Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-05.2019
Exécuté par nathais (administrateur) sur MARC (Hewlett-Packard HP Pavilion 17 Notebook PC) (08-05-2019 16:54:47)
Exécuté depuis D:\Users\nathais\Desktop
Profils chargés: nathais (Profils disponibles: nathais)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\UltraViewer\UltraViewer_Service.exe
() [Fichier non signé] C:\Program Files (x86)\UltraViewer\uv_x64.exe
() [Fichier non signé] C:\Program Files (x86)\UltraViewer\uv_x64.exe
() [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
() [Fichier non signé] C:\Windows\RocketDock\RocketDock.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Hewlett-Packard Company) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Softex Inc.) [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
Impossible d'accéder au processus -> mbamtray.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573208 2014-04-22] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Softex Incorporated -> Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811120 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-02-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\Run: [RocketDock] => C:\Windows\RocketDock\RocketDock.exe [630784 2007-03-19] () [Fichier non signé]
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\Policies\Explorer: [NoDrives] 58720256
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\MountPoints2: {dcc0ca15-5528-11e8-8288-9cad97cb4074} - "E:\AutoRun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-07] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2014-03-07] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2014-03-28] (Softex Inc..) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2014-03-28] (Softex Inc..) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-07-07]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel(R) Smart Connect software -> Intel Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0A1E063C-7394-4CAD-BDBC-7EC0EB3DE4EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B87BF52-12F5-4AA1-963A-84728A60F4E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2014-01-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {1C9BB5DE-AC8D-4696-94E0-6FA382209EBB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2014-01-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {4023D0DB-21BF-48EF-972D-3D24A45E6FC8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1586392 2013-12-18] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {5DA87F0A-5F51-47BA-9098-7ABF5D239174} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2014-03-07] (CyberLink Corp. -> CyberLink Corp.)
Task: {5F2A36BD-FDC3-461A-A208-BB9971583422} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {74E766A7-41BF-417E-BFAC-0B9C707E91DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A2BC0C8-D56F-414D-86FF-A208EA423189} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {8E44E9BA-D6E3-434E-A70A-A6C717C3D344} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-04] (Google Inc -> Google Inc.)
Task: {9CC85A19-8FF3-4F51-AB95-601D17D07258} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5C6F50A-B395-498A-80C2-588C721B8BD1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-04] (Google Inc -> Google Inc.)
Task: {BCF54753-B34C-4E31-9C14-DCE8AA8234E8} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1354552 2013-11-01] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
Task: {BFB7B118-315F-45C3-8A57-3C51471A8065} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [603008 2012-11-29] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {F0486E73-0A2C-43C5-AB6D-8378F15BDE41} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1586392 2013-12-18] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {FBB239DC-9367-4B7D-BD44-0ADA430CB21C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {FBC22DFC-FD66-448D-98A6-0FA4DDBBC9B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {FC5456DF-5973-4BCF-81DB-17FB51B5DE9F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7173848 2016-12-21] (Piriform Ltd -> Piriform Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 activation.acronis.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4E7A19DC-A33E-48D9-BD48-DF44BAFA2575}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8326A1FD-8CF1-430E-BFCC-536E4E3216CB}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {C0175486-03CE-4845-BA05-ECCC9E8D372E} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {C0175486-03CE-4845-BA05-ECCC9E8D372E} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3068981974-3729870436-1790889081-1001 -> {C0175486-03CE-4845-BA05-ECCC9E8D372E} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-04] (EVERNOTE CORPORATION -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) [Fichier non signé]
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2015-08-07] (Softdeluxe Ltd. -> FreeDownloadManager.ORG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969 [2019-05-08]
FF Homepage: Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969 -> hxxps://www.google.fr/
FF Extension: (hotfix-update-xpi-intermediate) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-07]
FF Extension: (RT News) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\jid1-2JvdrbImjAwLcA@jetpack.xpi [2017-11-26] [Legacy]
FF Extension: (Chat siamois) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{142ba122-ca2b-49e1-9819-5bb1daad070e}.xpi [2019-03-21]
FF Extension: (Rose couleur crème) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{262cb908-9a41-4389-bd46-0641885d08f3}.xpi [2019-03-21]
FF Extension: (Fleurs en noir et blanc) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{36a66f03-d8c4-4403-be6d-7aa60c8687b3}.xpi [2019-03-21]
