cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11.03.2018 01
Exécuté par Marielle (administrateur) sur PC-DOUDOUNE (12-03-2018 19:01:16)
Exécuté depuis C:\Users\Marielle\Desktop
Profils chargés: Marielle (Profils disponibles: Marielle & Admin)
Platform: Windows 10 Home Version 1709 16299.125 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(CANON INC.) C:\Program Files\Canon\DIAS\CnxDIAS.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(%CFullName%) C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\YouCam\YouCamService.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Fitbit, Inc.) C:\Program Files (x86)\Fitbit\fitbit-tray.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Fitbit, Inc.) C:\Program Files (x86)\Fitbit\fitbit.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(WildTangent, Inc.) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843520 2017-02-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [64096 2018-03-08] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-02-05] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-623114534-2217758111-135601405-1002\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [255224 2016-07-14] (TomTom)
HKU\S-1-5-21-623114534-2217758111-135601405-1002\...\Run: [Fitbit Service Monitor] => C:\Program Files (x86)\Fitbit\fitbit-tray.exe [2177056 2012-06-22] (Fitbit, Inc.)
HKU\S-1-5-21-623114534-2217758111-135601405-1002\...\MountPoints2: {7ac6d878-1dd2-11e8-b26d-40b89a6eca96} - "F:\HiSuiteDownLoader.exe"

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

AutoConfigURL: [S-1-5-21-623114534-2217758111-135601405-1002] => hxxp://unstop-web.info/wpad.dat?1d2d7fb4f81aef273679b3c28ec8830e38369095
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{708d81d6-526f-4792-b8ee-fdfe9a715f31}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{84f9cea5-d165-43d5-8aa8-f6b0195e2780}: [DhcpNameServer] 109.88.203.3 62.197.111.140
ManualProxies: 0hxxp://unstop-web.info/wpad.dat?1d2d7fb4f81aef273679b3c28ec8830e38369095

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp13.msn.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp13.msn.com
HKU\S-1-5-21-623114534-2217758111-135601405-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp13.msn.com
SearchScopes: HKLM-x32 -> {EB85EBA1-2C01-42EE-874C-5FE06F3EC1B4} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-623114534-2217758111-135601405-1002 -> {EB85EBA1-2C01-42EE-874C-5FE06F3EC1B4} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-12-17] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Marielle\AppData\Roaming\TomTom\HOME\Profiles\ac103615.default [2016-08-11]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2016-08-11] [Legacy] [non signé]
FF ProfilePath: C:\Users\Marielle\AppData\Roaming\Mozilla\Firefox\Profiles\pqnlyb3x.default-1474647011672 [2018-03-07]
FF Extension: (Yahoo! Toolbar) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2017-06-10] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: (HPSimplePass) - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2017-02-18] [Legacy]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1216156.dll [2015-01-09] (Adobe Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-12] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-08-13] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-22] (Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\777359.js [2018-03-01] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\777359.cfg [2018-03-01] <==== ATTENTION

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://dts.search.ask.com/web?q={searchTerms}
CHR DefaultSearchKeyword: Default -> ask.com
CHR DefaultSuggestURL: Default -> hxxp://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms}
CHR Profile: C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default [2018-03-12]
CHR Extension: (Slides) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-12]
CHR Extension: (Docs) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-12]
CHR Extension: (Google Drive) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Recherche Google) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-06]
CHR Extension: (Sheets) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-12]
CHR Extension: (HP SimplePass) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidikogfgleiaefnjbmnjaplmgknppkg [2018-03-07]
CHR Extension: (Google Docs hors connexion) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-12]
CHR Extension: (Gmail) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-26]
CHR Extension: (Chrome Media Router) - C:\Users\Marielle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-07]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdaptiveSleepService; c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [140288 2014-10-06] () [Fichier non signé]
R2 AMD FUEL Service; c:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-10-06] (Advanced Micro Devices, Inc.) [Fichier non signé]
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1136744 2018-03-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [492560 2018-03-07] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [492560 2018-03-07] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1533608 2018-03-07] (Avira Operations GmbH & Co. KG)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [449240 2018-02-05] (Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2938504 2018-02-15] (Avira Operations GmbH & Co. KG)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2013-09-25] (Brother Industries, Ltd.) [Fichier non signé]
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [125656 2015-09-18] ()
R2 Canon Driver Information Assist Service; C:\Program Files\Canon\DIAS\CnxDIAS.exe [5043144 2016-01-18] (CANON INC.)
