Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02.01.2018
Exécuté par vchab (administrateur) sur DESKTOP-4JSAA5Q (06-01-2018 19:10:33)
Exécuté depuis C:\Users\vchab\Downloads
Profils chargés: vchab (Profils disponibles: vchab)
Platform: Windows 10 Home Version 1703 15063.786 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17086.24711.0_x64__8wekyb3d8bbwe\Music.UI.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2018-01-05] (AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [17987704 2017-10-20] (Logitech Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [Speech Recognition] => C:\WINDOWS\Speech\Common\sapisvr.exe [44032 2017-03-18] (Microsoft Corporation)
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [BingSvc] => C:\Users\vchab\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [Chromium] => c:\users\vchab\appdata\local\chromium\application\chrome.exe [1044480 2016-01-25] (The Chromium Authors)
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-06] (Skype Technologies S.A.)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\appvlp.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\effectextractor.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\excel.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\ksolaunch.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\lcore.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\msaccess.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\msoxmled.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\mspub.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\onenote.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\outlook.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\powerpnt.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\setlang.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\soda_pdf_desktop_installer.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\teamviewer.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\uninst.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\winword.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2017-11-17]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4d1324ec-f2af-4442-8889-8299c4e1a17f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e6eac5b1-82c6-4f61-ba4e-37a9ef4a713d}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM -> {5e7797ae-5ca1-4b50-95d8-97e746340487} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> {5e7797ae-5ca1-4b50-95d8-97e746340487} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> DefaultScope {E0CFC9BD-7D0B-4D09-8715-5E018AA285AC} URL = hxxp://www.surf-live.com/web?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> {5e7797ae-5ca1-4b50-95d8-97e746340487} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE15
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> {E0CFC9BD-7D0B-4D09-8715-5E018AA285AC} URL = hxxp://www.surf-live.com/web?q={searchTerms}
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-12-19] (Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> hxxp://www.surf-live.com/
FireFox:
========
FF DefaultProfile: kn0d35km.default
FF DefaultProfile: v.chabanon@gmail.com
FF ProfilePath: C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default [2018-01-06]
FF Homepage: Mozilla\Firefox\Profiles\kn0d35km.default -> hxxps://www.google.fr/
FF NewTab: Mozilla\Firefox\Profiles\kn0d35km.default -> about:newtab
FF Extension: (Dashlane) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-12-28]
FF Extension: (Privacy Badger) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2017-09-14]
FF Extension: (Français Language Pack) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-11-17] [Legacy]
FF Extension: (LanguageTool - Grammar and Style Checker) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\languagetool-webextension@languagetool.org.xpi [2017-12-14]
FF Extension: (Avast SafePrice) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\sp@avast.com.xpi [2017-12-06]
FF Extension: (Avast Online Security) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\wrc@avast.com.xpi [2017-10-08]
FF Extension: (Adblock Plus) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-13]
FF Extension: (Disable JavaScript Shared Memory) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\features\{7c29a445-843e-4f34-a068-e6aff9fb1272}\disable-js-shared-memory@mozilla.org.xpi [2018-01-05] [Legacy]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-12-19] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-12-19] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\176157171.js [2017-11-08] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\176157171.cfg [2017-11-08] <==== ATTENTION
Chrome:
=======
CHR HomePage: Default -> hxxp://www.surf-live.com/
CHR StartupUrls: Default -> "hxxp://www.surf-live.com/"
CHR NewTab: Default -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxp://www.surf-live.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Surf Live
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Profile: C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default [2018-01-06]
CHR Extension: (Slides) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Docs) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Google Drive) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-10]
CHR Extension: (YouTube) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-10]
CHR Extension: (Ecosia) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2017-11-10]
CHR Extension: (Adobe Acrobat) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-10]
CHR Extension: (Avast SafePrice) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-12-29]
CHR Extension: (Pas de nom) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-11-10]
CHR Extension: (Sheets) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-10]
CHR Extension: (Avast Online Security) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-10]
CHR Extension: (Search Manager) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej [2017-12-11]
CHR Extension: (Gmail) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-10]
CHR Extension: (Chrome Media Router) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-11]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTek Computer Inc.)
