Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06.06.2018 01
Exécuté par Charlly (administrateur) sur CHARLLY-PC (07-06-2018 12:56:21)
Exécuté depuis C:\Users\Charlly\Desktop
Profils chargés: Charlly (Profils disponibles: Charlly)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
() D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Windows\Temp\irstrtsv\scrncap.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Saitek) C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
(f.lux Software LLC) C:\Users\Charlly\AppData\Local\FluxSoftware\Flux\flux.exe
(Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-08-29] (Realtek Semiconductor)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [SaiVolume] => C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe [152064 2012-10-15] (Saitek)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel Corporation)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (AimerSoft)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-05-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\Run: [f.lux] => C:\Users\Charlly\AppData\Local\FluxSoftware\Flux\flux.exe [1682936 2018-01-18] (f.lux Software LLC)
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {2c6b5224-c2d9-11e7-afbf-d8cb8a30eb12} - K:\autorun.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {3b0e38eb-54ce-11e5-a52d-d8cb8a30eb12} - H:\setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {7d8329a6-5277-11e5-958f-d8cb8a30eb12} - G:\setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {b1379732-c381-11e5-9d2f-d8cb8a30eb12} - J:\Setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {b4668ca1-c2c1-11e5-a4de-d8cb8a30eb12} - H:\Setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {fa7bf955-529d-11e5-bd6a-806e6f6e6963} - F:\Setup.exe
IFEO\BigUpgrade_IU.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\DSPut.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\Feedback.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiPatchInstHelper.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiPatchSelfUpdateWindow.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiPatchService.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiRezGamesDiagAndSupport.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HirezLauncherUI.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\Install_PintoStartMenu.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IObitDownloader.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IObitLiveUpdate.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IObitRegister.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IUDM.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IUPluginNotice.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IUService.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IU_InstallBeforWork.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\NoteIcon.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\Overwolf.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\OverwolfLauncher.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\OverwolfUpdater.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\ScreenShot.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\SendBugReportNew.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\SteamLauncherUI.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\VideoCardCompatibility.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2017-02-18]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter)
Startup: C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HWMonitor.exe.lnk [2017-09-04]
ShortcutTarget: HWMonitor.exe.lnk -> D:\Program Files\CPUID\HWMonitor\HWMonitor.exe (CPUID)
Startup: C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Moniteur de la technologie Intel® Turbo Boost 2.6.lnk [2015-09-10]
ShortcutTarget: Moniteur de la technologie Intel® Turbo Boost 2.6.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)
Startup: C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Profiler.lnk [2016-11-26]
ShortcutTarget: Profiler.lnk -> C:\Windows\Installer\{87062E99-EBC9-48CA-8D68-EA1D5BD9DA9F}\Profiler.exe (Saitek)
BootExecute: autocheck autochk *
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{90712816-1C9A-4C78-9711-D689578C4107}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{90712816-1C9A-4C78-9711-D689578C4107}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-19] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: ps0pemzu.default
FF ProfilePath: C:\Users\Charlly\AppData\Roaming\Mozilla\Firefox\Profiles\ps0pemzu.default [2018-06-07]
FF user.js: detected! => C:\Users\Charlly\AppData\Roaming\Mozilla\Firefox\Profiles\ps0pemzu.default\user.js [2016-05-19]
FF NewTab: Mozilla\Firefox\Profiles\ps0pemzu.default -> about:newtab
FF HKLM-x32\...\Firefox\Extensions: [jid0-lmZNVK7a82O8cufhdfB9dUDfA2w@jetpack] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-10] ()
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-19] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-10] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-05-11] (Adobe Systems Inc.)
FF Plugin-x32: nuance.com/DragonRIAPlugin -> C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\npDgnRia.dll [Pas de fichier]
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxp://google.fr/"
CHR DefaultSearchURL: Default -> hxxps://search.lilo.org/results.php?q={searchTerms}
CHR DefaultSearchKeyword: Default -> lilo
CHR Profile: C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default [2018-06-07]
CHR Extension: (Spotiload (former Spotify Vk Downloader)) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\baggnalhgbpeanbhedjlbndhjgmimmhl [2018-01-08]
CHR Extension: (Honey) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2018-05-19]
CHR Extension: (Video Title Adder) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddpephnhacfpgcemhioaejgenlgadnnh [2017-12-07]
CHR Extension: (Tampermonkey) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-05-20]
CHR Extension: (Give Up) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\diippoclinjdbklinhchgedilfncehbi [2015-09-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-03]
CHR Extension: (AdBlock) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-05-24]
CHR Extension: (Auto Refresh Plus) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgeljhfekpckiiplhkigfehkdpldcggm [2018-03-06]
CHR Extension: (Reedy) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihbdojmggkmjbhfflnchljfkgdhokffj [2017-11-27]
CHR Extension: (Imagus) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2018-05-20]
CHR Extension: (Save to Facebook) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-05-30]
CHR Extension: (Clipular! Research, save & share screenshot) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjbgcjbgmcfgbgikmbdioggjlhjegpp [2015-09-06]
CHR Extension: (Lilo) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcpleigehknabkajbcccdfgflpajfaog [2018-02-26]
CHR Extension: (Silver default theme (Aero enabled)) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfenegcefopjagmblcgnacdkeidnjcbo [2015-09-06]
CHR Extension: (Widget Shopping Mailorama) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggkbalhdfhjalmmicijhgeoialfhjia [2018-03-07]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2018-05-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2018-05-04]
CHR Extension: (Auto Refresh Plus) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih [2016-08-08]
CHR Extension: (Chrome Media Router) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-30]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [879128 2018-05-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [224472 2018-05-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [224472 2018-05-24] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1165320 2018-05-24] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [451288 2018-05-22] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-12-26] ()
S3 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [232528 2017-08-31] (CyberGhost S.A.)