FF Extension: (Fleurs romantiques) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{5bb7a887-0787-4e5e-941b-4ddeb3883ec2}.xpi [2019-03-21]
FF Extension: (Pivoines roses) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{945fb67b-fc4e-43cb-815c-13fb59a16801}.xpi [2019-03-21]
FF Extension: (Oeillets roses) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{c46221c7-3754-4d1d-ae0e-a7d833d513ac}.xpi [2019-03-21]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-20]
FF Extension: (Baidu Search Update) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\features\{8f3a5567-4757-45b4-ab99-a8e2caecad80}\baidu-code-update@mozillaonline.com.xpi [2019-05-07]
FF HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13
FF Extension: (Free Download Manager extension) - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13 [2017-12-08] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Profile: C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default [2019-05-07]
CHR Extension: (Google Drive) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-08]
CHR Extension: (YouTube) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-08]
CHR Extension: (AdBlock) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-04-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-26]
CHR Extension: (Gmail) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-07]
CHR Profile: C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-02]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [Fichier non signé]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] (Intel(R) Smart Connect software -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [Fichier non signé]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
R2 UltraViewService; C:\Program Files (x86)\UltraViewer\UltraViewer_Service.exe [94720 2018-11-28] () [Fichier non signé]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [43320 2013-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-13] (Broadcom Corporation -> Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7517872 2014-07-07] (Broadcom Corporation -> Broadcom Corporation)
S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [166104 2013-09-04] (Broadcom Corporation -> Broadcom Corporation.)
S3 BtwSerialBus; C:\Windows\System32\drivers\BtwSerialBus.sys [150744 2013-09-09] (Broadcom Corporation -> Broadcom Corporation.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30520 2013-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [4222976 2014-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] (Intel(R) Smart Connect software -> )
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] (Intel(R) Smart Connect software -> )
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] (Intel(R) Smart Connect software -> )
S3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] (Intel(R) Smart Connect software -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [127136 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73912 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [117344 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-11] (Intel(R) Software -> Intel Corporation)
R1 MpKsla5e9b27c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{64140DCB-541B-439A-9166-05F43F09834F}\MpKsla5e9b27c.sys [58120 2019-05-08] (Microsoft Corporation -> Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [466136 2014-01-15] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-05-08 16:23 - 2019-05-08 16:54 - 000000000 ____D C:\FRST
2019-05-08 15:55 - 2019-05-08 16:13 - 000000000 ____D C:\Users\nathais\AppData\Roaming\UltraViewer
2019-05-08 15:53 - 2019-05-08 15:53 - 000001059 _____ C:\Users\Public\Desktop\UltraViewer.lnk
2019-05-08 15:53 - 2019-05-08 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraViewer
2019-05-08 15:51 - 2019-05-08 15:54 - 000000000 ____D C:\Program Files (x86)\UltraViewer
2019-05-03 21:51 - 2019-05-03 21:51 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-05-02 22:45 - 2019-05-02 22:45 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-05-02 22:45 - 2019-05-02 22:45 - 000127136 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-05-02 22:45 - 2019-05-02 22:45 - 000117344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-05-02 22:45 - 2019-05-02 22:45 - 000073912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-05-02 22:44 - 2019-05-02 22:44 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-05-02 22:44 - 2019-05-02 22:44 - 000001883 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-05-02 22:44 - 2019-05-02 22:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-05-02 22:44 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-04-10 10:05 - 2019-04-02 03:16 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-04-10 10:05 - 2019-03-26 18:11 - 007079936 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2019-04-10 10:05 - 2019-03-26 17:57 - 005276160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2019-04-10 10:05 - 2019-03-26 17:40 - 007798272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-04-10 10:05 - 2019-03-26 17:35 - 005270528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-04-10 10:05 - 2019-03-26 08:14 - 025736704 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-04-10 10:05 - 2019-03-26 07:12 - 020280832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-04-10 10:05 - 2019-03-26 07:05 - 015284736 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-04-10 10:05 - 2019-03-26 06:24 - 013682176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-04-10 10:05 - 2019-03-16 06:03 - 002535664 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-04-10 10:05 - 2019-03-09 18:01 - 003547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-04-10 10:05 - 2019-02-09 20:55 - 022373096 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-04-10 