R2 Fitbit; C:\Program Files (x86)\Fitbit\fitbit.exe [773152 2012-06-22] (Fitbit, Inc.) [Fichier non signé]
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-08-13] (WildTangent)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [321896 2017-07-06] (HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [608520 2015-02-17] (Hewlett-Packard Development Company, L.P.)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [125440 2015-12-24] (Softex Inc.) [Fichier non signé]
R2 osrss; C:\WINDOWS\system32\osrss.dll [108584 2018-03-01] (Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [310016 2017-02-18] (Realtek Semiconductor)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-05-29] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2018-03-02] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10884848 2017-05-23] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [82480 2017-06-10] (Advanced Card Systems Ltd.)
R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [17640 2015-01-26] (Advanced Micro Devices, INC.)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2018-03-02] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36608 2015-01-26] (Advanced Micro Devices, Inc.)
R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [243056 2018-03-02] (Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-06-21] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [178840 2018-02-25] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [169864 2018-02-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-03-30] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-03-30] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-06-21] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-12-13] (Realtek )
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [723920 2018-03-02] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [6320640 2017-09-29] (Realtek Semiconductor Corporation )
R3 SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [53848 2018-03-02] (Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [33448 2015-02-25] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [30392 2018-03-02] (HP)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-03-12 18:52 - 2018-03-12 18:53 - 000043828 _____ C:\Users\Marielle\Desktop\Addition.txt
2018-03-12 18:49 - 2018-03-12 19:01 - 000020240 _____ C:\Users\Marielle\Desktop\FRST.txt
2018-03-12 18:49 - 2018-03-12 19:01 - 000000000 ____D C:\FRST
2018-03-12 18:48 - 2018-03-12 18:48 - 002402816 _____ (Farbar) C:\Users\Marielle\Desktop\FRST64.exe
2018-03-12 18:24 - 2018-03-12 18:24 - 008222496 _____ (Malwarebytes) C:\Users\Marielle\Desktop\adwcleaner_7.0.8.0.exe
2018-03-12 17:54 - 2018-03-12 17:54 - 000001215 _____ C:\Users\Marielle\AppData\Roaming\uni.txt
2018-03-12 17:43 - 2018-03-12 17:43 - 000000000 ___HD C:\OneDriveTemp
2018-03-12 17:19 - 2018-03-12 19:01 - 000000000 ____D C:\Users\Public\Speedup Sessions
2018-03-11 15:57 - 2018-03-11 15:57 - 000000002 _____ C:\Users\Marielle\AppData\Roaming\acc.txt
2018-03-11 15:54 - 2018-03-11 15:54 - 004521656 _____ ( ) C:\Users\Marielle\Downloads\acpsetup.exe
2018-03-11 15:51 - 2018-03-11 15:51 - 000000000 ____D C:\WINDOWS\PCHEALTH
2018-03-07 22:07 - 2018-03-11 16:21 - 000050355 ____H C:\Users\Marielle\AppData\Local\IconCache.db.backup
2018-03-07 19:30 - 2018-03-07 19:30 - 000014922 _____ C:\WINDOWS\SysWOW64\Defrag.debuglog
2018-03-02 21:02 - 2018-03-12 17:43 - 000000000 ____D C:\Users\Marielle\AppData\Local\PlaceholderTileLogoFolder
2018-03-02 21:02 - 2018-03-02 21:02 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-03-02 20:59 - 2018-03-02 20:59 - 000000000 ___HD C:\Users\Marielle\MicrosoftEdgeBackups
2018-03-02 20:57 - 2018-03-02 20:57 - 000000000 ___RD C:\Users\Marielle\3D Objects
2018-03-02 20:56 - 2018-03-12 18:37 - 000000000 ____D C:\Users\Marielle\AppData\Local\ConnectedDevicesPlatform
2018-03-02 20:56 - 2018-03-02 20:56 - 000000020 ___SH C:\Users\Marielle\ntuser.ini
2018-03-02 05:43 - 2018-03-12 18:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-02 05:43 - 2018-03-12 17:21 - 000004172 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{075E8B0F-21D8-4235-8944-88D674C9F677}
2018-03-02 05:43 - 2018-03-12 17:21 - 000003372 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-623114534-2217758111-135601405-1002
2018-03-02 05:43 - 2018-03-12 17:20 - 000003774 _____ C:\WINDOWS\System32\Tasks\AviraSystemSpeedupUpdate
2018-03-02 05:43 - 2018-03-02 05:54 - 000003374 _____ C:\WINDOWS\System32\Tasks\Avira_Antivirus_Systray
2018-03-02 05:43 - 2018-03-02 05:44 - 000003514 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-03-02 05:43 - 2018-03-02 05:44 - 000003324 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EDECC4F7-2C51-465E-A9FA-37E8DC7145F8}
2018-03-02 05:43 - 2018-03-02 05:44 - 000002852 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-623114534-2217758111-135601405-1005