S3 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-08-08] (CyberGhost S.R.L)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-15] (EasyAntiCheat Ltd)
S4 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-15] (Hi-Rez Studios) [Fichier non signé]
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18504 2017-04-19] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2014-03-27] (Intel Corporation)
S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [784288 2013-11-25] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
S4 MBAMService; D:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 MSI_LiveUpdate_Service; D:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1779664 2015-10-07] (Micro-Star INT'L CO., LTD.)
S3 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
S3 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-11-24] (Electronic Arts)
S3 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-11-24] (Electronic Arts)
S4 OverwolfUpdater; D:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1009904 2016-02-11] (Overwolf LTD)
S3 PAExec; C:\Windows\PAExec.exe [189112 2017-09-05] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2018-03-29] ()
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software) [Fichier non signé]
S4 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel Corporation)
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.)
S4 Wallpaper Engine Service; D:\Users\Charlly\Desktop\DOSSIERS\Crack\Wallpaper Engine 1.0.517\bin\wallpaperservice32_c.exe [25600 2017-02-16] () [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [39704 2015-10-07] (Windows (R) Win 7 DDK provider)
R3 ATP; C:\Windows\System32\DRIVERS\AsusTP.sys [75584 2015-10-07] (ASUS Corporation)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [199912 2018-05-08] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [153552 2018-05-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-28] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-28] (Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-11-06] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-11-06] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2015-09-03] (Disc Soft Ltd)
R3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [32840 2017-08-29] (ELAN Microelectronic Corp.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28424 2018-05-12] (Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-03] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [40448 2017-04-19] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
S4 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22208 2016-12-16] (IObit)
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [20192 2013-11-25] (Intel Corporation)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [200272 2017-08-29] (Intel Corporation)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-01-03] (Riverbed Technology, Inc.)
S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2016-12-16] (IObit.com)
R3 RTCore64; D:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] ()
R3 SaiK1107; C:\Windows\System32\DRIVERS\SaiK1107.sys [180584 2012-12-05] (Saitek)
S3 SaiK1703; C:\Windows\System32\DRIVERS\SaiK1703.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [23968 2016-09-01] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [59728 2017-01-27] (Saitek)
S3 SaiU1703; C:\Windows\System32\DRIVERS\SaiU1703.sys [47168 2012-09-20] (Saitek)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33448 2015-09-03] (Synaptics Incorporated)
S3 TesMon; C:\Windows\system32\TesMon.sys [60472 2017-02-17] (Tencent)
S3 TesSafe; C:\Windows\system32\TesSafe.sys [1020968 2017-02-17] (TENCENT)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2016-01-11] (IObit.com)
S3 USBET; C:\Windows\System32\DRIVERS\ETdrv.sys [6413440 2012-09-03] (Etron)
S3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [39016 2017-06-15] (Wondershare)
R3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation)
R3 _hid_0738_1703; C:\Windows\System32\DRIVERS\_hid_0738_1703.sys [210384 2017-01-27] (Saitek)
R3 _usb_0738_1703; C:\Windows\System32\DRIVERS\_usb_0738_1703.sys [46800 2017-01-27] (Saitek)
S3 MSICDSetup; \??\F:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-06-07 12:56 - 2018-06-07 12:56 - 002413056 _____ (Farbar) C:\Users\Charlly\Desktop\FRST64.exe
2018-06-07 12:56 - 2018-06-07 12:56 - 000027578 _____ C:\Users\Charlly\Desktop\FRST.txt
2018-06-07 12:56 - 2018-06-07 12:56 - 000000000 ____D C:\FRST
2018-06-07 01:12 - 2018-06-07 01:12 - 000217051 _____ C:\Users\Charlly\Desktop\ZHPDiag.txt
2018-06-07 01:09 - 2018-06-07 01:09 - 000228914 _____ C:\Users\Charlly\ZHPDiag3.exe
2018-06-06 21:56 - 2018-06-06 21:56 - 000000292 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2018-06-06 20:52 - 2018-03-14 19:14 - 000135360 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-06-06 20:52 - 2018-03-14 19:09 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-06-06 20:52 - 2018-03-14 15:05 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-06-06 20:31 - 2018-06-07 00:10 - 000953894 _____ C:\Windows\ntbtlog.txt
2018-06-04 18:40 - 2018-06-04 18:40 - 000000000 ____D C:\Users\Charlly\Documents\Rampage Knights
2018-06-04 18:14 - 2018-06-04 18:39 - 000000000 ____D C:\Users\Charlly\Documents\Tumblestone
2018-06-04 18:14 - 2018-06-04 18:14 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\The Quantum Astrophysicists Guild
2018-06-04 17:54 - 2018-06-04 17:54 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\FustyGame
2018-06-01 14:25 - 2018-06-07 00:53 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\uTorrent
2018-05-31 14:12 - 2018-05-31 14:12 - 000001419 _____ C:\Users\Charlly\Desktop\C++.lnk
2018-05-31 14:00 - 2018-05-31 14:00 - 000001327 _____ C:\Users\Charlly\Desktop\C.lnk
2018-05-31 00:15 - 2018-05-31 00:15 - 000000841 _____ C:\Users\Charlly\Desktop\CodeBlocks.lnk
2018-05-31 00:15 - 2018-05-31 00:15 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2018-05-29 23:29 - 2018-05-29 23:29 - 000000000 ____D C:\Users\Charlly\Documents\DuckGame
2018-05-29 20:12 - 2018-05-29 20:12 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\Spiderling Games
2018-05-29 19:11 - 2018-05-29 19:11 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\Landfall West
2018-05-29 09:22 - 2018-05-29 09:22 - 000000000 ____D C:\Users\Charlly\Documents\PCSX2