10:05 - 2019-02-09 20:23 - 019790664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-04-10 10:04 - 2019-03-30 22:57 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-04-10 10:04 - 2019-03-26 10:16 - 001311976 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-04-10 10:04 - 2019-03-26 08:00 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-04-10 10:04 - 2019-03-26 07:52 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-04-10 10:04 - 2019-03-26 07:50 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-04-10 10:04 - 2019-03-26 07:40 - 005777920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-04-10 10:04 - 2019-03-26 07:40 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-04-10 10:04 - 2019-03-26 07:22 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-04-10 10:04 - 2019-03-26 07:15 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2019-04-10 10:04 - 2019-03-26 07:10 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-04-10 10:04 - 2019-03-26 07:09 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-04-10 10:04 - 2019-03-26 07:08 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-04-10 10:04 - 2019-03-26 07:06 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-04-10 10:04 - 2019-03-26 07:00 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-04-10 10:04 - 2019-03-26 06:56 - 001040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-04-10 10:04 - 2019-03-26 06:51 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-04-10 10:04 - 2019-03-26 06:48 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-04-10 10:04 - 2019-03-26 06:48 - 001556992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-04-10 10:04 - 2019-03-26 06:43 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-04-10 10:04 - 2019-03-26 06:36 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-04-10 10:04 - 2019-03-26 06:29 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-04-10 10:04 - 2019-03-26 06:26 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2019-04-10 10:04 - 2019-03-26 06:23 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-04-10 10:04 - 2019-03-26 06:22 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-04-10 10:04 - 2019-03-26 06:22 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-04-10 10:04 - 2019-03-26 06:21 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-04-10 10:04 - 2019-03-26 06:08 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-04-10 10:04 - 2019-03-26 06:04 - 001332224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-04-10 10:04 - 2019-03-26 06:02 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-04-10 10:04 - 2019-03-21 03:29 - 002452432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-04-10 10:04 - 2019-03-16 05:46 - 000805176 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-04-10 10:04 - 2019-03-16 05:36 - 001902752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-04-10 10:04 - 2019-03-16 05:29 - 000611656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-04-10 10:04 - 2019-03-16 04:51 - 001755136 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-04-10 10:04 - 2019-03-16 04:49 - 001493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-04-10 10:04 - 2019-03-16 04:48 - 003324416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-04-10 10:04 - 2019-03-16 04:47 - 003617280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-04-10 10:04 - 2019-03-16 04:39 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-04-10 10:04 - 2019-03-16 04:39 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-04-10 10:04 - 2019-03-14 07:57 - 007368952 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-04-10 10:04 - 2019-03-14 07:56 - 001677024 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-04-10 10:04 - 2019-03-14 07:56 - 001537560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-04-10 10:04 - 2019-03-13 21:13 - 001369096 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-04-10 10:04 - 2019-03-09 19:08 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-04-10 10:04 - 2019-03-09 18:51 - 001115136 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-04-10 10:04 - 2019-03-09 18:47 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-04-10 10:04 - 2019-03-09 18:43 - 003822080 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-04-10 10:04 - 2019-03-09 18:35 - 001085952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-04-10 10:04 - 2019-03-09 18:31 - 003274752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-04-10 10:04 - 2019-03-09 18:28 - 002348544 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-04-10 10:04 - 2019-03-09 18:19 - 001550848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-04-10 10:04 - 2019-02-24 16:43 - 001308456 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-04-10 10:04 - 2019-02-21 19:36 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-04-10 10:04 - 2019-02-21 19:35 - 000684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-04-10 10:04 - 2019-02-21 19:34 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-04-10 10:04 - 2019-02-21 19:34 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-04-10 10:04 - 2019-02-21 18:31 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-04-10 10:04 - 2019-02-12 05:48 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-05-08 16:45 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2019-05-08 15:07 - 2017-01-27 15:25 - 000003928 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{211FCAA1-6409-4E85-99DB-AEC8B9127254}
2019-05-08 09:03 - 2017-01-27 15:52 - 000000000 ____D C:\Users\nathais\AppData\LocalLow\Mozilla
2019-05-07 08:41 - 2018-04-03 08:18 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3068981974-3729870436-1790889081-1001
