Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17.01.2018 01
Exécuté par chris (administrateur) sur CHRIS-PC (21-01-2018 10:58:09)
Exécuté depuis C:\Users\chris\Desktop
Profils chargés: chris (Profils disponibles: chris)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\stacsv64.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Guillemot Corporation S.A.) C:\Program Files (x86)\Hercules\Dualpix Infinite\XtrCtrlPro.exe
(Camshare, Inc.) C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe
(ASUS) C:\Windows\AsScrPro.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
() C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Camshare Inc.) C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Boingo Wireless, Inc.) C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
() C:\Program Files (x86)\Camfrog\Camfrog Video Chat\camfrog_cef.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [621440 2009-09-30] (ELAN Microelectronic Corp.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2009-11-27] (IDT, Inc.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-01] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [CamserviceInfinite] => C:\Program Files (x86)\Hercules\Dualpix Infinite\XtrCtrlPro.exe [3426672 2012-02-02] (Guillemot Corporation S.A.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [246120 2018-01-11] (AVAST Software)
HKLM-x32\...\Run: [Boingo Wi-Fi] => C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2429 2010-10-10] ()
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6998656 2009-10-27] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2009-08-20] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-12-08] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2010-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-20] (Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-253943887-2925865146-2322250329-1001\...\Run: [Camfrog] => C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe [19419656 2018-01-18] (Camshare, Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2010-10-10]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe ()
AlternateShell: 440510867285l.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{20F6DBB8-347A-4D1F-BAB0-4C3686BFAFE2}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{20F6DBB8-347A-4D1F-BAB0-4C3686BFAFE2}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{48374005-D056-46BB-AB54-0BF3C7F15DD6}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{67659E8C-97D5-4FC2-A88F-7D821843EB0D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D513D97B-2601-4608-BD18-E98F84168628}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E62A8BFB-7004-4685-8FE8-2D5A49A7ED32}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live Family Safety Browser Helper Class -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [2010-04-28] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2017-11-15] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-10-10] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2010-10-10] (Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22] (Adobe Systems Incorporated)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2017-11-15] (AVAST Software)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-10] (Google Inc.)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2010-10-10] (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Pas de fichier
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
DPF: HKLM-x32 {8038F0B4-376E-4E4D-8D47-3F351F5BADAA} hxxps://extranet.semitag.com/f5-w-f5f61e1baba188e169dd43d5ab8388466aca449db1ff91371ab010855ac3e901a08f0f40d4ada15936dade21179bede99d$$/vdocportal/tools/ocx/VDocPortal.cab
DPF: HKLM-x32 {F9043C85-F6F2-101A-A3C9-08002B2F49FB} ms-its:C:\Program Files (x86)\The Tournament Director 3\TD.lib::/comdlg32.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-11] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-11] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://encrypted.google.com
CHR StartupUrls: Default -> "hxxps://encrypted.google.com"
CHR Profile: C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default [2018-01-21]
CHR Extension: (Avast SafePrice) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-01-11]
CHR Extension: (Avast Online Security) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-09]
CHR Extension: (Chrome Media Router) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-01-13]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\x64\aswidsagenta.exe [7538536 2018-01-11] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [301168 2018-01-11] (AVAST Software)
R2 camfrog_update_service; C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe [1063968 2016-12-19] (Camshare Inc.)
R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [Fichier non signé]
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [197776 2016-12-14] (Sandboxie Holdings, LLC)
S0 SharedAccess; C:\Windows\System32\ipnathlp.dll [359424 2009-07-14] (Microsoft Corporation)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [243712 2009-11-27] (IDT, Inc.)
R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [185096 2018-01-11] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321512 2018-01-11] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199448 2018-01-11] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343768 2018-01-11] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57696 2018-01-11] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [149344 2018-01-11] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-01-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [146648 2018-01-11] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110336 2018-01-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84384 2018-01-11] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1025176 2018-01-11] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [457896 2018-01-11] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [204456 2018-01-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [358672 2018-01-11] (AVAST Software)
S3 BS_DEF; C:\Windows\BS_DEF.sys [21048 2014-01-23] () [Fichier non signé]
S3 guillflt; C:\Windows\System32\DRIVERS\guillflt.sys [65024 2009-06-04] (Guillemot Corp S.A.)