2018-05-29 00:52 - 2018-05-29 00:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2018-05-29 00:43 - 2018-05-29 00:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation
2018-05-28 14:40 - 2018-06-06 21:56 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Lavasoft
2018-05-28 14:40 - 2018-06-06 21:56 - 000000000 ____D C:\ProgramData\Lavasoft
2018-05-28 14:40 - 2018-06-06 21:56 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2018-05-28 14:40 - 2018-05-28 14:40 - 000000000 ____D C:\Users\Charlly\AppData\Local\Lavasoft
2018-05-18 13:24 - 2018-05-18 13:24 - 000000246 _____ C:\Users\Charlly\Documents\EtCap.ini
2018-05-18 13:13 - 2018-05-18 13:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amcap
2018-05-18 13:13 - 2018-05-18 13:13 - 000000000 ____D C:\Program Files (x86)\ETRON
2018-05-18 13:13 - 2012-09-03 10:29 - 006413440 _____ (Etron) C:\Windows\system32\Drivers\ETdrv.sys
2018-05-18 13:13 - 2012-08-30 11:33 - 000236544 _____ C:\Windows\system32\Etprop64.ax
2018-05-18 13:13 - 2012-08-30 11:32 - 000229376 _____ C:\Windows\SysWOW64\Etprop.ax
2018-05-18 13:13 - 2012-06-28 15:02 - 002973696 _____ (Etron) C:\Windows\system32\Drivers\ETjp.sys
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\4_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\3_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\2_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\1_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA9.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA8.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA7.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA6.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA5.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA4.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA3.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA2.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA10.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA1.bmp
2018-05-18 13:13 - 2010-11-13 00:39 - 000049664 _____ C:\Windows\system32\ETCoInst.dll
2018-05-13 22:55 - 2018-05-13 22:55 - 000003554 _____ C:\Windows\System32\Tasks\HP AR Program Upload - 786932839b564fb5b32bffd02197173b34b4d43d12334763bb1e4ee22523fb36
2018-05-10 17:28 - 2018-05-10 17:28 - 000000000 ____D C:\Program Files\AVAST Software
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-06-07 12:55 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-07 12:50 - 2017-10-13 12:54 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2018-06-07 12:44 - 2011-04-12 11:16 - 000762636 _____ C:\Windows\system32\perfh00C.dat
2018-06-07 12:44 - 2011-04-12 11:16 - 000155062 _____ C:\Windows\system32\perfc00C.dat
2018-06-07 12:44 - 2009-07-14 07:13 - 001699662 _____ C:\Windows\system32\PerfStringBackup.INI
2018-06-07 12:44 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-06-07 01:10 - 2017-01-07 00:57 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\ZHP
2018-06-07 01:09 - 2015-09-04 02:48 - 000000000 ____D C:\Users\Charlly
2018-06-07 01:06 - 2009-07-14 06:45 - 000028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-06-07 01:06 - 2009-07-14 06:45 - 000028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-06-07 01:00 - 2015-09-04 02:55 - 001673794 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-06-07 00:59 - 2015-09-04 02:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-06-07 00:56 - 2017-09-14 20:46 - 000003030 _____ C:\Windows\System32\Tasks\MSIAfterburner
2018-06-07 00:56 - 2016-08-08 16:02 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2018-06-07 00:53 - 2015-09-03 21:32 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\uTorrent
2018-06-07 00:08 - 2016-06-27 20:05 - 000288684 ____N C:\Windows\Minidump\060718-15147-01.dmp
2018-06-07 00:08 - 2015-10-04 23:54 - 000000000 ____D C:\Windows\Minidump
2018-06-06 22:21 - 2015-02-28 04:11 - 000000000 ____D C:\AdwCleaner
2018-06-06 21:22 - 2015-09-04 07:50 - 000000000 ____D C:\Windows\system32\appraiser
2018-06-06 21:17 - 2016-06-27 20:05 - 000288684 ____N C:\Windows\Minidump\060618-14133-01.dmp
2018-06-06 20:05 - 2015-09-03 21:01 - 000002227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-05 20:42 - 2015-09-03 21:38 - 000000000 ____D C:\ProgramData\ProductData
2018-06-05 20:27 - 2017-08-24 14:52 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\discord
2018-06-05 20:21 - 2016-06-27 20:05 - 000290212 ____N C:\Windows\Minidump\060518-22682-01.dmp
2018-06-05 20:19 - 2017-02-16 20:23 - 000000776 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2018-06-05 20:18 - 2017-02-16 20:23 - 000002980 _____ C:\Windows\System32\Tasks\GU5SkipUAC
2018-06-05 20:15 - 2017-10-25 10:30 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-06-05 20:15 - 2016-01-11 00:56 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\MPC-HC
2018-06-05 20:15 - 2015-09-03 22:55 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\DAEMON Tools Lite
2018-06-05 20:14 - 2017-01-07 12:55 - 000002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-06-05 03:03 - 2015-10-14 21:36 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\CodeBlocks
2018-05-31 00:15 - 2015-10-14 21:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2018-05-29 23:29 - 2015-12-01 19:57 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-05-29 17:32 - 2017-05-01 03:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2018-05-29 17:32 - 2017-05-01 03:34 - 000000000 ____D C:\Program Files\MPC-HC
2018-05-28 20:34 - 2015-09-04 07:56 - 000000000 ____D C:\Users\Charlly\AppData\Local\Adobe
2018-05-28 20:34 - 2015-09-04 07:51 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Adobe
2018-05-28 14:40 - 2015-09-03 21:34 - 000000839 _____ C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2018-05-25 15:25 - 2015-09-07 01:03 - 000153552 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2018-05-24 14:21 - 2015-09-07 00:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-05-22 00:15 - 2017-02-09 20:28 - 000000990 _____ C:\Users\Charlly\Desktop\MEMO.txt
2018-05-18 13:13 - 2015-09-04 02:55 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-05-18 13:13 - 2009-07-14 04:34 - 000000427 _____ C:\Windows\win.ini
2018-05-16 22:38 - 2015-09-03 21:01 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-16 22:38 - 2015-09-03 21:01 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-16 12:33 - 2009-07-14 07:08 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-05-14 22:58 - 2017-01-21 19:07 - 000000000 ____D C:\Users\Charlly\Documents\Apowersoft