S4 AsHidService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [126648 2016-06-16] (ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2018-01-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2018-01-05] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [351552 2018-01-05] (AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [4709728 2017-12-19] (AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7760552 2017-12-07] (Microsoft Corporation)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-11-01] (Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [183568 2016-10-06] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-05] (Intel Corporation)
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd)
S4 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [225400 2017-10-20] (Logitech Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe [2139832 2017-05-31] (McAfee, Inc.)
R2 McNeelUpdate; C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [67752 2012-10-25] (Robert McNeel & Associates)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-11-29] ()
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1043864 2017-07-31] (Intel Security, Inc.)
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
S4 Soda PDF Desktop; C:\Program Files\Soda PDF Desktop\ws.exe [2581864 2017-01-25] (LULU Software)
S4 Soda PDF Desktop CrashHandler; C:\Program Files\Soda PDF Desktop\crash-handler-ws.exe [931176 2017-01-25] (LULU Software)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)
S4 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd)
S4 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-11-29] (Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] ()
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [99320 2016-10-11] (ASUS Corporation)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [185096 2018-01-05] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321512 2018-01-05] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199448 2018-01-05] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343768 2018-01-05] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57696 2018-01-05] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-01-05] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [146664 2018-01-05] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [580480 2018-01-05] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110336 2018-01-05] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84384 2018-01-05] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1025176 2018-01-05] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [457400 2018-01-05] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [204456 2018-01-05] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [358672 2018-01-05] (AVAST Software)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66616 2016-11-01] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-11-01] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [730384 2016-10-06] (Intel Corporation)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-10-20] (Logitech Inc.)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [7918840 2016-12-19] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_45d4f41b93b9677a\nvlddmkm.sys [14461344 2017-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56376 2016-08-03] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-01] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-06 19:10 - 2018-01-06 19:10 - 000030224 _____ C:\Users\vchab\Downloads\FRST.txt
2018-01-06 19:10 - 2018-01-06 19:10 - 000000000 ____D C:\FRST
2018-01-06 19:09 - 2018-01-06 19:09 - 002393088 _____ (Farbar) C:\Users\vchab\Downloads\FRST64.exe
2018-01-06 18:53 - 2018-01-06 18:53 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-06 18:47 - 2018-01-06 18:53 - 000000000 ____D C:\AdwCleaner
2018-01-06 18:46 - 2018-01-06 18:47 - 008198432 _____ (Malwarebytes) C:\Users\vchab\Downloads\AdwCleaner.exe
2018-01-06 11:32 - 2018-01-06 18:53 - 000770160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-06 09:50 - 2018-01-06 09:50 - 000000000 ____D C:\Users\vchab\AppData\Roaming\Avast Tuneup
2018-01-05 09:42 - 2018-01-05 09:42 - 000365680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-01-03 16:25 - 2018-01-04 12:33 - 000000000 ____D C:\Users\vchab\Desktop\Stage
2018-01-03 16:24 - 2018-01-03 16:24 - 000000748 _____ C:\Users\vchab\Desktop\Disque Dur.lnk
2018-01-03 14:46 - 2018-01-03 14:46 - 000000434 _____ C:\WINDOWS\BRWMARK.INI
2018-01-03 14:46 - 2018-01-03 14:46 - 000000027 _____ C:\WINDOWS\BRPP2KA.INI
2017-12-28 16:11 - 2017-12-28 16:11 - 000013109 _____ C:\Users\vchab\Desktop\appartement.xlsx
2017-12-21 11:56 - 2017-12-21 11:56 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign595b91d457a468c5
2017-12-21 11:44 - 2017-12-21 11:44 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsignd71b463e7c755f85
2017-12-21 11:44 - 2017-12-21 11:44 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign8b510ca32b3ab604
2017-12-21 11:44 - 2017-12-21 11:44 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign2b987c5b2965af6f
2017-12-20 09:16 - 2017-12-20 09:16 - 000000000 ____D C:\Windows.old
2017-12-19 09:23 - 2017-12-19 09:23 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2017-12-13 20:50 - 2017-12-13 20:50 - 000000000 ____D C:\Users\vchab\Downloads\Bois - Fiche Informative