S3 hxctlflt; C:\Windows\System32\Drivers\hxctlflt.sys [111104 2009-02-09] (Guillemot Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [205968 2016-12-14] (Sandboxie Holdings, LLC)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3552384 2009-04-22] ()
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [Fichier non signé]
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-08-06] ()
U3 tmlwf; pas de ImagePath
U3 tmwfp; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-21 10:53 - 2018-01-21 10:53 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-20 23:59 - 2018-01-20 23:59 - 000002185 _____ C:\Users\chris\Desktop\Camfrog Video Chat.lnk
2018-01-20 23:59 - 2018-01-20 23:59 - 000000000 ____D C:\Users\chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Camfrog Video Chat
2018-01-20 23:57 - 2018-01-20 23:57 - 049789920 _____ (Camshare, Inc.) C:\Users\chris\Downloads\camfrog.exe
2018-01-20 23:31 - 2018-01-20 23:31 - 000000000 ____D C:\KVRT_Data
2018-01-20 23:29 - 2018-01-20 23:30 - 139117352 _____ (Kaspersky Lab ZAO) C:\Users\chris\Desktop\KVRT.exe
2018-01-20 23:28 - 2018-01-20 23:28 - 000005145 _____ C:\Users\chris\Desktop\JRT.txt
2018-01-20 23:22 - 2018-01-20 23:23 - 001790024 _____ (Malwarebytes) C:\Users\chris\Desktop\JRT.exe
2018-01-20 23:16 - 2018-01-20 23:16 - 000001561 _____ C:\Users\chris\Desktop\AdwCleaner[C2].txt
2018-01-20 23:15 - 2018-01-20 23:15 - 000001225 _____ C:\Users\chris\Desktop\AdwCleaner[S2].txt
2018-01-20 22:22 - 2018-01-20 22:22 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\37366789.sys
2018-01-20 22:21 - 2018-01-20 23:11 - 000000000 ____D C:\Users\chris\Desktop\mbar
2018-01-20 22:21 - 2018-01-20 23:04 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-01-20 22:20 - 2018-01-20 22:20 - 014178840 _____ (Malwarebytes Corp.) C:\Users\chris\Desktop\mbar-1.10.3.1001.exe
2018-01-20 22:10 - 2018-01-20 22:11 - 000002129 _____ C:\Users\chris\Desktop\ZHPCleaner.txt
2018-01-20 22:04 - 2018-01-20 22:04 - 000000834 _____ C:\Users\chris\Desktop\ZHPCleaner.lnk
2018-01-20 19:54 - 2018-01-20 19:54 - 000003034 _____ C:\Users\chris\Desktop\ZHPFixReport.txt
2018-01-20 19:51 - 2018-01-20 19:51 - 000000000 ____D C:\Users\chris\Desktop\Quarantine
2018-01-20 19:48 - 2018-01-20 19:48 - 003061760 _____ (Nicolas Coolman) C:\Users\chris\Desktop\ZHPFix.exe
2018-01-20 19:26 - 2018-01-20 19:26 - 000000000 ____D C:\Users\chris\AppData\Roaming\MPC-HC
2018-01-19 20:55 - 2018-01-19 20:55 - 003046272 _____ C:\Users\chris\Desktop\ZHPCleaner.exe
2018-01-19 20:42 - 2018-01-19 20:42 - 008206624 _____ (Malwarebytes) C:\Users\chris\Desktop\adwcleaner_7.0.7.0.exe
2018-01-19 16:08 - 2018-01-19 16:08 - 000060146 _____ C:\Users\chris\Desktop\Shortcut.txt
2018-01-19 16:08 - 2018-01-19 16:08 - 000038924 _____ C:\Users\chris\Desktop\Addition.txt
2018-01-19 16:07 - 2018-01-21 10:59 - 000017424 _____ C:\Users\chris\Desktop\FRST.txt
2018-01-19 16:06 - 2018-01-21 10:58 - 000000000 ____D C:\FRST
2018-01-19 16:04 - 2018-01-19 16:04 - 000157777 _____ C:\Users\chris\Desktop\ZHPDiag.txt
2018-01-19 16:00 - 2018-01-20 22:11 - 000000000 ____D C:\Users\chris\AppData\Roaming\ZHP
2018-01-19 16:00 - 2018-01-20 22:04 - 000000000 ____D C:\Users\chris\AppData\Local\ZHP
2018-01-19 16:00 - 2018-01-19 16:00 - 000000824 _____ C:\Users\chris\Desktop\ZHPDiag.lnk
2018-01-19 15:54 - 2018-01-19 15:54 - 002393088 _____ (Farbar) C:\Users\chris\Desktop\FRST64.exe
2018-01-19 15:49 - 2018-01-19 15:49 - 002964864 _____ C:\Users\chris\Desktop\ZHPDiag3.exe
2018-01-19 15:42 - 2018-01-19 15:42 - 000000000 ____D C:\Users\chris\AppData\Local\ElevatedDiagnostics
2018-01-13 12:26 - 2018-01-13 12:26 - 000003160 _____ C:\Windows\System32\Tasks\klcp_update
2018-01-13 12:25 - 2018-01-13 12:25 - 045801017 _____ (KLCP ) C:\Users\chris\Downloads\K-Lite_Codec_Pack_1375_Full.exe
2018-01-13 12:25 - 2018-01-13 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2018-01-13 12:25 - 2018-01-13 12:25 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2018-01-13 11:51 - 2018-01-13 11:51 - 049838088 _____ (Camshare, Inc.) C:\Users\chris\Downloads\camfrog (5).exe
2018-01-11 15:39 - 2018-01-11 15:39 - 000001709 _____ C:\Users\Public\Desktop\iTunes.lnk
2018-01-11 15:39 - 2018-01-11 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-01-11 15:39 - 2018-01-11 15:39 - 000000000 ____D C:\Program Files\iPod
2018-01-11 15:37 - 2018-01-11 15:39 - 000000000 ____D C:\Program Files\iTunes
2018-01-11 15:13 - 2018-01-11 15:12 - 000365680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-01-11 15:13 - 2018-01-11 15:12 - 000149344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-01-11 15:07 - 2018-01-11 15:07 - 000000000 ____D C:\Program Files\Common Files\Avast Software
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-21 10:52 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-21 00:28 - 2010-12-14 20:45 - 000000000 ____D C:\Users\chris\AppData\Roaming\Skype
2018-01-21 00:03 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-21 00:03 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-20 23:59 - 2010-12-19 22:40 - 000000000 ____D C:\Users\chris\AppData\Roaming\Camfrog
