008 _____ () C:\Users\Sebastien\AppData\Roaming\DofusAppId0_3
2016-02-22 01:20 - 2016-02-22 01:20 - 0000000 _____ () C:\Users\Sebastien\AppData\Roaming\mediaload.io.url.lock
2015-09-16 19:17 - 2015-09-16 19:17 - 0001167 _____ () C:\Users\Sebastien\AppData\Roaming\trace_FilterInstaller.1.txt
2015-09-16 19:17 - 2016-11-26 16:12 - 0001167 _____ () C:\Users\Sebastien\AppData\Roaming\trace_FilterInstaller.txt
2015-09-16 19:17 - 2016-11-26 16:12 - 0000000 _____ () C:\Users\Sebastien\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2015-08-28 14:09 - 2016-09-20 18:31 - 0007598 _____ () C:\Users\Sebastien\AppData\Local\Resmon.ResmonCfg
2017-07-15 12:39 - 2017-07-15 12:39 - 0000000 ____H () C:\ProgramData\6f0d33d1bfa0433c912ca1575cb8a2b0.000a0002
2017-06-10 16:55 - 2017-06-10 16:55 - 0000231 _____ () C:\ProgramData\fontcacheev1.dat
2016-12-21 19:25 - 2017-01-14 12:41 - 0007564 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-21 19:25 - 2017-01-12 16:42 - 0005307 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Fichiers à déplacer ou supprimer:
====================
C:\ProgramData\fontcacheev1.dat
Certains fichiers dans TEMP:
====================
2015-06-25 07:53 - 2015-06-25 07:53 - 0032056 _____ (TuneUp Software) C:\Users\Sebastien\AppData\Local\Temp\SDShelEx-x64.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-10 14:07
==================== Fin de FRST.txt ============================