2018-03-02 05:43 - 2018-03-02 05:43 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-03-02 05:43 - 2018-03-02 05:43 - 000003290 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-03-02 05:43 - 2018-03-02 05:43 - 000003132 _____ C:\WINDOWS\System32\Tasks\avast! SL Update
2018-03-02 05:43 - 2018-03-02 05:43 - 000002876 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-623114534-2217758111-135601405-1002
2018-03-02 05:43 - 2018-03-02 05:43 - 000002654 _____ C:\WINDOWS\System32\Tasks\Avast SecureLine
2018-03-02 05:43 - 2018-03-02 05:43 - 000002346 _____ C:\WINDOWS\System32\Tasks\YCMServiceAgent
2018-03-02 05:43 - 2018-03-02 05:43 - 000002316 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-623114534-2217758111-135601405-500
2018-03-02 05:43 - 2018-03-02 05:43 - 000002264 _____ C:\WINDOWS\System32\Tasks\Start SimplePass
2018-03-02 05:43 - 2018-03-02 05:43 - 000002218 _____ C:\WINDOWS\System32\Tasks\Start OPBHOBrokerDesktop
2018-03-02 05:43 - 2018-03-02 05:43 - 000002204 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2018-03-02 05:43 - 2018-03-02 05:43 - 000002192 _____ C:\WINDOWS\System32\Tasks\Start OPBHOBroker
2018-03-02 05:43 - 2018-03-02 05:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2018-03-02 05:43 - 2018-03-02 05:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2018-03-02 05:43 - 2018-03-02 05:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2018-03-02 05:43 - 2018-03-02 05:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avira
2018-03-02 05:43 - 2015-08-17 20:40 - 000003592 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2733338088-1059579488-50147516-500
2018-03-02 05:43 - 2015-06-08 04:18 - 000003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3147765260-2924596760-767678728-500
2018-03-02 05:43 - 2014-12-15 11:04 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1220581250-1106200143-1492867289-500
2018-03-02 05:43 - 2014-12-10 05:57 - 000003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3029088036-972593967-1456461706-500
2018-03-02 05:41 - 2018-03-02 05:43 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2018-03-02 05:41 - 2018-03-02 05:43 - 000011433 _____ C:\WINDOWS\diagerr.xml
2018-03-02 05:26 - 2018-03-02 05:26 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-03-02 05:14 - 2018-03-02 20:59 - 000000000 ____D C:\Users\Marielle
2018-03-02 05:14 - 2018-03-02 05:38 - 000000000 ____D C:\Users\Admin
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Voisinage réseau
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Voisinage d'impression
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Modèles
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Mes documents
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Menu Démarrer
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Documents\Mes vidéos
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Documents\Mes images
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\Documents\Ma musique
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Marielle\AppData\Local\Historique
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Voisinage réseau
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Voisinage d'impression
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Modèles
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Mes documents
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Menu Démarrer
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Documents\Mes vidéos
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Documents\Mes images
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\Documents\Ma musique
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Historique
2018-03-02 05:14 - 2018-03-02 05:14 - 000000000 ____D C:\ProgramData\USOShared
2018-03-02 05:07 - 2017-09-29 14:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-03-02 05:06 - 2018-03-02 05:06 - 000000000 ____D C:\Program Files (x86)\HP
2018-03-02 05:03 - 2018-03-12 18:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-03-02 05:03 - 2018-03-02 05:31 - 000418392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-03-02 04:51 - 2018-03-02 05:47 - 000000000 ____D C:\Windows.old
2018-03-02 04:33 - 2018-03-02 04:51 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-03-02 04:33 - 2018-03-02 04:33 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-03-02 04:29 - 2018-03-02 04:29 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-03-02 04:27 - 2018-03-02 04:51 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-03-02 04:27 - 2018-03-02 04:27 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-03-02 04:27 - 2018-03-02 04:27 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-03-02 04:27 - 2018-03-02 04:27 - 000000000 ____D C:\Program Files\MSBuild