2018-01-20 23:58 - 2010-12-19 22:40 - 000000000 ____D C:\Program Files (x86)\Camfrog
2018-01-20 23:20 - 2017-11-15 20:14 - 000000000 ____D C:\AdwCleaner
2018-01-20 23:18 - 2009-07-14 06:08 - 000032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-01-20 23:11 - 2014-12-20 15:42 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2018-01-20 22:18 - 2014-12-20 15:43 - 000192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2018-01-20 19:52 - 2015-12-11 21:37 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-01-20 19:44 - 2010-10-10 00:09 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-01-20 19:23 - 2009-08-04 11:03 - 000748362 _____ C:\Windows\system32\perfh00C.dat
2018-01-20 19:23 - 2009-08-04 11:03 - 000150596 _____ C:\Windows\system32\perfc00C.dat
2018-01-20 19:23 - 2009-07-14 06:13 - 001671272 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-20 19:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-01-19 15:42 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2018-01-19 15:08 - 2011-01-03 20:05 - 000001388 _____ C:\Windows\Sandboxie.ini
2018-01-16 11:40 - 2017-09-09 01:21 - 000004174 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-01-13 11:52 - 2014-11-07 12:52 - 000000000 ____D C:\ProgramData\Camfrog Update
2018-01-11 15:39 - 2013-09-27 06:54 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-01-11 15:39 - 2012-03-29 13:16 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-01-11 15:39 - 2012-03-29 13:16 - 000000000 ____D C:\Windows\system32\Macromed
2018-01-11 15:39 - 2011-06-30 21:55 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-11 15:39 - 2010-10-10 00:12 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-01-11 15:24 - 2010-10-10 00:10 - 000002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-11 15:13 - 2011-02-19 17:06 - 000457896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-01-11 15:13 - 2011-02-19 17:06 - 000146648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-01-11 15:12 - 2017-11-15 13:23 - 000185096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000343768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000321512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000199448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000057696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-01-11 15:12 - 2014-07-20 09:53 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-01-11 15:12 - 2014-01-23 13:06 - 000204456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-01-11 15:12 - 2013-04-30 15:40 - 000358672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-01-11 15:12 - 2013-04-30 15:40 - 000110336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-01-11 15:12 - 2013-04-30 15:40 - 000084384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-01-11 15:12 - 2011-12-04 12:22 - 001025176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-01-11 15:12 - 2011-02-19 17:06 - 000457400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys.151568001602609
2018-01-11 15:12 - 2011-02-19 17:06 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys.151568001602609
==================== Fichiers à la racine de certains dossiers =======
2005-03-09 04:07 - 2005-03-09 04:07 - 000630784 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ACE.dll
2005-03-03 15:39 - 2005-03-03 15:39 - 000425984 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AdobeUpdater.dll
2005-03-09 04:17 - 2005-03-09 04:17 - 000475136 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AdobeXMP.dll
2005-02-07 08:45 - 2005-02-07 08:45 - 000005632 _____ (IBM Corporation and others) C:\Program Files (x86)\agldt28l.dll
2005-03-13 12:01 - 2005-03-13 12:01 - 001805824 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AGM.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 000266240 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ARE.dll
2004-08-24 15:55 - 2004-08-24 15:55 - 000126976 _____ (Adobe Systems Inc.) C:\Program Files (x86)\asneu.dll
2005-03-09 04:32 - 2005-03-09 04:32 - 000151552 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AXE16SharedExpat.dll
2005-03-09 04:32 - 2005-03-09 04:32 - 000151552 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AXE8SharedExpat.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 000180224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\Bib.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 000217088 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\BIBUtils.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 002162688 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\CoolType.dll
2005-02-10 13:36 - 2005-02-10 13:36 - 000143360 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_eula.dll
2005-01-18 12:31 - 2005-01-18 12:31 - 000114688 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_pers.dll
2005-01-19 14:31 - 2005-01-19 14:31 - 000155648 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_regs.dll
2005-02-08 13:43 - 2005-02-08 13:43 - 000045056 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\eularesen_US.dll