2017-12-13 10:09 - 2017-11-30 04:33 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-12-13 10:09 - 2017-11-30 04:33 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-12-13 10:09 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-12-13 10:09 - 2017-11-30 04:29 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-12-13 10:09 - 2017-11-30 04:26 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-12-13 10:09 - 2017-11-30 04:24 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-12-13 10:09 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-13 10:09 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-12-13 10:09 - 2017-11-30 04:00 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-12-13 10:09 - 2017-11-30 03:59 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-12-13 10:09 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-13 10:09 - 2017-11-30 03:58 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-12-13 10:09 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-12-13 10:09 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-12-13 10:09 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 019334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-12-13 10:09 - 2017-11-30 03:43 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-12-13 10:09 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2017-12-13 10:09 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-12-13 10:09 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2017-12-13 10:09 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2017-12-13 10:09 - 2017-11-30 03:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-12-13 10:09 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2017-12-13 10:09 - 2017-11-30 03:40 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2017-12-13 10:09 - 2017-11-30 03:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-12-13 10:09 - 2017-11-30 03:39 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-13 10:09 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-13 10:09 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 008195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 006252544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 003652096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-12-13 10:09 - 2017-11-30 03:35 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-12-13 10:09 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-12-13 10:09 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-12-13 10:09 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-12-13 10:09 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-12-13 10:09 - 2017-11-17 10:41 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-12-13 10:09 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-12-13 10:09 - 2017-11-17 10:39 - 000643200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-12-13 10:09 - 2017-11-17 10:37 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-12-13 10:09 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-12-13 10:09 - 2017-11-17 10:03 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-12-13 10:09 - 2017-11-17 10:00 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-12-13 10:09 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-12-13 10:09 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-12-12 16:01 - 2017-12-12 16:01 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign5194ebf0bd8488d5
2017-12-12 15:59 - 2017-12-12 15:59 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsigne29e74c4e6c586d0
2017-12-12 15:59 - 2017-12-12 15:59 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign34a72d7f35477e41
2017-12-10 21:43 - 2017-12-10 21:43 - 000000000 ____D C:\Program Files\Common Files\Avast Software
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-06 19:03 - 2017-12-02 20:50 - 000004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3B761E16-09FE-4794-873E-DDA8BCA8DF3A}
2018-01-06 19:00 - 2017-08-30 20:58 - 000971854 _____ C:\WINDOWS\system32\perfh013.dat
2018-01-06 19:00 - 2017-08-30 20:58 - 000283966 _____ C:\WINDOWS\system32\perfc013.dat
2018-01-06 19:00 - 2017-08-30 20:19 - 004035076 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-06 19:00 - 2017-03-20 06:10 - 001303068 _____ C:\WINDOWS\system32\perfh00C.dat
2018-01-06 19:00 - 2017-03-20 06:10 - 000294962 _____ C:\WINDOWS\system32\perfc00C.dat
2018-01-06 18:55 - 2017-08-30 20:29 - 000000000 ____D C:\Users\vchab\AppData\LocalLow\Mozilla
2018-01-06 18:53 - 2017-08-30 20:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-06 18:53 - 2017-08-30 20:11 - 000000000 ____D C:\ProgramData\NVIDIA
2018-01-06 18:53 - 2017-03-18 12:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2018-01-06 18:45 - 2017-08-30 20:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-01-06 17:45 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-06 17:45 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-01-06 12:28 - 2017-10-05 08:26 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-01-06 12:28 - 2017-09-10 11:44 - 000003514 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-01-06 12:28 - 2017-09-10 11:44 - 000003290 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-01-06 12:28 - 2017-08-30 20:16 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3029278399-1626031686-2435291076-1001
2018-01-06 11:43 - 2017-09-10 11:44 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-06 11:43 - 2017-09-10 11:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-06 11:32 - 2017-08-30 20:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-01-06 11:32 - 2017-08-30 20:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-06 11:32 - 2017-08-30 19:23 - 000000000 ___RD C:\Users\vchab\OneDrive