2018-05-14 22:58 - 2015-09-28 20:34 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Apowersoft
2018-05-14 22:58 - 2015-09-28 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2018-05-14 15:04 - 2017-04-14 21:42 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-05-14 15:04 - 2015-09-06 21:14 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-05-12 04:25 - 2017-02-16 20:23 - 000028424 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2018-05-12 04:25 - 2017-02-16 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2018-05-10 17:25 - 2017-05-16 19:27 - 000000000 ____D C:\ProgramData\AVAST Software
2018-05-10 17:18 - 2017-02-19 00:04 - 000004630 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-05-10 17:18 - 2016-01-11 10:39 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-05-10 17:18 - 2016-01-11 10:39 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-10 17:18 - 2016-01-11 10:39 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-05-10 17:18 - 2016-01-11 10:39 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-05-10 17:18 - 2016-01-11 10:39 - 000000000 ____D C:\Windows\system32\Macromed
2018-05-10 17:14 - 2018-03-14 00:18 - 000004642 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-08 19:38 - 2015-09-07 01:03 - 000199912 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
==================== Fichiers à la racine de certains dossiers =======
2017-02-09 20:43 - 2017-02-17 00:26 - 000000227 _____ () C:\ProgramData\DP0004.dat
2018-06-07 01:09 - 2018-06-07 01:09 - 000228914 _____ () C:\Users\Charlly\ZHPDiag3.exe
2017-03-21 17:45 - 2017-03-21 17:45 - 000000132 _____ () C:\Users\Charlly\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-03-02 16:42 - 2016-03-16 15:33 - 000000117 _____ () C:\Users\Charlly\AppData\Roaming\D2Info0
2016-03-02 16:42 - 2016-03-16 12:10 - 000000008 _____ () C:\Users\Charlly\AppData\Roaming\DofusAppId0_1
2016-03-04 00:30 - 2016-03-16 16:02 - 000000008 _____ () C:\Users\Charlly\AppData\Roaming\DofusAppId0_2
2016-12-29 02:15 - 2016-12-29 02:15 - 000000875 _____ () C:\Users\Charlly\AppData\Roaming\SAS7_000.DAT
2016-03-08 21:27 - 2017-07-27 22:28 - 000004701 _____ () C:\Users\Charlly\AppData\Roaming\SpeedRunnersLog.txt
2016-09-09 20:32 - 2016-09-14 14:15 - 000002982 _____ () C:\Users\Charlly\AppData\Roaming\TargetInvocationLog.txt
2016-09-02 00:31 - 2016-11-03 01:45 - 000000129 _____ () C:\Users\Charlly\AppData\Roaming\WB.CFG
2015-09-16 00:06 - 2018-03-26 23:52 - 000001456 _____ () C:\Users\Charlly\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2015-10-23 23:34 - 2017-01-31 23:59 - 001307648 _____ () C:\Users\Charlly\AppData\Local\file__0.localstorage
2015-09-16 00:06 - 2015-07-27 01:26 - 000000000 ___SH () C:\Users\Charlly\AppData\Local\LumaEmu
2017-07-26 17:45 - 2017-07-26 17:45 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{394DDFF0-2238-42E6-9287-741A835B0F75}
2017-07-26 17:58 - 2017-07-26 17:58 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{3AED1263-3C2A-473C-ABED-B21FFC948866}
2016-07-24 17:00 - 2016-07-24 17:00 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{8CA7CFA8-2CBD-4989-B429-5F20D5D8D69D}
2017-02-12 22:31 - 2017-02-12 22:31 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{A10B68EF-5889-476D-A700-14763C0A20C8}
2017-07-26 17:55 - 2017-07-26 17:55 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{BD4375E7-9F85-43E1-98EC-B45F22FE7C93}
2017-07-26 17:41 - 2017-07-26 17:41 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{C629E6F3-CEDF-4FEC-B78E-7B2583DF9D3A}
2017-07-26 17:57 - 2017-07-26 17:57 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{C74554A4-C41E-499E-9432-5BEA469AA14D}
2017-07-26 17:42 - 2017-07-26 17:42 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{CB7CDD68-89DB-429F-B20D-CA98BC90EC10}
2017-02-12 22:35 - 2017-02-12 22:35 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{E70BDCA7-5336-48C4-A2AB-5C322C58C82B}
2017-07-26 18:02 - 2017-07-26 18:02 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{F6EDF732-7400-4952-951C-B7CC1811D4A8}
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-05-28 10:08
==================== Fin de FRST.txt ============================
Exécuté par Charlly (administrateur) sur CHARLLY-PC (07-06-2018 12:56:21)
Exécuté depuis C:\Users\Charlly\Desktop
Profils chargés: Charlly (Profils disponibles: Charlly)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
() D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Windows\Temp\irstrtsv\scrncap.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Saitek) C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
(f.lux Software LLC) C:\Users\Charlly\AppData\Local\FluxSoftware\Flux\flux.exe
(Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-08-29] (Realtek Semiconductor)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [SaiVolume] => C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe [152064 2012-10-15] (Saitek)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel Corporation)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (AimerSoft)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-05-22] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\Run: [f.lux] => C:\Users\Charlly\AppData\Local\FluxSoftware\Flux\flux.exe [1682936 2018-01-18] (f.lux Software LLC)
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18364648 2018-05-24] (Piriform Ltd)
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: J - J:\Setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {2c6b5224-c2d9-11e7-afbf-d8cb8a30eb12} - K:\autorun.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {3b0e38eb-54ce-11e5-a52d-d8cb8a30eb12} - H:\setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {7d8329a6-5277-11e5-958f-d8cb8a30eb12} - G:\setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {b1379732-c381-11e5-9d2f-d8cb8a30eb12} - J:\Setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {b4668ca1-c2c1-11e5-a4de-d8cb8a30eb12} - H:\Setup.exe
HKU\S-1-5-21-3610141426-1461149756-1954116-1000\...\MountPoints2: {fa7bf955-529d-11e5-bd6a-806e6f6e6963} - F:\Setup.exe