2005-04-06 07:15 - 2005-04-06 07:15 - 000045056 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\eularesfr_FR.dll
2005-02-17 11:28 - 2005-02-17 11:28 - 000663552 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\FileInfo.dll
2005-04-06 03:38 - 2005-04-06 03:38 - 019980288 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ImageReady.exe
2005-04-06 07:15 - 2005-04-06 07:15 - 000692224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ImageReadyRes.dll
2005-02-25 13:50 - 2005-02-25 13:50 - 000157035 _____ () C:\Program Files (x86)\Informations juridiques.pdf
2011-02-19 16:56 - 2011-02-19 16:56 - 000000716 _____ () C:\Program Files (x86)\install.adb
2005-02-15 02:03 - 2005-02-15 02:03 - 000561152 _____ (Adobe system Incorporated) C:\Program Files (x86)\JP2KLib.dll
2004-06-22 12:57 - 2004-06-22 12:57 - 000589824 _____ (IBM Corporation and others) C:\Program Files (x86)\libagluc28.dll
2005-03-10 20:31 - 2005-03-10 20:31 - 003715072 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\MPS.dll
2000-08-29 00:19 - 2000-08-29 00:19 - 000401462 _____ (Microsoft Corporation) C:\Program Files (x86)\MSVCP60.DLL
2003-05-08 18:34 - 2003-05-08 18:34 - 000499712 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcp71.dll
2003-05-08 18:32 - 2003-05-08 18:32 - 000348160 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcr71.dll
1999-02-02 00:00 - 1999-02-02 00:00 - 000266293 _____ (Microsoft Corporation) C:\Program Files (x86)\Msvcrt.dll
2005-03-13 13:10 - 2005-03-13 13:10 - 004096000 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\PDFL70.dll
2005-01-12 14:23 - 2005-01-12 14:23 - 000180224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\pdfsettings.dll
2005-02-08 13:43 - 2005-02-08 13:43 - 000049152 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\persresen_US.dll
2005-04-06 07:15 - 2005-04-06 07:15 - 000049152 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\persresfr_FR.dll
2005-04-06 07:14 - 2005-04-06 07:14 - 000023981 _____ () C:\Program Files (x86)\Photoshop Lisez-moi.wri
2005-04-06 07:15 - 2005-04-06 07:15 - 001327104 _____ () C:\Program Files (x86)\Photoshop.dll
2005-04-06 04:31 - 2005-04-06 04:31 - 019533824 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Photoshop.exe
2005-03-22 16:28 - 2005-03-22 16:28 - 022843959 _____ () C:\Program Files (x86)\Photoshop_9.0_fr-fr.zip
2005-04-06 07:15 - 2005-04-06 07:15 - 000041984 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Plugin.dll
2005-04-06 03:50 - 2005-04-06 03:50 - 002142208 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\PSArt.dll
2005-04-06 03:50 - 2005-04-06 03:50 - 001748992 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\PSViews.dll
2005-03-16 18:57 - 2005-03-16 18:57 - 000061440 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\regsresen_US.dll
2005-04-06 07:15 - 2005-04-06 07:15 - 000061440 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\regsresfr_FR.dll
1999-12-03 06:01 - 1999-12-03 06:01 - 000022800 _____ (Microsoft Corporation) C:\Program Files (x86)\Shfolder.dll
2005-04-06 03:46 - 2005-04-06 03:46 - 000011776 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Tw10122.dat
2005-04-06 03:50 - 2005-04-06 03:50 - 000150644 _____ () C:\Program Files (x86)\TypeLibrary.tlb
2005-03-23 06:35 - 2005-03-23 06:35 - 004153344 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\VersionCue.dll
2005-03-23 06:35 - 2005-03-23 06:35 - 003170304 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\VersionCueUI.dll
2014-03-04 15:26 - 2014-12-20 15:31 - 000000093 _____ () C:\Users\chris\AppData\Roaming\WB.CFG
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-19 18:50
==================== Fin de FRST.txt ============================
Exécuté par chris (administrateur) sur CHRIS-PC (21-01-2018 10:58:09)
Exécuté depuis C:\Users\chris\Desktop
Profils chargés: chris (Profils disponibles: chris)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\stacsv64.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Guillemot Corporation S.A.) C:\Program Files (x86)\Hercules\Dualpix Infinite\XtrCtrlPro.exe
(Camshare, Inc.) C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe
(ASUS) C:\Windows\AsScrPro.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
() C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Camshare Inc.) C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Boingo Wireless, Inc.) C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
() C:\Program Files (x86)\Camfrog\Camfrog Video Chat\camfrog_cef.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [621440 2009-09-30] (ELAN Microelectronic Corp.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2009-11-27] (IDT, Inc.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-01] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [CamserviceInfinite] => C:\Program Files (x86)\Hercules\Dualpix Infinite\XtrCtrlPro.exe [3426672 2012-02-02] (Guillemot Corporation S.A.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [246120 2018-01-11] (AVAST Software)