2018-01-06 11:14 - 2017-11-10 18:21 - 000000000 ____D C:\ProgramData\Logishrd
2018-01-06 09:57 - 2017-10-24 13:50 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-01-06 09:52 - 2017-08-30 19:35 - 000000000 ___DC C:\WINDOWS\Panther
2018-01-06 09:52 - 2017-08-30 19:23 - 000000000 ____D C:\Users\vchab\AppData\Roaming\Skype
2018-01-06 09:52 - 2017-05-10 23:17 - 000000000 ____D C:\ProgramData\install_clap
2018-01-06 09:52 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-01-06 09:52 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2018-01-06 09:51 - 2017-09-30 16:03 - 000000000 ___HD C:\$WINDOWS.~BT
2018-01-05 11:52 - 2017-08-30 20:26 - 000001007 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-01-05 09:42 - 2017-11-17 09:42 - 000185096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000457400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000358672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000204456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000146664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000110336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000084384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000046976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-01-05 09:41 - 2017-10-04 16:50 - 000580480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 001025176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000343768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000321512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000199448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000057696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-01-04 11:22 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-01-03 11:00 - 2017-09-10 14:10 - 000000000 ____D C:\Users\vchab\AppData\Local\Adobe
2017-12-29 15:41 - 2017-08-30 20:19 - 000043818 _____ C:\WINDOWS\diagwrn.xml
2017-12-29 15:41 - 2017-08-30 20:19 - 000043818 _____ C:\WINDOWS\diagerr.xml
2017-12-28 16:25 - 2017-08-30 19:22 - 000000000 ____D C:\Users\vchab\AppData\Local\Packages
2017-12-28 15:59 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Registration
2017-12-28 15:10 - 2017-11-12 19:59 - 000000000 ____D C:\temp
2017-12-23 10:32 - 2017-11-12 20:51 - 000000559 ____N C:\WINDOWS\system32\GelSprinter GX e2600 (Copie 1).CAC
2017-12-21 10:44 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-12-19 09:24 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-12-19 09:23 - 2017-05-10 23:25 - 000000000 ____D C:\Program Files\Microsoft Office
2017-12-19 09:23 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-12-19 09:15 - 2017-05-10 22:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-12-18 18:00 - 2017-08-30 19:14 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-12-18 18:00 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-12-18 18:00 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-12-18 18:00 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\en-GB
2017-12-18 17:59 - 2017-08-30 20:12 - 000000000 ____D C:\Users\vchab
2017-12-18 14:24 - 2017-09-10 15:18 - 000000033 _____ C:\Users\vchab\AppData\Roaming\AdobeWLCMCache.dat
2017-12-14 10:11 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-13 10:14 - 2017-09-01 21:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 10:08 - 2017-10-11 08:23 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 10:08 - 2017-09-01 21:43 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-07 16:30 - 2017-12-02 22:44 - 000000000 ____D C:\Users\vchab\Desktop\couleur b
==================== Fichiers à la racine de certains dossiers =======
2017-09-10 15:18 - 2017-12-18 14:24 - 000000033 _____ () C:\Users\vchab\AppData\Roaming\AdobeWLCMCache.dat
2017-08-30 19:25 - 2017-10-05 08:10 - 000000182 _____ () C:\Users\vchab\AppData\Roaming\sp_data.sys
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-02 10:13
==================== Fin de FRST.txt ============================
Exécuté par vchab (administrateur) sur DESKTOP-4JSAA5Q (06-01-2018 19:10:33)
Exécuté depuis C:\Users\vchab\Downloads
Profils chargés: vchab (Profils disponibles: vchab)
Platform: Windows 10 Home Version 1703 15063.786 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\McCSPServiceHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17086.24711.0_x64__8wekyb3d8bbwe\Music.UI.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(ASUSTek Computer Inc) C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2018-01-05] (AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [17987704 2017-10-20] (Logitech Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [Speech Recognition] => C:\WINDOWS\Speech\Common\sapisvr.exe [44032 2017-03-18] (Microsoft Corporation)
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [BingSvc] => C:\Users\vchab\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [Chromium] => c:\users\vchab\appdata\local\chromium\application\chrome.exe [1044480 2016-01-25] (The Chromium Authors)