2019-05-07 08:02 - 2017-01-27 18:55 - 000002202 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-06 22:32 - 2017-11-26 00:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-05-06 22:32 - 2017-01-27 15:51 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-05-03 21:51 - 2018-04-03 18:02 - 000000936 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-05-03 21:51 - 2017-01-27 15:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-05-02 22:44 - 2017-04-06 11:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-22 11:13 - 2014-05-08 00:16 - 000840966 _____ C:\Windows\system32\perfh00C.dat
2019-04-22 11:13 - 2014-05-08 00:16 - 000171814 _____ C:\Windows\system32\perfc00C.dat
2019-04-22 11:13 - 2014-03-18 11:53 - 001960048 _____ C:\Windows\system32\PerfStringBackup.INI
2019-04-11 18:51 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2019-04-11 07:51 - 2017-04-14 12:25 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-04-11 07:41 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-04-11 07:41 - 2013-08-22 16:44 - 000491160 _____ C:\Windows\system32\FNTCACHE.DAT
2019-04-10 23:32 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2019-04-10 23:28 - 2017-02-05 21:51 - 000000000 ____D C:\Windows\system32\MRT
2019-04-10 23:28 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
2019-04-10 23:21 - 2017-02-05 21:51 - 131129288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-04-10 22:01 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-10 22:01 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2019-04-10 10:25 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2019-04-10 09:17 - 2019-02-13 09:34 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-04-10 09:17 - 2018-03-13 15:24 - 000004630 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-04-10 09:17 - 2017-05-25 15:27 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-04-10 09:17 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-04-10 09:17 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
==================== Fichiers à la racine de certains dossiers =======
2017-11-26 00:10 - 2017-11-26 00:11 - 002631320 _____ () C:\Program Files (x86)\tv.exe
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2019-05-08 13:34
==================== Fin de FRST.txt ============================
Exécuté par nathais (administrateur) sur MARC (Hewlett-Packard HP Pavilion 17 Notebook PC) (08-05-2019 16:54:47)
Exécuté depuis D:\Users\nathais\Desktop
Profils chargés: nathais (Profils disponibles: nathais)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files (x86)\UltraViewer\UltraViewer_Service.exe
() [Fichier non signé] C:\Program Files (x86)\UltraViewer\uv_x64.exe
() [Fichier non signé] C:\Program Files (x86)\UltraViewer\uv_x64.exe
() [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
() [Fichier non signé] C:\Windows\RocketDock\RocketDock.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(DUC FABULOUS RESEARCH DEVELOPING SCIENCE TECH PRO SOFT CO LTD -> DucFabulous Co,ltd) C:\Program Files (x86)\UltraViewer\UltraViewer_Desktop.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Hewlett-Packard Company) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Softex Inc.) [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
Impossible d'accéder au processus -> mbamtray.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573208 2014-04-22] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Softex Incorporated -> Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811120 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-02-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [475448 2014-03-26] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\Run: [RocketDock] => C:\Windows\RocketDock\RocketDock.exe [630784 2007-03-19] () [Fichier non signé]
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\Policies\Explorer: [NoDrives] 58720256
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\MountPoints2: {dcc0ca15-5528-11e8-8288-9cad97cb4074} - "E:\AutoRun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-07] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2014-03-07] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2014-03-28] (Softex Inc..) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2014-03-28] (Softex Inc..) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-07-07]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel(R) Smart Connect software -> Intel Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0A1E063C-7394-4CAD-BDBC-7EC0EB3DE4EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B87BF52-12F5-4AA1-963A-84728A60F4E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2014-01-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {1C9BB5DE-AC8D-4696-94E0-6FA382209EBB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [542008 2014-01-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {4023D0DB-21BF-48EF-972D-3D24A45E6FC8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1586392 2013-12-18] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {5DA87F0A-5F51-47BA-9098-7ABF5D239174} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2014-03-07] (CyberLink Corp. -> CyberLink Corp.)
Task: {5F2A36BD-FDC3-461A-A208-BB9971583422} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {74E766A7-41BF-417E-BFAC-0B9C707E91DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A2BC0C8-D56F-414D-86FF-A208EA423189} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-10] (Adobe Inc. -> Adobe)
Task: {8E44E9BA-D6E3-434E-A70A-A6C717C3D344} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-04] (Google Inc -> Google Inc.)
Task: {9CC85A19-8FF3-4F51-AB95-601D17D07258} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5C6F50A-B395-498A-80C2-588C721B8BD1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-02-04] (Google Inc -> Google Inc.)