IFEO\BigUpgrade_IU.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\DSPut.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\Feedback.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiPatchInstHelper.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiPatchSelfUpdateWindow.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiPatchService.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HiRezGamesDiagAndSupport.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\HirezLauncherUI.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\Install_PintoStartMenu.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IObitDownloader.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IObitLiveUpdate.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IObitRegister.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IUDM.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IUPluginNotice.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IUService.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\IU_InstallBeforWork.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\NoteIcon.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\Overwolf.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\OverwolfLauncher.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\OverwolfUpdater.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\ScreenShot.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\SendBugReportNew.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\SteamLauncherUI.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
IFEO\VideoCardCompatibility.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2017-02-18]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Rainmeter)
Startup: C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HWMonitor.exe.lnk [2017-09-04]
ShortcutTarget: HWMonitor.exe.lnk -> D:\Program Files\CPUID\HWMonitor\HWMonitor.exe (CPUID)
Startup: C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Moniteur de la technologie Intel® Turbo Boost 2.6.lnk [2015-09-10]
ShortcutTarget: Moniteur de la technologie Intel® Turbo Boost 2.6.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)
Startup: C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Profiler.lnk [2016-11-26]
ShortcutTarget: Profiler.lnk -> C:\Windows\Installer\{87062E99-EBC9-48CA-8D68-EA1D5BD9DA9F}\Profiler.exe (Saitek)
BootExecute: autocheck autochk *
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{90712816-1C9A-4C78-9711-D689578C4107}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{90712816-1C9A-4C78-9711-D689578C4107}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-19] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: ps0pemzu.default
FF ProfilePath: C:\Users\Charlly\AppData\Roaming\Mozilla\Firefox\Profiles\ps0pemzu.default [2018-06-07]
FF user.js: detected! => C:\Users\Charlly\AppData\Roaming\Mozilla\Firefox\Profiles\ps0pemzu.default\user.js [2016-05-19]
FF NewTab: Mozilla\Firefox\Profiles\ps0pemzu.default -> about:newtab
FF HKLM-x32\...\Firefox\Extensions: [jid0-lmZNVK7a82O8cufhdfB9dUDfA2w@jetpack] - C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\ffShim.xpi => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-10] ()
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-19] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-10] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-05-11] (Adobe Systems Inc.)
FF Plugin-x32: nuance.com/DragonRIAPlugin -> C:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\npDgnRia.dll [Pas de fichier]
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxp://google.fr/"
CHR DefaultSearchURL: Default -> hxxps://search.lilo.org/results.php?q={searchTerms}
CHR DefaultSearchKeyword: Default -> lilo
CHR Profile: C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default [2018-06-07]
CHR Extension: (Spotiload (former Spotify Vk Downloader)) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\baggnalhgbpeanbhedjlbndhjgmimmhl [2018-01-08]
CHR Extension: (Honey) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmnlcjabgnpnenekpadlanbbkooimhnj [2018-05-19]
CHR Extension: (Video Title Adder) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddpephnhacfpgcemhioaejgenlgadnnh [2017-12-07]
CHR Extension: (Tampermonkey) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-05-20]
CHR Extension: (Give Up) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\diippoclinjdbklinhchgedilfncehbi [2015-09-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-03]
CHR Extension: (AdBlock) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-05-24]
CHR Extension: (Auto Refresh Plus) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgeljhfekpckiiplhkigfehkdpldcggm [2018-03-06]
CHR Extension: (Reedy) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihbdojmggkmjbhfflnchljfkgdhokffj [2017-11-27]
CHR Extension: (Imagus) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\immpkjjlgappgfkkfieppnmlhakdmaab [2018-05-20]
CHR Extension: (Save to Facebook) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-05-30]
CHR Extension: (Clipular! Research, save & share screenshot) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjbgcjbgmcfgbgikmbdioggjlhjegpp [2015-09-06]
CHR Extension: (Lilo) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcpleigehknabkajbcccdfgflpajfaog [2018-02-26]
CHR Extension: (Silver default theme (Aero enabled)) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfenegcefopjagmblcgnacdkeidnjcbo [2015-09-06]
CHR Extension: (Widget Shopping Mailorama) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggkbalhdfhjalmmicijhgeoialfhjia [2018-03-07]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2018-05-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2018-05-04]
CHR Extension: (Auto Refresh Plus) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\oilipfekkmncanaajkapbpancpelijih [2016-08-08]
CHR Extension: (Chrome Media Router) - C:\Users\Charlly\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-30]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [879128 2018-05-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [224472 2018-05-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [224472 2018-05-24] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1165320 2018-05-24] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [451288 2018-05-22] (Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-12-26] ()
S3 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [232528 2017-08-31] (CyberGhost S.A.)
S3 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-08-08] (CyberGhost S.R.L)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-15] (EasyAntiCheat Ltd)
S4 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-15] (Hi-Rez Studios) [Fichier non signé]
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18504 2017-04-19] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2014-03-27] (Intel Corporation)
S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
R2 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [784288 2013-11-25] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
S4 MBAMService; D:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 MSI_LiveUpdate_Service; D:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1779664 2015-10-07] (Micro-Star INT'L CO., LTD.)
S3 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI)
S3 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-11-24] (Electronic Arts)
S3 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-11-24] (Electronic Arts)
S4 OverwolfUpdater; D:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1009904 2016-02-11] (Overwolf LTD)
S3 PAExec; C:\Windows\PAExec.exe [189112 2017-09-05] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2018-03-29] ()
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software) [Fichier non signé]
S4 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel Corporation)
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.)
S4 Wallpaper Engine Service; D:\Users\Charlly\Desktop\DOSSIERS\Crack\Wallpaper Engine 1.0.517\bin\wallpaperservice32_c.exe [25600 2017-02-16] () [Fichier non signé]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [39704 2015-10-07] (Windows (R) Win 7 DDK provider)
R3 ATP; C:\Windows\System32\DRIVERS\AsusTP.sys [75584 2015-10-07] (ASUS Corporation)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-20] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [199912 2018-05-08] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [153552 2018-05-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-28] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-28] (Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-11-06] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-11-06] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2015-09-03] (Disc Soft Ltd)
R3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [32840 2017-08-29] (ELAN Microelectronic Corp.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28424 2018-05-12] (Glarysoft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-03] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [40448 2017-04-19] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
S4 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22208 2016-12-16] (IObit)
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [20192 2013-11-25] (Intel Corporation)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [200272 2017-08-29] (Intel Corporation)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-01-03] (Riverbed Technology, Inc.)
S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2016-12-16] (IObit.com)
R3 RTCore64; D:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] ()
R3 SaiK1107; C:\Windows\System32\DRIVERS\SaiK1107.sys [180584 2012-12-05] (Saitek)
S3 SaiK1703; C:\Windows\System32\DRIVERS\SaiK1703.sys [180544 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [23968 2016-09-01] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [59728 2017-01-27] (Saitek)
S3 SaiU1703; C:\Windows\System32\DRIVERS\SaiU1703.sys [47168 2012-09-20] (Saitek)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33448 2015-09-03] (Synaptics Incorporated)
S3 TesMon; C:\Windows\system32\TesMon.sys [60472 2017-02-17] (Tencent)
S3 TesSafe; C:\Windows\system32\TesSafe.sys [1020968 2017-02-17] (TENCENT)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2016-01-11] (IObit.com)
S3 USBET; C:\Windows\System32\DRIVERS\ETdrv.sys [6413440 2012-09-03] (Etron)
S3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [39016 2017-06-15] (Wondershare)
R3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation)
R3 _hid_0738_1703; C:\Windows\System32\DRIVERS\_hid_0738_1703.sys [210384 2017-01-27] (Saitek)
R3 _usb_0738_1703; C:\Windows\System32\DRIVERS\_usb_0738_1703.sys [46800 2017-01-27] (Saitek)
S3 MSICDSetup; \??\F:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-06-07 12:56 - 2018-06-07 12:56 - 002413056 _____ (Farbar) C:\Users\Charlly\Desktop\FRST64.exe
2018-06-07 12:56 - 2018-06-07 12:56 - 000027578 _____ C:\Users\Charlly\Desktop\FRST.txt
2018-06-07 12:56 - 2018-06-07 12:56 - 000000000 ____D C:\FRST
2018-06-07 01:12 - 2018-06-07 01:12 - 000217051 _____ C:\Users\Charlly\Desktop\ZHPDiag.txt
2018-06-07 01:09 - 2018-06-07 01:09 - 000228914 _____ C:\Users\Charlly\ZHPDiag3.exe
2018-06-06 21:56 - 2018-06-06 21:56 - 000000292 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2018-06-06 20:52 - 2018-03-14 19:14 - 000135360 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-06-06 20:52 - 2018-03-14 19:09 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-06-06 20:52 - 2018-03-14 15:05 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000739840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000599552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000291840 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-06-06 20:52 - 2018-03-14 15:05 - 000237056 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-06-06 20:31 - 2018-06-07 00:10 - 000953894 _____ C:\Windows\ntbtlog.txt
2018-06-04 18:40 - 2018-06-04 18:40 - 000000000 ____D C:\Users\Charlly\Documents\Rampage Knights
2018-06-04 18:14 - 2018-06-04 18:39 - 000000000 ____D C:\Users\Charlly\Documents\Tumblestone
2018-06-04 18:14 - 2018-06-04 18:14 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\The Quantum Astrophysicists Guild
2018-06-04 17:54 - 2018-06-04 17:54 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\FustyGame
2018-06-01 14:25 - 2018-06-07 00:53 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\uTorrent
2018-05-31 14:12 - 2018-05-31 14:12 - 000001419 _____ C:\Users\Charlly\Desktop\C++.lnk
2018-05-31 14:00 - 2018-05-31 14:00 - 000001327 _____ C:\Users\Charlly\Desktop\C.lnk
2018-05-31 00:15 - 2018-05-31 00:15 - 000000841 _____ C:\Users\Charlly\Desktop\CodeBlocks.lnk
2018-05-31 00:15 - 2018-05-31 00:15 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2018-05-29 23:29 - 2018-05-29 23:29 - 000000000 ____D C:\Users\Charlly\Documents\DuckGame
2018-05-29 20:12 - 2018-05-29 20:12 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\Spiderling Games
2018-05-29 19:11 - 2018-05-29 19:11 - 000000000 ____D C:\Users\Charlly\AppData\LocalLow\Landfall West
2018-05-29 09:22 - 2018-05-29 09:22 - 000000000 ____D C:\Users\Charlly\Documents\PCSX2
2018-05-29 00:52 - 2018-05-29 00:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2018-05-29 00:43 - 2018-05-29 00:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation
2018-05-28 14:40 - 2018-06-06 21:56 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Lavasoft
2018-05-28 14:40 - 2018-06-06 21:56 - 000000000 ____D C:\ProgramData\Lavasoft
2018-05-28 14:40 - 2018-06-06 21:56 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2018-05-28 14:40 - 2018-05-28 14:40 - 000000000 ____D C:\Users\Charlly\AppData\Local\Lavasoft
2018-05-18 13:24 - 2018-05-18 13:24 - 000000246 _____ C:\Users\Charlly\Documents\EtCap.ini
2018-05-18 13:13 - 2018-05-18 13:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amcap
2018-05-18 13:13 - 2018-05-18 13:13 - 000000000 ____D C:\Program Files (x86)\ETRON
2018-05-18 13:13 - 2012-09-03 10:29 - 006413440 _____ (Etron) C:\Windows\system32\Drivers\ETdrv.sys
2018-05-18 13:13 - 2012-08-30 11:33 - 000236544 _____ C:\Windows\system32\Etprop64.ax
2018-05-18 13:13 - 2012-08-30 11:32 - 000229376 _____ C:\Windows\SysWOW64\Etprop.ax
2018-05-18 13:13 - 2012-06-28 15:02 - 002973696 _____ (Etron) C:\Windows\system32\Drivers\ETjp.sys
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\4_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\3_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\2_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:24 - 000921656 _____ C:\Windows\1_640_480.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA9.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA8.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA7.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA6.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA5.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA4.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA3.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA2.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA10.bmp
2018-05-18 13:13 - 2011-12-19 13:23 - 000921654 _____ C:\Windows\VGA1.bmp
2018-05-18 13:13 - 2010-11-13 00:39 - 000049664 _____ C:\Windows\system32\ETCoInst.dll
2018-05-13 22:55 - 2018-05-13 22:55 - 000003554 _____ C:\Windows\System32\Tasks\HP AR Program Upload - 786932839b564fb5b32bffd02197173b34b4d43d12334763bb1e4ee22523fb36
2018-05-10 17:28 - 2018-05-10 17:28 - 000000000 ____D C:\Program Files\AVAST Software
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-06-07 12:55 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-07 12:50 - 2017-10-13 12:54 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2018-06-07 12:44 - 2011-04-12 11:16 - 000762636 _____ C:\Windows\system32\perfh00C.dat
2018-06-07 12:44 - 2011-04-12 11:16 - 000155062 _____ C:\Windows\system32\perfc00C.dat
2018-06-07 12:44 - 2009-07-14 07:13 - 001699662 _____ C:\Windows\system32\PerfStringBackup.INI
2018-06-07 12:44 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-06-07 01:10 - 2017-01-07 00:57 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\ZHP
2018-06-07 01:09 - 2015-09-04 02:48 - 000000000 ____D C:\Users\Charlly
2018-06-07 01:06 - 2009-07-14 06:45 - 000028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-06-07 01:06 - 2009-07-14 06:45 - 000028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-06-07 01:00 - 2015-09-04 02:55 - 001673794 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-06-07 00:59 - 2015-09-04 02:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-06-07 00:56 - 2017-09-14 20:46 - 000003030 _____ C:\Windows\System32\Tasks\MSIAfterburner
2018-06-07 00:56 - 2016-08-08 16:02 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2018-06-07 00:53 - 2015-09-03 21:32 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\uTorrent
2018-06-07 00:08 - 2016-06-27 20:05 - 000288684 ____N C:\Windows\Minidump\060718-15147-01.dmp
2018-06-07 00:08 - 2015-10-04 23:54 - 000000000 ____D C:\Windows\Minidump
2018-06-06 22:21 - 2015-02-28 04:11 - 000000000 ____D C:\AdwCleaner
2018-06-06 21:22 - 2015-09-04 07:50 - 000000000 ____D C:\Windows\system32\appraiser
2018-06-06 21:17 - 2016-06-27 20:05 - 000288684 ____N C:\Windows\Minidump\060618-14133-01.dmp
2018-06-06 20:05 - 2015-09-03 21:01 - 000002227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-05 20:42 - 2015-09-03 21:38 - 000000000 ____D C:\ProgramData\ProductData
2018-06-05 20:27 - 2017-08-24 14:52 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\discord
2018-06-05 20:21 - 2016-06-27 20:05 - 000290212 ____N C:\Windows\Minidump\060518-22682-01.dmp
2018-06-05 20:19 - 2017-02-16 20:23 - 000000776 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2018-06-05 20:18 - 2017-02-16 20:23 - 000002980 _____ C:\Windows\System32\Tasks\GU5SkipUAC
2018-06-05 20:15 - 2017-10-25 10:30 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-06-05 20:15 - 2016-01-11 00:56 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\MPC-HC