2018-03-02 04:27 - 2018-03-02 04:27 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-03-02 04:27 - 2018-03-02 04:27 - 000000000 ____D C:\inetpub
2018-03-02 04:26 - 2017-09-22 18:19 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-03-02 04:26 - 2017-09-22 18:19 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-03-02 04:26 - 2017-09-22 18:19 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-03-02 04:25 - 2017-09-28 15:50 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-03-02 04:25 - 2017-09-28 15:50 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-03-02 04:25 - 2017-09-28 15:50 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-03-02 01:08 - 2018-03-02 01:08 - 001804688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000815712 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000723920 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtkBtfilter.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000716384 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000437344 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000350816 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo59.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000289376 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000243056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\Drivers\amdpsp.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000129008 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\tbaseregistry64.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000108528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\tbaseregistry32.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000106480 _____ (AMD) C:\WINDOWS\system32\pspcoins.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000101232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\Drivers\amdkmcsp.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000091632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdumcsp.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000071664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdumcsp.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000066136 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000055384 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000054904 _____ C:\WINDOWS\rtl8723d_mp_chip_bt40_fw_asic_rom_patch_new.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000053848 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000050920 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000050868 _____ C:\WINDOWS\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new_s1.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000046196 _____ C:\WINDOWS\rtl8822b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000039692 _____ C:\WINDOWS\rtl8821c_mp_chip_bt40_fw_asic_rom_patch_new.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000030392 _____ (HP) C:\WINDOWS\system32\Drivers\WirelessButtonDriver64.sys
2018-03-02 01:08 - 2018-03-02 01:08 - 000026096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\t-base_client_api.dll
2018-03-02 01:08 - 2018-03-02 01:08 - 000022000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\t-base_client_api.dll
2018-03-02 00:44 - 2018-03-02 20:56 - 000000000 ___DC C:\WINDOWS\Panther
2018-03-01 23:30 - 2018-03-01 23:30 - 000108584 _____ (Microsoft Corporation) C:\WINDOWS\system32\osrss.dll
2018-03-01 23:18 - 2018-03-01 23:18 - 000000802 _____ C:\Users\Marielle\Desktop\Assistant Mise à jour de Windows 10.lnk
2018-03-01 22:48 - 2018-03-01 22:48 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2018-03-01 22:43 - 2018-03-01 22:43 - 008222496 _____ (Malwarebytes) C:\Users\Marielle\Downloads\adwcleaner_7.0.8.0.exe
2018-03-01 22:35 - 2018-03-12 18:31 - 000000000 ____D C:\AdwCleaner
2018-03-01 22:10 - 2018-03-01 22:10 - 000016148 _____ C:\WINDOWS\system32\PC-DOUDOUNE_Court_echelle_HistoryPrediction.bin
2018-02-25 19:59 - 2018-02-25 19:59 - 000000820 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10 Update Assistant.lnk

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-03-12 18:54 - 2017-09-29 14:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-12 18:41 - 2017-09-30 15:40 - 000938018 _____ C:\WINDOWS\system32\perfh00C.dat
2018-03-12 18:41 - 2017-09-30 15:40 - 000199568 _____ C:\WINDOWS\system32\perfc00C.dat
2018-03-12 18:41 - 2015-09-26 15:00 - 002124610 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-12 18:40 - 2015-09-26 10:39 - 000000000 ____D C:\Users\Marielle\Documents\Youcam
2018-03-12 18:33 - 2017-09-29 09:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-03-12 18:33 - 2015-08-17 18:52 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2018-03-12 18:32 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-03-12 17:51 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-03-12 17:43 - 2015-09-26 10:41 - 000000000 ___RD C:\Users\Marielle\OneDrive