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-06] (Skype Technologies S.A.)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\appvlp.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\effectextractor.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\excel.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\ksolaunch.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\lcore.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\msaccess.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\msoxmled.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\mspub.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\onenote.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\outlook.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\powerpnt.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\setlang.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\soda_pdf_desktop_installer.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\teamviewer.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\uninst.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\winword.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2017-11-17]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4d1324ec-f2af-4442-8889-8299c4e1a17f}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e6eac5b1-82c6-4f61-ba4e-37a9ef4a713d}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM -> {5e7797ae-5ca1-4b50-95d8-97e746340487} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StB0A0D0Fzz0E0ByEtGtA0A0AyBtG0CyC0E0AtGtDzztByEtG0F0E0D0BtCtAtDtByC0AyE0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1074439265&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> {5e7797ae-5ca1-4b50-95d8-97e746340487} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> DefaultScope {E0CFC9BD-7D0B-4D09-8715-5E018AA285AC} URL = hxxp://www.surf-live.com/web?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_coinisreb_17_48_ssg02&cd=2XzuyEtN2Y1L1Qzuzzzz0DyB0FyCzyyByDyCtCyDzz0F0CtAtN0D0Tzu0StBtCyCtBtN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEyDyC0D0FtAyCtDtGyEyE0EtCtG0E0AyDtCtGtDyD0BtCtGzy0AyEtAtC0EtC0E0DtCyDtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0CtA0FyBtBtAzytG0AyC0B0CtGyEtDtCyBtGzy0AyD0AtGyC0DtDtAzy0EyBtCtD0AyByC2QtN0A0LzuyE&cr=1105007153&ir=&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> {5e7797ae-5ca1-4b50-95d8-97e746340487} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE15
SearchScopes: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> {E0CFC9BD-7D0B-4D09-8715-5E018AA285AC} URL = hxxp://www.surf-live.com/web?q={searchTerms}
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-12-19] (Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-3029278399-1626031686-2435291076-1001 -> hxxp://www.surf-live.com/
FireFox:
========
FF DefaultProfile: kn0d35km.default
FF DefaultProfile: v.chabanon@gmail.com
FF ProfilePath: C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default [2018-01-06]
FF Homepage: Mozilla\Firefox\Profiles\kn0d35km.default -> hxxps://www.google.fr/
FF NewTab: Mozilla\Firefox\Profiles\kn0d35km.default -> about:newtab
FF Extension: (Dashlane) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-12-28]
FF Extension: (Privacy Badger) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2017-09-14]
FF Extension: (Français Language Pack) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2017-11-17] [Legacy]
FF Extension: (LanguageTool - Grammar and Style Checker) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\languagetool-webextension@languagetool.org.xpi [2017-12-14]
FF Extension: (Avast SafePrice) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\sp@avast.com.xpi [2017-12-06]
FF Extension: (Avast Online Security) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\wrc@avast.com.xpi [2017-10-08]
FF Extension: (Adblock Plus) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-13]
FF Extension: (Disable JavaScript Shared Memory) - C:\Users\vchab\AppData\Roaming\Mozilla\Firefox\Profiles\kn0d35km.default\features\{7c29a445-843e-4f34-a068-e6aff9fb1272}\disable-js-shared-memory@mozilla.org.xpi [2018-01-05] [Legacy]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-12-19] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-12-19] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\176157171.js [2017-11-08] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\176157171.cfg [2017-11-08] <==== ATTENTION
Chrome:
=======
CHR HomePage: Default -> hxxp://www.surf-live.com/
CHR StartupUrls: Default -> "hxxp://www.surf-live.com/"
CHR NewTab: Default -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxp://www.surf-live.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Surf Live
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Profile: C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default [2018-01-06]
CHR Extension: (Slides) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Docs) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Google Drive) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-10]
CHR Extension: (YouTube) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-10]
CHR Extension: (Ecosia) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2017-11-10]
CHR Extension: (Adobe Acrobat) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-10]
CHR Extension: (Avast SafePrice) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-12-29]
CHR Extension: (Pas de nom) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-11-10]
CHR Extension: (Sheets) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-10]
CHR Extension: (Avast Online Security) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-10]
CHR Extension: (Search Manager) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilplloabdedfmialnfchjomjmpjcoej [2017-12-11]
CHR Extension: (Gmail) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-10]
CHR Extension: (Chrome Media Router) - C:\Users\vchab\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-11]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3029278399-1626031686-2435291076-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTek Computer Inc.)