Task: {BCF54753-B34C-4E31-9C14-DCE8AA8234E8} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1354552 2013-11-01] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
Task: {BFB7B118-315F-45C3-8A57-3C51471A8065} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [603008 2012-11-29] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {F0486E73-0A2C-43C5-AB6D-8378F15BDE41} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1586392 2013-12-18] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {FBB239DC-9367-4B7D-BD44-0ADA430CB21C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {FBC22DFC-FD66-448D-98A6-0FA4DDBBC9B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-10] (Adobe Inc. -> Adobe)
Task: {FC5456DF-5973-4BCF-81DB-17FB51B5DE9F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7173848 2016-12-21] (Piriform Ltd -> Piriform Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 127.0.0.1 activation.acronis.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4E7A19DC-A33E-48D9-BD48-DF44BAFA2575}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8326A1FD-8CF1-430E-BFCC-536E4E3216CB}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gws_rd=ssl
HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/3
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {C0175486-03CE-4845-BA05-ECCC9E8D372E} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {C0175486-03CE-4845-BA05-ECCC9E8D372E} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3068981974-3729870436-1790889081-1001 -> {C0175486-03CE-4845-BA05-ECCC9E8D372E} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-04] (EVERNOTE CORPORATION -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) [Fichier non signé]
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2015-08-07] (Softdeluxe Ltd. -> FreeDownloadManager.ORG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969 [2019-05-08]
FF Homepage: Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969 -> hxxps://www.google.fr/
FF Extension: (hotfix-update-xpi-intermediate) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-07]
FF Extension: (RT News) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\jid1-2JvdrbImjAwLcA@jetpack.xpi [2017-11-26] [Legacy]
FF Extension: (Chat siamois) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{142ba122-ca2b-49e1-9819-5bb1daad070e}.xpi [2019-03-21]
FF Extension: (Rose couleur crème) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{262cb908-9a41-4389-bd46-0641885d08f3}.xpi [2019-03-21]
FF Extension: (Fleurs en noir et blanc) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{36a66f03-d8c4-4403-be6d-7aa60c8687b3}.xpi [2019-03-21]
FF Extension: (Fleurs romantiques) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{5bb7a887-0787-4e5e-941b-4ddeb3883ec2}.xpi [2019-03-21]
FF Extension: (Pivoines roses) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{945fb67b-fc4e-43cb-815c-13fb59a16801}.xpi [2019-03-21]
FF Extension: (Oeillets roses) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{c46221c7-3754-4d1d-ae0e-a7d833d513ac}.xpi [2019-03-21]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-20]
FF Extension: (Baidu Search Update) - Y:\Internet\Firefox\Profiles\ma6968bu.default-1511651109969\features\{8f3a5567-4757-45b4-ab99-a8e2caecad80}\baidu-code-update@mozillaonline.com.xpi [2019-05-07]
FF HKU\S-1-5-21-3068981974-3729870436-1790889081-1001\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13
FF Extension: (Free Download Manager extension) - C:\ProgramData\Free Download Manager\Firefox\Extensions\2.1.13 [2017-12-08] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR Profile: C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default [2019-05-07]
CHR Extension: (Google Drive) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-08]
CHR Extension: (YouTube) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-08]
CHR Extension: (AdBlock) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-04-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-26]
CHR Extension: (Gmail) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-07]
CHR Profile: C:\Users\nathais\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-05-02]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [Fichier non signé]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [469304 2014-03-26] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] (Intel(R) Smart Connect software -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [Fichier non signé]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-09] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
R2 UltraViewService; C:\Program Files (x86)\UltraViewer\UltraViewer_Service.exe [94720 2018-11-28] () [Fichier non signé]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [43320 2013-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-13] (Broadcom Corporation -> Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7517872 2014-07-07] (Broadcom Corporation -> Broadcom Corporation)
S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [166104 2013-09-04] (Broadcom Corporation -> Broadcom Corporation.)
S3 BtwSerialBus; C:\Windows\System32\drivers\BtwSerialBus.sys [150744 2013-09-09] (Broadcom Corporation -> Broadcom Corporation.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30520 2013-07-23] (Hewlett-Packard Company -> Hewlett-Packard)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [4222976 2014-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] (Intel(R) Smart Connect software -> )
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] (Intel(R) Smart Connect software -> )
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] (Intel(R) Smart Connect software -> )
S3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] (Intel(R) Smart Connect software -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [127136 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73912 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [117344 2019-05-02] (Malwarebytes Corporation -> Malwarebytes)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-11] (Intel(R) Software -> Intel Corporation)
R1 MpKsla5e9b27c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{64140DCB-541B-439A-9166-05F43F09834F}\MpKsla5e9b27c.sys [58120 2019-05-08] (Microsoft Corporation -> Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [466136 2014-01-15] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-03-13] (Synaptics Incorporated -> Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-05-08 16:23 - 2019-05-08 16:54 - 000000000 ____D C:\FRST
2019-05-08 15:55 - 2019-05-08 16:13 - 000000000 ____D C:\Users\nathais\AppData\Roaming\UltraViewer
2019-05-08 15:53 - 2019-05-08 15:53 - 000001059 _____ C:\Users\Public\Desktop\UltraViewer.lnk
2019-05-08 15:53 - 2019-05-08 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraViewer
2019-05-08 15:51 - 2019-05-08 15:54 - 000000000 ____D C:\Program Files (x86)\UltraViewer
2019-05-03 21:51 - 2019-05-03 21:51 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-05-02 22:45 - 2019-05-02 22:45 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-05-02 22:45 - 2019-05-02 22:45 - 000127136 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-05-02 22:45 - 2019-05-02 22:45 - 000117344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-05-02 22:45 - 2019-05-02 22:45 - 000073912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-05-02 22:44 - 2019-05-02 22:44 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-05-02 22:44 - 2019-05-02 22:44 - 000001883 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-05-02 22:44 - 2019-05-02 22:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-05-02 22:44 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-04-10 10:05 - 2019-04-02 03:16 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-04-10 10:05 - 2019-03-26 18:11 - 007079936 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2019-04-10 10:05 - 2019-03-26 17:57 - 005276160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2019-04-10 10:05 - 2019-03-26 17:40 - 007798272 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-04-10 10:05 - 2019-03-26 17:35 - 005270528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-04-10 10:05 - 2019-03-26 08:14 - 025736704 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-04-10 10:05 - 2019-03-26 07:12 - 020280832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-04-10 10:05 - 2019-03-26 07:05 - 015284736 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-04-10 10:05 - 2019-03-26 06:24 - 013682176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-04-10 10:05 - 2019-03-16 06:03 - 002535664 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-04-10 10:05 - 2019-03-09 18:01 - 003547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-04-10 10:05 - 2019-02-09 20:55 - 022373096 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-04-10 10:05 - 2019-02-09 20:23 - 019790664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-04-10 10:04 - 2019-03-30 22:57 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-04-10 10:04 - 2019-03-26 10:16 - 001311976 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-04-10 10:04 - 2019-03-26 08:00 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-04-10 10:04 - 2019-03-26 07:52 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-04-10 10:04 - 2019-03-26 07:50 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-04-10 10:04 - 2019-03-26 07:40 - 005777920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-04-10 10:04 - 2019-03-26 07:40 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-04-10 10:04 - 2019-03-26 07:22 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-04-10 10:04 - 2019-03-26 07:15 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2019-04-10 10:04 - 2019-03-26 07:10 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-04-10 10:04 - 2019-03-26 07:09 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-04-10 10:04 - 2019-03-26 07:08 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-04-10 10:04 - 2019-03-26 07:06 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-04-10 10:04 - 2019-03-26 07:00 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-04-10 10:04 - 2019-03-26 06:56 - 001040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-04-10 10:04 - 2019-03-26 06:51 - 000498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-04-10 10:04 - 2019-03-26 06:48 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-04-10 10:04 - 2019-03-26 06:48 - 001556992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-04-10 10:04 - 2019-03-26 06:43 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-04-10 10:04 - 2019-03-26 06:36 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-04-10 10:04 - 2019-03-26 06:29 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-04-10 10:04 - 2019-03-26 06:26 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2019-04-10 10:04 - 2019-03-26 06:23 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-04-10 10:04 - 2019-03-26 06:22 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-04-10 