HKLM-x32\...\Run: [Boingo Wi-Fi] => C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2429 2010-10-10] ()
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6998656 2009-10-27] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2009-08-20] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-12-08] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2010-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-20] (Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-253943887-2925865146-2322250329-1001\...\Run: [Camfrog] => C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe [19419656 2018-01-18] (Camshare, Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2010-10-10]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe ()
AlternateShell: 440510867285l.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{20F6DBB8-347A-4D1F-BAB0-4C3686BFAFE2}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{20F6DBB8-347A-4D1F-BAB0-4C3686BFAFE2}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{48374005-D056-46BB-AB54-0BF3C7F15DD6}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{67659E8C-97D5-4FC2-A88F-7D821843EB0D}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D513D97B-2601-4608-BD18-E98F84168628}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{E62A8BFB-7004-4685-8FE8-2D5A49A7ED32}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live Family Safety Browser Helper Class -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [2010-04-28] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2017-11-15] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-10-10] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2010-10-10] (Google Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22] (Adobe Systems Incorporated)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2017-11-15] (AVAST Software)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-10-10] (Google Inc.)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2010-10-10] (Google Inc.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Pas de fichier
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
DPF: HKLM-x32 {8038F0B4-376E-4E4D-8D47-3F351F5BADAA} hxxps://extranet.semitag.com/f5-w-f5f61e1baba188e169dd43d5ab8388466aca449db1ff91371ab010855ac3e901a08f0f40d4ada15936dade21179bede99d$$/vdocportal/tools/ocx/VDocPortal.cab
DPF: HKLM-x32 {F9043C85-F6F2-101A-A3C9-08002B2F49FB} ms-its:C:\Program Files (x86)\The Tournament Director 3\TD.lib::/comdlg32.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Technologies)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-11] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-11] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://encrypted.google.com
CHR StartupUrls: Default -> "hxxps://encrypted.google.com"
CHR Profile: C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default [2018-01-21]
CHR Extension: (Avast SafePrice) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-01-11]
CHR Extension: (Avast Online Security) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-09]
CHR Extension: (Chrome Media Router) - C:\Users\chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-01-13]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\x64\aswidsagenta.exe [7538536 2018-01-11] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [301168 2018-01-11] (AVAST Software)
R2 camfrog_update_service; C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe [1063968 2016-12-19] (Camshare Inc.)
R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [Fichier non signé]
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [197776 2016-12-14] (Sandboxie Holdings, LLC)
S0 SharedAccess; C:\Windows\System32\ipnathlp.dll [359424 2009-07-14] (Microsoft Corporation)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [243712 2009-11-27] (IDT, Inc.)
R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [185096 2018-01-11] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321512 2018-01-11] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199448 2018-01-11] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343768 2018-01-11] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57696 2018-01-11] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [149344 2018-01-11] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-01-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41832 2017-09-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [146648 2018-01-11] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110336 2018-01-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84384 2018-01-11] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1025176 2018-01-11] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [457896 2018-01-11] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [204456 2018-01-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [358672 2018-01-11] (AVAST Software)
S3 BS_DEF; C:\Windows\BS_DEF.sys [21048 2014-01-23] () [Fichier non signé]
S3 guillflt; C:\Windows\System32\DRIVERS\guillflt.sys [65024 2009-06-04] (Guillemot Corp S.A.)
S3 hxctlflt; C:\Windows\System32\Drivers\hxctlflt.sys [111104 2009-02-09] (Guillemot Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [205968 2016-12-14] (Sandboxie Holdings, LLC)
S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3552384 2009-04-22] ()
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [Fichier non signé]
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-08-06] ()
U3 tmlwf; pas de ImagePath
U3 tmwfp; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-21 10:53 - 2018-01-21 10:53 - 000000000 ____D C:\ProgramData\SWCUTemp
2018-01-20 23:59 - 2018-01-20 23:59 - 000002185 _____ C:\Users\chris\Desktop\Camfrog Video Chat.lnk
2018-01-20 23:59 - 2018-01-20 23:59 - 000000000 ____D C:\Users\chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Camfrog Video Chat
2018-01-20 23:57 - 2018-01-20 23:57 - 049789920 _____ (Camshare, Inc.) C:\Users\chris\Downloads\camfrog.exe
2018-01-20 23:31 - 2018-01-20 23:31 - 000000000 ____D C:\KVRT_Data
2018-01-20 23:29 - 2018-01-20 23:30 - 139117352 _____ (Kaspersky Lab ZAO) C:\Users\chris\Desktop\KVRT.exe
2018-01-20 23:28 - 2018-01-20 23:28 - 000005145 _____ C:\Users\chris\Desktop\JRT.txt
2018-01-20 23:22 - 2018-01-20 23:23 - 001790024 _____ (Malwarebytes) C:\Users\chris\Desktop\JRT.exe
2018-01-20 23:16 - 2018-01-20 23:16 - 000001561 _____ C:\Users\chris\Desktop\AdwCleaner[C2].txt
2018-01-20 23:15 - 2018-01-20 23:15 - 000001225 _____ C:\Users\chris\Desktop\AdwCleaner[S2].txt
2018-01-20 22:22 - 2018-01-20 22:22 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\37366789.sys
2018-01-20 22:21 - 2018-01-20 23:11 - 000000000 ____D C:\Users\chris\Desktop\mbar
2018-01-20 22:21 - 2018-01-20 23:04 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2018-01-20 22:20 - 2018-01-20 22:20 - 014178840 _____ (Malwarebytes Corp.) C:\Users\chris\Desktop\mbar-1.10.3.1001.exe
2018-01-20 22:10 - 2018-01-20 22:11 - 000002129 _____ C:\Users\chris\Desktop\ZHPCleaner.txt
2018-01-20 22:04 - 2018-01-20 22:04 - 000000834 _____ C:\Users\chris\Desktop\ZHPCleaner.lnk
2018-01-20 19:54 - 2018-01-20 19:54 - 000003034 _____ C:\Users\chris\Desktop\ZHPFixReport.txt
2018-01-20 19:51 - 2018-01-20 19:51 - 000000000 ____D C:\Users\chris\Desktop\Quarantine
2018-01-20 19:48 - 2018-01-20 19:48 - 003061760 _____ (Nicolas Coolman) C:\Users\chris\Desktop\ZHPFix.exe
2018-01-20 19:26 - 2018-01-20 19:26 - 000000000 ____D C:\Users\chris\AppData\Roaming\MPC-HC
2018-01-19 20:55 - 2018-01-19 20:55 - 003046272 _____ C:\Users\chris\Desktop\ZHPCleaner.exe
2018-01-19 20:42 - 2018-01-19 20:42 - 008206624 _____ (Malwarebytes) C:\Users\chris\Desktop\adwcleaner_7.0.7.0.exe
2018-01-19 16:08 - 2018-01-19 16:08 - 000060146 _____ C:\Users\chris\Desktop\Shortcut.txt
2018-01-19 16:08 - 2018-01-19 16:08 - 000038924 _____ C:\Users\chris\Desktop\Addition.txt
2018-01-19 16:07 - 2018-01-21 10:59 - 000017424 _____ C:\Users\chris\Desktop\FRST.txt
2018-01-19 16:06 - 2018-01-21 10:58 - 000000000 ____D C:\FRST
2018-01-19 16:04 - 2018-01-19 16:04 - 000157777 _____ C:\Users\chris\Desktop\ZHPDiag.txt
2018-01-19 16:00 - 2018-01-20 22:11 - 000000000 ____D C:\Users\chris\AppData\Roaming\ZHP
2018-01-19 16:00 - 2018-01-20 22:04 - 000000000 ____D C:\Users\chris\AppData\Local\ZHP
2018-01-19 16:00 - 2018-01-19 16:00 - 000000824 _____ C:\Users\chris\Desktop\ZHPDiag.lnk
2018-01-19 15:54 - 2018-01-19 15:54 - 002393088 _____ (Farbar) C:\Users\chris\Desktop\FRST64.exe
2018-01-19 15:49 - 2018-01-19 15:49 - 002964864 _____ C:\Users\chris\Desktop\ZHPDiag3.exe
2018-01-19 15:42 - 2018-01-19 15:42 - 000000000 ____D C:\Users\chris\AppData\Local\ElevatedDiagnostics
2018-01-13 12:26 - 2018-01-13 12:26 - 000003160 _____ C:\Windows\System32\Tasks\klcp_update
2018-01-13 12:25 - 2018-01-13 12:25 - 045801017 _____ (KLCP ) C:\Users\chris\Downloads\K-Lite_Codec_Pack_1375_Full.exe
2018-01-13 12:25 - 2018-01-13 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2018-01-13 12:25 - 2018-01-13 12:25 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2018-01-13 11:51 - 2018-01-13 11:51 - 049838088 _____ (Camshare, Inc.) C:\Users\chris\Downloads\camfrog (5).exe
2018-01-11 15:39 - 2018-01-11 15:39 - 000001709 _____ C:\Users\Public\Desktop\iTunes.lnk
2018-01-11 15:39 - 2018-01-11 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-01-11 15:39 - 2018-01-11 15:39 - 000000000 ____D C:\Program Files\iPod
2018-01-11 15:37 - 2018-01-11 15:39 - 000000000 ____D C:\Program Files\iTunes
2018-01-11 15:13 - 2018-01-11 15:12 - 000365680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-01-11 15:13 - 2018-01-11 15:12 - 000149344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-01-11 15:07 - 2018-01-11 15:07 - 000000000 ____D C:\Program Files\Common Files\Avast Software