S4 AsHidService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [126648 2016-06-16] (ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2018-01-05] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2018-01-05] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [351552 2018-01-05] (AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [4709728 2017-12-19] (AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7760552 2017-12-07] (Microsoft Corporation)
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-11-01] (Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [183568 2016-10-06] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-05] (Intel Corporation)
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd)
S4 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [225400 2017-10-20] (Logitech Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe [2139832 2017-05-31] (McAfee, Inc.)
R2 McNeelUpdate; C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [67752 2012-10-25] (Robert McNeel & Associates)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-11-29] ()
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1043864 2017-07-31] (Intel Security, Inc.)
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
S4 Soda PDF Desktop; C:\Program Files\Soda PDF Desktop\ws.exe [2581864 2017-01-25] (LULU Software)
S4 Soda PDF Desktop CrashHandler; C:\Program Files\Soda PDF Desktop\crash-handler-ws.exe [931176 2017-01-25] (LULU Software)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)
S4 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-11] (Zhuhai Kingsoft Office Software Co.,Ltd)
S4 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-11-29] (Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] ()
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [99320 2016-10-11] (ASUS Corporation)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [185096 2018-01-05] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321512 2018-01-05] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199448 2018-01-05] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343768 2018-01-05] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57696 2018-01-05] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2018-01-05] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [146664 2018-01-05] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [580480 2018-01-05] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110336 2018-01-05] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84384 2018-01-05] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1025176 2018-01-05] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [457400 2018-01-05] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [204456 2018-01-05] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [358672 2018-01-05] (AVAST Software)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66616 2016-11-01] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-11-01] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [730384 2016-10-06] (Intel Corporation)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-10-20] (Logitech Inc.)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [7918840 2016-12-19] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_45d4f41b93b9677a\nvlddmkm.sys [14461344 2017-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56376 2016-08-03] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-01] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-06 19:10 - 2018-01-06 19:10 - 000030224 _____ C:\Users\vchab\Downloads\FRST.txt
2018-01-06 19:10 - 2018-01-06 19:10 - 000000000 ____D C:\FRST
2018-01-06 19:09 - 2018-01-06 19:09 - 002393088 _____ (Farbar) C:\Users\vchab\Downloads\FRST64.exe
2018-01-06 18:53 - 2018-01-06 18:53 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-06 18:47 - 2018-01-06 18:53 - 000000000 ____D C:\AdwCleaner
2018-01-06 18:46 - 2018-01-06 18:47 - 008198432 _____ (Malwarebytes) C:\Users\vchab\Downloads\AdwCleaner.exe
2018-01-06 11:32 - 2018-01-06 18:53 - 000770160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-06 09:50 - 2018-01-06 09:50 - 000000000 ____D C:\Users\vchab\AppData\Roaming\Avast Tuneup
2018-01-05 09:42 - 2018-01-05 09:42 - 000365680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-01-03 16:25 - 2018-01-04 12:33 - 000000000 ____D C:\Users\vchab\Desktop\Stage
2018-01-03 16:24 - 2018-01-03 16:24 - 000000748 _____ C:\Users\vchab\Desktop\Disque Dur.lnk
2018-01-03 14:46 - 2018-01-03 14:46 - 000000434 _____ C:\WINDOWS\BRWMARK.INI
2018-01-03 14:46 - 2018-01-03 14:46 - 000000027 _____ C:\WINDOWS\BRPP2KA.INI
2017-12-28 16:11 - 2017-12-28 16:11 - 000013109 _____ C:\Users\vchab\Desktop\appartement.xlsx
2017-12-21 11:56 - 2017-12-21 11:56 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign595b91d457a468c5
2017-12-21 11:44 - 2017-12-21 11:44 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsignd71b463e7c755f85
2017-12-21 11:44 - 2017-12-21 11:44 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign8b510ca32b3ab604
2017-12-21 11:44 - 2017-12-21 11:44 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign2b987c5b2965af6f
2017-12-20 09:16 - 2017-12-20 09:16 - 000000000 ____D C:\Windows.old
2017-12-19 09:23 - 2017-12-19 09:23 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2017-12-13 20:50 - 2017-12-13 20:50 - 000000000 ____D C:\Users\vchab\Downloads\Bois - Fiche Informative
2017-12-13 10:09 - 2017-11-30 04:33 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-12-13 10:09 - 2017-11-30 04:33 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-12-13 10:09 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-12-13 10:09 - 2017-11-30 04:29 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-12-13 10:09 - 2017-11-30 04:26 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-12-13 10:09 - 2017-11-30 04:24 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-12-13 10:09 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-13 10:09 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-12-13 10:09 - 2017-11-30 04:00 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-12-13 10:09 - 2017-11-30 03:59 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-12-13 10:09 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-13 10:09 - 2017-11-30 03:58 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-12-13 10:09 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-12-13 10:09 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-12-13 10:09 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 019334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-12-13 10:09 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-12-13 10:09 - 2017-11-30 03:43 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-12-13 10:09 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2017-12-13 10:09 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-12-13 10:09 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2017-12-13 10:09 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 10:09 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2017-12-13 10:09 - 2017-11-30 03:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-12-13 10:09 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2017-12-13 10:09 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2017-12-13 10:09 - 2017-11-30 03:40 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2017-12-13 10:09 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2017-12-13 10:09 - 2017-11-30 03:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-12-13 10:09 - 2017-11-30 03:39 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-13 10:09 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-13 10:09 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 008195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-12-13 10:09 - 2017-11-30 03:38 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 006252544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-12-13 10:09 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 003652096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-12-13 10:09 - 2017-11-30 03:36 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-12-13 10:09 - 2017-11-30 03:35 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-12-13 10:09 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-12-13 10:09 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-12-13 10:09 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-12-13 10:09 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-12-13 10:09 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-12-13 10:09 - 2017-11-17 10:41 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-12-13 10:09 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-12-13 10:09 - 2017-11-17 10:39 - 000643200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-12-13 10:09 - 2017-11-17 10:37 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-12-13 10:09 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-12-13 10:09 - 2017-11-17 10:03 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-12-13 10:09 - 2017-11-17 10:00 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-12-13 10:09 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-12-13 10:09 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-12-12 16:01 - 2017-12-12 16:01 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign5194ebf0bd8488d5
2017-12-12 15:59 - 2017-12-12 15:59 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsigne29e74c4e6c586d0
2017-12-12 15:59 - 2017-12-12 15:59 - 000000000 ____D C:\Users\vchab\AppData\Local\Tempzxpsign34a72d7f35477e41
2017-12-10 21:43 - 2017-12-10 21:43 - 000000000 ____D C:\Program Files\Common Files\Avast Software
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-06 19:03 - 2017-12-02 20:50 - 000004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3B761E16-09FE-4794-873E-DDA8BCA8DF3A}
2018-01-06 19:00 - 2017-08-30 20:58 - 000971854 _____ C:\WINDOWS\system32\perfh013.dat
2018-01-06 19:00 - 2017-08-30 20:58 - 000283966 _____ C:\WINDOWS\system32\perfc013.dat
2018-01-06 19:00 - 2017-08-30 20:19 - 004035076 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-06 19:00 - 2017-03-20 06:10 - 001303068 _____ C:\WINDOWS\system32\perfh00C.dat
2018-01-06 19:00 - 2017-03-20 06:10 - 000294962 _____ C:\WINDOWS\system32\perfc00C.dat
2018-01-06 18:55 - 2017-08-30 20:29 - 000000000 ____D C:\Users\vchab\AppData\LocalLow\Mozilla
2018-01-06 18:53 - 2017-08-30 20:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-06 18:53 - 2017-08-30 20:11 - 000000000 ____D C:\ProgramData\NVIDIA
2018-01-06 18:53 - 2017-03-18 12:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2018-01-06 18:45 - 2017-08-30 20:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-01-06 17:45 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-06 17:45 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-01-06 12:28 - 2017-10-05 08:26 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-01-06 12:28 - 2017-09-10 11:44 - 000003514 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-01-06 12:28 - 2017-09-10 11:44 - 000003290 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-01-06 12:28 - 2017-08-30 20:16 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3029278399-1626031686-2435291076-1001
2018-01-06 11:43 - 2017-09-10 11:44 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-06 11:43 - 2017-09-10 11:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-06 11:32 - 2017-08-30 20:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-01-06 11:32 - 2017-08-30 20:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-06 11:32 - 2017-08-30 19:23 - 000000000 ___RD C:\Users\vchab\OneDrive
2018-01-06 11:14 - 2017-11-10 18:21 - 000000000 ____D C:\ProgramData\Logishrd
2018-01-06 09:57 - 2017-10-24 13:50 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-01-06 09:52 - 2017-08-30 19:35 - 000000000 ___DC C:\WINDOWS\Panther
2018-01-06 09:52 - 2017-08-30 19:23 - 000000000 ____D C:\Users\vchab\AppData\Roaming\Skype
2018-01-06 09:52 - 2017-05-10 23:17 - 000000000 ____D C:\ProgramData\install_clap
2018-01-06 09:52 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-01-06 09:52 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2018-01-06 09:51 - 2017-09-30 16:03 - 000000000 ___HD C:\$WINDOWS.~BT
2018-01-05 11:52 - 2017-08-30 20:26 - 000001007 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-01-05 09:42 - 2017-11-17 09:42 - 000185096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000457400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000358672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000204456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000146664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000110336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000084384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000046976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-01-05 09:42 - 2017-09-10 11:43 - 000003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-01-05 09:41 - 2017-10-04 16:50 - 000580480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 001025176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000343768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000321512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000199448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-01-05 09:41 - 2017-09-10 11:43 - 000057696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-01-04 11:22 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-01-03 11:00 - 2017-09-10 14:10 - 000000000 ____D C:\Users\vchab\AppData\Local\Adobe
2017-12-29 15:41 - 2017-08-30 20:19 - 000043818 _____ C:\WINDOWS\diagwrn.xml
2017-12-29 15:41 - 2017-08-30 20:19 - 000043818 _____ C:\WINDOWS\diagerr.xml
2017-12-28 16:25 - 2017-08-30 19:22 - 000000000 ____D C:\Users\vchab\AppData\Local\Packages
2017-12-28 15:59 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Registration
2017-12-28 15:10 - 2017-11-12 19:59 - 000000000 ____D C:\temp
2017-12-23 10:32 - 2017-11-12 20:51 - 000000559 ____N C:\WINDOWS\system32\GelSprinter GX e2600 (Copie 1).CAC
2017-12-21 10:44 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-12-19 09:24 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-12-19 09:23 - 2017-05-10 23:25 - 000000000 ____D C:\Program Files\Microsoft Office
2017-12-19 09:23 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-12-19 09:15 - 2017-05-10 22:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-12-18 18:00 - 2017-08-30 19:14 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-12-18 18:00 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-12-18 18:00 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-12-18 18:00 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\en-GB
2017-12-18 17:59 - 2017-08-30 20:12 - 000000000 ____D C:\Users\vchab
2017-12-18 14:24 - 2017-09-10 15:18 - 000000033 _____ C:\Users\vchab\AppData\Roaming\AdobeWLCMCache.dat
2017-12-14 10:11 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-13 10:14 - 2017-09-01 21:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 10:08 - 2017-10-11 08:23 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 10:08 - 2017-09-01 21:43 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-07 16:30 - 2017-12-02 22:44 - 000000000 ____D C:\Users\vchab\Desktop\couleur b
==================== Fichiers à la racine de certains dossiers =======
2017-09-10 15:18 - 2017-12-18 14:24 - 000000033 _____ () C:\Users\vchab\AppData\Roaming\AdobeWLCMCache.dat
2017-08-30 19:25 - 2017-10-05 08:10 - 000000182 _____ () C:\Users\vchab\AppData\Roaming\sp_data.sys
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-02 10:13
==================== Fin de FRST.txt ============================