10:04 - 2019-03-26 06:22 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-04-10 10:04 - 2019-03-26 06:21 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-04-10 10:04 - 2019-03-26 06:08 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-04-10 10:04 - 2019-03-26 06:04 - 001332224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-04-10 10:04 - 2019-03-26 06:02 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-04-10 10:04 - 2019-03-21 03:29 - 002452432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-04-10 10:04 - 2019-03-16 05:46 - 000805176 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-04-10 10:04 - 2019-03-16 05:36 - 001902752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-04-10 10:04 - 2019-03-16 05:29 - 000611656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-04-10 10:04 - 2019-03-16 04:51 - 001755136 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-04-10 10:04 - 2019-03-16 04:49 - 001493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-04-10 10:04 - 2019-03-16 04:48 - 003324416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-04-10 10:04 - 2019-03-16 04:47 - 003617280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-04-10 10:04 - 2019-03-16 04:39 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-04-10 10:04 - 2019-03-16 04:39 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-04-10 10:04 - 2019-03-14 07:57 - 007368952 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-04-10 10:04 - 2019-03-14 07:56 - 001677024 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-04-10 10:04 - 2019-03-14 07:56 - 001537560 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-04-10 10:04 - 2019-03-13 21:13 - 001369096 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-04-10 10:04 - 2019-03-09 19:08 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-04-10 10:04 - 2019-03-09 18:51 - 001115136 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-04-10 10:04 - 2019-03-09 18:47 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-04-10 10:04 - 2019-03-09 18:43 - 003822080 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-04-10 10:04 - 2019-03-09 18:35 - 001085952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-04-10 10:04 - 2019-03-09 18:31 - 003274752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-04-10 10:04 - 2019-03-09 18:28 - 002348544 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-04-10 10:04 - 2019-03-09 18:19 - 001550848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-04-10 10:04 - 2019-03-09 16:20 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-04-10 10:04 - 2019-02-24 16:43 - 001308456 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-04-10 10:04 - 2019-02-21 19:36 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-04-10 10:04 - 2019-02-21 19:35 - 000684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-04-10 10:04 - 2019-02-21 19:34 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-04-10 10:04 - 2019-02-21 19:34 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-04-10 10:04 - 2019-02-21 18:31 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-04-10 10:04 - 2019-02-12 05:48 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-05-08 16:45 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2019-05-08 15:07 - 2017-01-27 15:25 - 000003928 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{211FCAA1-6409-4E85-99DB-AEC8B9127254}
2019-05-08 09:03 - 2017-01-27 15:52 - 000000000 ____D C:\Users\nathais\AppData\LocalLow\Mozilla
2019-05-07 08:41 - 2018-04-03 08:18 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3068981974-3729870436-1790889081-1001
2019-05-07 08:02 - 2017-01-27 18:55 - 000002202 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-06 22:32 - 2017-11-26 00:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-05-06 22:32 - 2017-01-27 15:51 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-05-03 21:51 - 2018-04-03 18:02 - 000000936 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-05-03 21:51 - 2017-01-27 15:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-05-02 22:44 - 2017-04-06 11:02 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-22 11:13 - 2014-05-08 00:16 - 000840966 _____ C:\Windows\system32\perfh00C.dat
2019-04-22 11:13 - 2014-05-08 00:16 - 000171814 _____ C:\Windows\system32\perfc00C.dat
2019-04-22 11:13 - 2014-03-18 11:53 - 001960048 _____ C:\Windows\system32\PerfStringBackup.INI
2019-04-11 18:51 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2019-04-11 07:51 - 2017-04-14 12:25 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-04-11 07:41 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-04-11 07:41 - 2013-08-22 16:44 - 000491160 _____ C:\Windows\system32\FNTCACHE.DAT
2019-04-10 23:32 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2019-04-10 23:28 - 2017-02-05 21:51 - 000000000 ____D C:\Windows\system32\MRT
2019-04-10 23:28 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
2019-04-10 23:21 - 2017-02-05 21:51 - 131129288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-04-10 22:01 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-10 22:01 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2019-04-10 10:25 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2019-04-10 09:17 - 2019-02-13 09:34 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-04-10 09:17 - 2018-03-13 15:24 - 000004630 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-04-10 09:17 - 2017-05-25 15:27 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-04-10 09:17 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-04-10 09:17 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
==================== Fichiers à la racine de certains dossiers =======
2017-11-26 00:10 - 2017-11-26 00:11 - 002631320 _____ () C:\Program Files (x86)\tv.exe
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2019-05-08 13:34
==================== Fin de FRST.txt ============================