2018-03-12 17:40 - 2015-09-26 10:32 - 000000000 ____D C:\Users\Marielle\AppData\Local\Packages
2018-03-12 17:27 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-03-12 17:21 - 2015-09-26 15:41 - 000002465 _____ C:\Users\Marielle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-12 17:20 - 2015-12-24 11:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-03-12 17:18 - 2015-12-24 11:56 - 000000000 ____D C:\Program Files (x86)\Avira
2018-03-11 19:28 - 2017-09-29 14:44 - 000000000 ____D C:\WINDOWS\INF
2018-03-11 19:21 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\rescache
2018-03-11 15:42 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-03-11 15:34 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\appcompat
2018-03-07 18:57 - 2015-09-26 15:36 - 000000000 ____D C:\Users\Marielle\AppData\Local\Publishers
2018-03-02 20:57 - 2017-08-19 18:24 - 000002337 _____ C:\Users\Marielle\Desktop\Google Chrome.lnk
2018-03-02 20:57 - 2015-09-26 15:31 - 000000000 ____D C:\Users\Marielle\AppData\Local\TileDataLayer
2018-03-02 20:57 - 2015-09-10 06:54 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-03-02 20:56 - 2017-12-14 10:48 - 000000000 ____D C:\Windows10Upgrade
2018-03-02 05:47 - 2017-12-14 10:49 - 000000000 ___HD C:\$GetCurrent
2018-03-02 05:44 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-03-02 05:44 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\windows nt
2018-03-02 05:43 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\Registration
2018-03-02 05:40 - 2015-09-26 15:25 - 000023208 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-03-02 05:36 - 2015-09-26 16:05 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-02 05:16 - 2017-02-20 09:23 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2018-03-02 05:14 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\USOPrivate
2018-03-02 05:13 - 2015-09-26 15:00 - 001970168 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2018-03-02 05:12 - 2017-09-29 09:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2018-03-02 05:09 - 2017-09-29 14:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-03-02 05:08 - 2017-09-29 14:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-03-02 05:07 - 2017-02-18 09:54 - 000001863 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DTS Audio Control Panel.lnk
2018-03-02 05:07 - 2015-08-17 18:50 - 000015316 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2018-03-02 05:06 - 2015-09-26 14:55 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-03-02 05:05 - 2015-09-26 14:57 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-03-02 05:02 - 2017-09-29 14:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-03-02 04:51 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\spool
2018-03-02 04:51 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-03-02 04:51 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2018-03-02 04:51 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-03-02 04:51 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\InputMethod
2018-03-02 04:51 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-03-02 04:51 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-03-02 04:51 - 2017-06-10 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
2018-03-02 04:51 - 2017-06-10 18:48 - 000000000 ____D C:\WINDOWS\SysWOW64\beidpp
2018-03-02 04:51 - 2017-02-20 10:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kyocera
2018-03-02 04:51 - 2017-02-20 10:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2018-03-02 04:51 - 2016-08-11 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2018-03-02 04:51 - 2016-06-08 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fitbit
2018-03-02 04:51 - 2016-02-28 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2018-03-02 04:51 - 2015-09-28 12:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-03-02 04:51 - 2015-09-10 06:26 - 000000000 ____D C:\WINDOWS\ShellNew
2018-03-02 04:51 - 2015-08-17 19:39 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2018-03-02 04:51 - 2015-08-17 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB
2018-03-02 04:51 - 2015-08-17 19:16 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-03-02 04:51 - 2015-08-17 18:50 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2018-03-02 04:51 - 2015-08-17 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2018-03-02 04:51 - 2015-07-30 23:42 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-03-02 04:51 - 2015-06-08 03:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2018-03-02 04:51 - 2015-06-08 03:15 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2018-03-02 04:51 - 2015-06-08 03:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2018-03-02 04:51 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2018-03-02 04:51 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2018-03-02 04:41 - 2017-09-29 14:49 - 000000000 ____D C:\WINDOWS\Setup