2018-06-05 20:15 - 2015-09-03 22:55 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\DAEMON Tools Lite
2018-06-05 20:14 - 2017-01-07 12:55 - 000002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-06-05 03:03 - 2015-10-14 21:36 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\CodeBlocks
2018-05-31 00:15 - 2015-10-14 21:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
2018-05-29 23:29 - 2015-12-01 19:57 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-05-29 17:32 - 2017-05-01 03:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2018-05-29 17:32 - 2017-05-01 03:34 - 000000000 ____D C:\Program Files\MPC-HC
2018-05-28 20:34 - 2015-09-04 07:56 - 000000000 ____D C:\Users\Charlly\AppData\Local\Adobe
2018-05-28 20:34 - 2015-09-04 07:51 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Adobe
2018-05-28 14:40 - 2015-09-03 21:34 - 000000839 _____ C:\Users\Charlly\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2018-05-25 15:25 - 2015-09-07 01:03 - 000153552 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2018-05-24 14:21 - 2015-09-07 00:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-05-22 00:15 - 2017-02-09 20:28 - 000000990 _____ C:\Users\Charlly\Desktop\MEMO.txt
2018-05-18 13:13 - 2015-09-04 02:55 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-05-18 13:13 - 2009-07-14 04:34 - 000000427 _____ C:\Windows\win.ini
2018-05-16 22:38 - 2015-09-03 21:01 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-16 22:38 - 2015-09-03 21:01 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-16 12:33 - 2009-07-14 07:08 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-05-14 22:58 - 2017-01-21 19:07 - 000000000 ____D C:\Users\Charlly\Documents\Apowersoft
2018-05-14 22:58 - 2015-09-28 20:34 - 000000000 ____D C:\Users\Charlly\AppData\Roaming\Apowersoft
2018-05-14 22:58 - 2015-09-28 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2018-05-14 15:04 - 2017-04-14 21:42 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-05-14 15:04 - 2015-09-06 21:14 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-05-12 04:25 - 2017-02-16 20:23 - 000028424 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2018-05-12 04:25 - 2017-02-16 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2018-05-10 17:25 - 2017-05-16 19:27 - 000000000 ____D C:\ProgramData\AVAST Software
2018-05-10 17:18 - 2017-02-19 00:04 - 000004630 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-05-10 17:18 - 2016-01-11 10:39 - 000804864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-05-10 17:18 - 2016-01-11 10:39 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-05-10 17:18 - 2016-01-11 10:39 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-05-10 17:18 - 2016-01-11 10:39 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-05-10 17:18 - 2016-01-11 10:39 - 000000000 ____D C:\Windows\system32\Macromed
2018-05-10 17:14 - 2018-03-14 00:18 - 000004642 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-08 19:38 - 2015-09-07 01:03 - 000199912 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
==================== Fichiers à la racine de certains dossiers =======
2017-02-09 20:43 - 2017-02-17 00:26 - 000000227 _____ () C:\ProgramData\DP0004.dat
2018-06-07 01:09 - 2018-06-07 01:09 - 000228914 _____ () C:\Users\Charlly\ZHPDiag3.exe
2017-03-21 17:45 - 2017-03-21 17:45 - 000000132 _____ () C:\Users\Charlly\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-03-02 16:42 - 2016-03-16 15:33 - 000000117 _____ () C:\Users\Charlly\AppData\Roaming\D2Info0
2016-03-02 16:42 - 2016-03-16 12:10 - 000000008 _____ () C:\Users\Charlly\AppData\Roaming\DofusAppId0_1
2016-03-04 00:30 - 2016-03-16 16:02 - 000000008 _____ () C:\Users\Charlly\AppData\Roaming\DofusAppId0_2
2016-12-29 02:15 - 2016-12-29 02:15 - 000000875 _____ () C:\Users\Charlly\AppData\Roaming\SAS7_000.DAT
2016-03-08 21:27 - 2017-07-27 22:28 - 000004701 _____ () C:\Users\Charlly\AppData\Roaming\SpeedRunnersLog.txt
2016-09-09 20:32 - 2016-09-14 14:15 - 000002982 _____ () C:\Users\Charlly\AppData\Roaming\TargetInvocationLog.txt
2016-09-02 00:31 - 2016-11-03 01:45 - 000000129 _____ () C:\Users\Charlly\AppData\Roaming\WB.CFG
2015-09-16 00:06 - 2018-03-26 23:52 - 000001456 _____ () C:\Users\Charlly\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2015-10-23 23:34 - 2017-01-31 23:59 - 001307648 _____ () C:\Users\Charlly\AppData\Local\file__0.localstorage
2015-09-16 00:06 - 2015-07-27 01:26 - 000000000 ___SH () C:\Users\Charlly\AppData\Local\LumaEmu
2017-07-26 17:45 - 2017-07-26 17:45 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{394DDFF0-2238-42E6-9287-741A835B0F75}
2017-07-26 17:58 - 2017-07-26 17:58 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{3AED1263-3C2A-473C-ABED-B21FFC948866}
2016-07-24 17:00 - 2016-07-24 17:00 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{8CA7CFA8-2CBD-4989-B429-5F20D5D8D69D}
2017-02-12 22:31 - 2017-02-12 22:31 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{A10B68EF-5889-476D-A700-14763C0A20C8}
2017-07-26 17:55 - 2017-07-26 17:55 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{BD4375E7-9F85-43E1-98EC-B45F22FE7C93}
2017-07-26 17:41 - 2017-07-26 17:41 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{C629E6F3-CEDF-4FEC-B78E-7B2583DF9D3A}
2017-07-26 17:57 - 2017-07-26 17:57 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{C74554A4-C41E-499E-9432-5BEA469AA14D}
2017-07-26 17:42 - 2017-07-26 17:42 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{CB7CDD68-89DB-429F-B20D-CA98BC90EC10}
2017-02-12 22:35 - 2017-02-12 22:35 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{E70BDCA7-5336-48C4-A2AB-5C322C58C82B}
2017-07-26 18:02 - 2017-07-26 18:02 - 000000000 _____ () C:\Users\Charlly\AppData\Local\{F6EDF732-7400-4952-951C-B7CC1811D4A8}
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-05-28 10:08
==================== Fin de FRST.txt ============================