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-21 10:52 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-21 00:28 - 2010-12-14 20:45 - 000000000 ____D C:\Users\chris\AppData\Roaming\Skype
2018-01-21 00:03 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-01-21 00:03 - 2009-07-14 05:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-01-20 23:59 - 2010-12-19 22:40 - 000000000 ____D C:\Users\chris\AppData\Roaming\Camfrog
2018-01-20 23:58 - 2010-12-19 22:40 - 000000000 ____D C:\Program Files (x86)\Camfrog
2018-01-20 23:20 - 2017-11-15 20:14 - 000000000 ____D C:\AdwCleaner
2018-01-20 23:18 - 2009-07-14 06:08 - 000032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-01-20 23:11 - 2014-12-20 15:42 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2018-01-20 22:18 - 2014-12-20 15:43 - 000192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2018-01-20 19:52 - 2015-12-11 21:37 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-01-20 19:44 - 2010-10-10 00:09 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-01-20 19:23 - 2009-08-04 11:03 - 000748362 _____ C:\Windows\system32\perfh00C.dat
2018-01-20 19:23 - 2009-08-04 11:03 - 000150596 _____ C:\Windows\system32\perfc00C.dat
2018-01-20 19:23 - 2009-07-14 06:13 - 001671272 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-20 19:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-01-19 15:42 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2018-01-19 15:08 - 2011-01-03 20:05 - 000001388 _____ C:\Windows\Sandboxie.ini
2018-01-16 11:40 - 2017-09-09 01:21 - 000004174 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-01-13 11:52 - 2014-11-07 12:52 - 000000000 ____D C:\ProgramData\Camfrog Update
2018-01-11 15:39 - 2013-09-27 06:54 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-01-11 15:39 - 2012-03-29 13:16 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-01-11 15:39 - 2012-03-29 13:16 - 000000000 ____D C:\Windows\system32\Macromed
2018-01-11 15:39 - 2011-06-30 21:55 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-11 15:39 - 2010-10-10 00:12 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-01-11 15:24 - 2010-10-10 00:10 - 000002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-11 15:13 - 2011-02-19 17:06 - 000457896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-01-11 15:13 - 2011-02-19 17:06 - 000146648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-01-11 15:12 - 2017-11-15 13:23 - 000185096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000343768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000321512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000199448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-01-11 15:12 - 2017-09-09 01:20 - 000057696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-01-11 15:12 - 2014-07-20 09:53 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-01-11 15:12 - 2014-01-23 13:06 - 000204456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-01-11 15:12 - 2013-04-30 15:40 - 000358672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-01-11 15:12 - 2013-04-30 15:40 - 000110336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-01-11 15:12 - 2013-04-30 15:40 - 000084384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-01-11 15:12 - 2011-12-04 12:22 - 001025176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-01-11 15:12 - 2011-02-19 17:06 - 000457400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys.151568001602609
2018-01-11 15:12 - 2011-02-19 17:06 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys.151568001602609
==================== Fichiers à la racine de certains dossiers =======
2005-03-09 04:07 - 2005-03-09 04:07 - 000630784 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ACE.dll
2005-03-03 15:39 - 2005-03-03 15:39 - 000425984 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AdobeUpdater.dll
2005-03-09 04:17 - 2005-03-09 04:17 - 000475136 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AdobeXMP.dll
2005-02-07 08:45 - 2005-02-07 08:45 - 000005632 _____ (IBM Corporation and others) C:\Program Files (x86)\agldt28l.dll
2005-03-13 12:01 - 2005-03-13 12:01 - 001805824 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AGM.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 000266240 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ARE.dll
2004-08-24 15:55 - 2004-08-24 15:55 - 000126976 _____ (Adobe Systems Inc.) C:\Program Files (x86)\asneu.dll
2005-03-09 04:32 - 2005-03-09 04:32 - 000151552 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AXE16SharedExpat.dll
2005-03-09 04:32 - 2005-03-09 04:32 - 000151552 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AXE8SharedExpat.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 000180224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\Bib.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 000217088 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\BIBUtils.dll
2005-03-09 04:07 - 2005-03-09 04:07 - 002162688 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\CoolType.dll
2005-02-10 13:36 - 2005-02-10 13:36 - 000143360 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_eula.dll
2005-01-18 12:31 - 2005-01-18 12:31 - 000114688 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_pers.dll
2005-01-19 14:31 - 2005-01-19 14:31 - 000155648 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_regs.dll
2005-02-08 13:43 - 2005-02-08 13:43 - 000045056 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\eularesen_US.dll
2005-04-06 07:15 - 2005-04-06 07:15 - 000045056 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\eularesfr_FR.dll
2005-02-17 11:28 - 2005-02-17 11:28 - 000663552 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\FileInfo.dll
2005-04-06 03:38 - 2005-04-06 03:38 - 019980288 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ImageReady.exe
2005-04-06 07:15 - 2005-04-06 07:15 - 000692224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ImageReadyRes.dll
2005-02-25 13:50 - 2005-02-25 13:50 - 000157035 _____ () C:\Program Files (x86)\Informations juridiques.pdf
2011-02-19 16:56 - 2011-02-19 16:56 - 000000716 _____ () C:\Program Files (x86)\install.adb
2005-02-15 02:03 - 2005-02-15 02:03 - 000561152 _____ (Adobe system Incorporated) C:\Program Files (x86)\JP2KLib.dll
2004-06-22 12:57 - 2004-06-22 12:57 - 000589824 _____ (IBM Corporation and others) C:\Program Files (x86)\libagluc28.dll
2005-03-10 20:31 - 2005-03-10 20:31 - 003715072 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\MPS.dll
2000-08-29 00:19 - 2000-08-29 00:19 - 000401462 _____ (Microsoft Corporation) C:\Program Files (x86)\MSVCP60.DLL
2003-05-08 18:34 - 2003-05-08 18:34 - 000499712 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcp71.dll
2003-05-08 18:32 - 2003-05-08 18:32 - 000348160 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcr71.dll
1999-02-02 00:00 - 1999-02-02 00:00 - 000266293 _____ (Microsoft Corporation) C:\Program Files (x86)\Msvcrt.dll
2005-03-13 13:10 - 2005-03-13 13:10 - 004096000 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\PDFL70.dll
2005-01-12 14:23 - 2005-01-12 14:23 - 000180224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\pdfsettings.dll
2005-02-08 13:43 - 2005-02-08 13:43 - 000049152 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\persresen_US.dll
2005-04-06 07:15 - 2005-04-06 07:15 - 000049152 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\persresfr_FR.dll
2005-04-06 07:14 - 2005-04-06 07:14 - 000023981 _____ () C:\Program Files (x86)\Photoshop Lisez-moi.wri
2005-04-06 07:15 - 2005-04-06 07:15 - 001327104 _____ () C:\Program Files (x86)\Photoshop.dll
2005-04-06 04:31 - 2005-04-06 04:31 - 019533824 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Photoshop.exe
2005-03-22 16:28 - 2005-03-22 16:28 - 022843959 _____ () C:\Program Files (x86)\Photoshop_9.0_fr-fr.zip
2005-04-06 07:15 - 2005-04-06 07:15 - 000041984 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Plugin.dll
2005-04-06 03:50 - 2005-04-06 03:50 - 002142208 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\PSArt.dll
2005-04-06 03:50 - 2005-04-06 03:50 - 001748992 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\PSViews.dll
2005-03-16 18:57 - 2005-03-16 18:57 - 000061440 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\regsresen_US.dll
2005-04-06 07:15 - 2005-04-06 07:15 - 000061440 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\regsresfr_FR.dll
1999-12-03 06:01 - 1999-12-03 06:01 - 000022800 _____ (Microsoft Corporation) C:\Program Files (x86)\Shfolder.dll
2005-04-06 03:46 - 2005-04-06 03:46 - 000011776 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Tw10122.dat
2005-04-06 03:50 - 2005-04-06 03:50 - 000150644 _____ () C:\Program Files (x86)\TypeLibrary.tlb
2005-03-23 06:35 - 2005-03-23 06:35 - 004153344 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\VersionCue.dll
2005-03-23 06:35 - 2005-03-23 06:35 - 003170304 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\VersionCueUI.dll
2014-03-04 15:26 - 2014-12-20 15:31 - 000000093 _____ () C:\Users\chris\AppData\Roaming\WB.CFG
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-19 18:50
==================== Fin de FRST.txt ============================