2018-03-02 04:41 - 2017-09-29 14:46 - 000000000 __RHD C:\Users\Public\Libraries
2018-03-02 04:36 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-03-02 04:36 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-03-02 04:36 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-03-02 04:36 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-03-02 04:36 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-03-02 04:36 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-03-02 04:36 - 2015-09-26 14:56 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2018-03-02 04:33 - 2015-09-26 14:57 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2018-03-02 04:33 - 2015-09-26 14:57 - 000000000 ____D C:\Program Files\AMD
2018-03-02 04:33 - 2015-09-26 14:55 - 000000000 ____D C:\Program Files\Synaptics
2018-03-02 04:33 - 2015-09-26 14:55 - 000000000 ____D C:\Program Files\Realtek
2018-03-02 04:27 - 2017-12-14 02:39 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-03-02 04:27 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2018-03-02 04:27 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-03-02 04:27 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\MUI
2018-03-02 04:27 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2018-03-02 04:27 - 2017-09-29 14:43 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2018-03-02 04:27 - 2017-09-29 14:43 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2018-03-02 04:27 - 2017-09-29 14:43 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2018-03-02 04:27 - 2017-09-29 14:43 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2018-03-02 04:27 - 2017-09-29 14:43 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2018-03-02 04:27 - 2017-09-29 14:43 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2018-03-02 04:27 - 2017-09-29 14:43 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2018-03-02 04:27 - 2017-09-29 14:42 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2018-03-02 04:27 - 2017-09-29 14:42 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2018-03-02 04:27 - 2017-09-29 14:42 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2018-03-02 04:27 - 2017-09-29 14:42 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2018-03-02 04:26 - 2017-09-29 14:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2018-03-02 04:26 - 2017-09-29 14:43 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2018-03-02 04:26 - 2017-09-29 14:43 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2018-03-02 04:07 - 2015-08-17 19:10 - 002860659 _____ C:\WINDOWS\SysWOW64\rootpa.e2e
2018-03-02 01:08 - 2015-09-26 15:38 - 000053848 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF.sys
2018-03-02 00:15 - 2017-12-16 08:08 - 000000036 _____ C:\WINDOWS\progress.ini
2018-03-01 23:47 - 2017-09-21 16:57 - 000000000 ____D C:\Program Files\rempl
2018-03-01 23:43 - 2015-09-26 17:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-03-01 23:32 - 2017-12-14 11:40 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-01 23:32 - 2015-09-26 17:43 - 130067560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-03-01 23:32 - 2013-08-22 14:25 - 000000199 _____ C:\WINDOWS\win.ini
2018-03-01 23:18 - 2017-12-14 10:48 - 000000814 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2018-03-01 22:52 - 2017-06-10 20:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-03-01 22:52 - 2015-10-24 17:15 - 000000000 ____D C:\Users\Marielle\AppData\Roaming\CyberLink
2018-03-01 22:21 - 2015-12-24 11:56 - 000000000 ____D C:\ProgramData\Avira
2018-03-01 22:20 - 2015-10-24 17:15 - 000000000 ____D C:\Users\Marielle\Documents\CyberLink
2018-02-25 18:25 - 2017-04-12 14:41 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-02-25 18:22 - 2015-06-08 03:15 - 000000000 ____D C:\ProgramData\Package Cache
2018-02-25 18:12 - 2015-12-24 11:59 - 000178840 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2018-02-25 18:12 - 2015-12-24 11:59 - 000169864 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

==================== Fichiers à la racine de certains dossiers =======

2018-03-11 15:57 - 2018-03-11 15:57 - 000000002 _____ () C:\Users\Marielle\AppData\Roaming\acc.txt
2018-03-12 17:54 - 2018-03-12 17:54 - 000001215 _____ () C:\Users\Marielle\AppData\Roaming\uni.txt
2017-02-18 13:18 - 2018-03-12 18:38 - 000084154 _____ () C:\Users\Marielle\AppData\Local\BTServer.log
2016-03-22 20:49 - 2016-03-22 20:50 - 000007597 _____ () C:\Users\Marielle\AppData\Local\resmon.resmoncfg
2017-04-10 14:41 - 2017-04-10 14:41 - 000000000 _____ () C:\Users\Marielle\AppData\Local\{26FFB9A7-38EA-47A0-B290-BF7B3C6F3C6E}

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2018-03-12 18:00

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité