cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-05.2019
Exécuté par user (administrateur) sur PC (SAMSUNG ELECTRONICS CO., LTD. 3570R/370R/470R/450R/510R/4450RV) (12-05-2019 11:13:24)
Exécuté depuis C:\Users\user\Downloads
Profils chargés: user (Profils disponibles: user & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" -- "%1"
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Bluestack Systems, Inc. -> BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Bluestack Systems, Inc. -> BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Elaborate Bytes AG -> Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Windows Hardware Compatibility Publisher -> Atheros Commnucations) C:\Windows\System32\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13213328 2012-10-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3940040 2015-06-12] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-12-06] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261000 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [904824 2015-08-19] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Andy] => C:\Program Files\Andy\HandyAndy.exe
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5537600 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\Run: [Chromium] => "c:\users\user\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\Run: [GoogleChromeAutoLaunch_A008D3C4AC1F70CC0223825A47FA7BBC] => "C:\Users\user\AppData\Local\chromium\Application\chrome.exe" --no-startup-window
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\Run: [AvastBrowserAutoLaunch_8C51ECE8272E38B94548E6E4C79E24AC] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {04ed7d9b-482b-11e9-bf0e-24fd529a2971} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {0febfa56-703d-11e5-be9d-24fd529a2971} - "D:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {54ebf3f2-27fb-11e9-bf0b-24fd529a2971} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {64ba0058-61dc-11e8-bef6-24fd529a2971} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {64ba00a6-61dc-11e8-bef6-24fd529a2971} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {c4cc2e98-0fb2-11e5-be8b-24fd529a2971} - "D:\LaunchU3.exe" -a
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {e31f2faf-6064-11e9-bf14-24fd529a2971} - "D:\SETUP.EXE"
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\...\MountPoints2: {fcf915dd-8e82-11e8-befc-24fd529a2971} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-03] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\73.0.1270.86\Installer\chrmstp.exe [2019-04-13] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {01CBD199-43F5-405E-AFF0-4C282AD14A35} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0FE1E5B1-B3E1-4A14-BEAF-22913E9FFB9E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {279F0682-A312-48E9-BCDF-CB2B7EA8928D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CAEA93B-D975-48C6-AAB3-233DB0C18754} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {3D43D0B7-2D81-4ED0-94AE-2EE7F86C6538} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {46516610-C8DB-43BF-BA0F-6C416C5CAD82} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1960168 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {4B2037CF-FAEE-47A5-92C6-40BAE6EE38CE} - \Yahoo! Powered canel -> Pas de fichier <==== ATTENTION
Task: {57025D1E-91CF-42E2-97FB-47DD456B7632} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {644275AF-0EA7-418E-A3E6-91BA15A24E1D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {73D4163E-6850-43EC-BA4F-F8C461937A6C} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {7411B14E-9E7A-47E7-A9E6-C938F4BB934F} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2961528 2012-10-25] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
Task: {8A5C92DF-52C2-4461-94DF-87957DEA9207} - System32\Tasks\{ABD264A5-A7DC-480F-ABBC-A9C0E1C0751D} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\user\AppData\Local\{3EF908A5-1A51-641D-77C9-41F553A1BD6D}\uninst.exe -c -FN="C:\Users\user\AppData\Local\{3EA4081F-1BF6-6569-70C0-42BBAC12BF85}\productupdate.exe"-P=/Uninstall /s /noun /DelSelfDir
Task: {913F5695-54EF-4F90-8A94-BE76F2FED2E3} - System32\Tasks\SWUpdateAgent => C:\Program Files (x86)\Samsung\SW Update\SWMAgent.exe [2883192 2012-11-09] (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
Task: {9D98A126-E2AE-4305-94E8-A7126E86A264} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2380088 2019-04-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {B4507718-7847-4173-970B-F3295A7B030C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {C24DD56C-7B89-4DE6-9B43-5ED6419FA67D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9E8A152-0B8B-4156-8B6A-48AFB37AF2FD} - System32\Tasks\RocketTab Update Task => C:\Program Files (x86)\Search Extensions\updater.exe <==== ATTENTION
Task: {DCDCFC55-EEAB-44AB-9BE2-C90CC7FACA5E} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {E738E237-4441-492C-A368-57EEFE607FCD} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2925960 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\Yahoo! Powered canel.job => Wscript.exe C:\ProgramData\{57BB92D8-DDF9-181E-5B3F-865CC17D0D92}\lalo.txt <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{62F05D8E-778D-43B9-8748-FEE2CC5BF74E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{EC9CBE7B-3D92-4A55-92DA-92751318CB17}: [NameServer] 192.168.1.1,192.168.1.2
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.57,1]
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.1.1,-1]

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung13.msn.com
SearchScopes: HKLM -> DefaultScope {C39624E3-679D-4150-AE58-77D5B281AD2C} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM -> {C39624E3-679D-4150-AE58-77D5B281AD2C} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {C39624E3-679D-4150-AE58-77D5B281AD2C} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM-x32 -> {C39624E3-679D-4150-AE58-77D5B281AD2C} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3376397031-1901727109-3312997615-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3376397031-1901727109-3312997615-1001 -> {C39624E3-679D-4150-AE58-77D5B281AD2C} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 6tka36u8.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\6tka36u8.default [2019-04-27]
FF Homepage: Mozilla\Firefox\Profiles\6tka36u8.default -> hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_kngo_16_39¶m1=1¶m2=f%3D1%26b%3DFirefox%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutByE0F0DyDtBzy0AtBzyyBtCyCtDyDtAtN0D0Tzu0StCyBtAyCtN1L2XzutAtFtByEtFyCtFyDtBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StD0DyCzytDyB0ByCtGtByCyCtAtGzzzzzztDtGtBtA0EyDtGyB0C0FyDtC0Fzy0AyEzz0C0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0A0DyEyE0E0DyCtG0D0B0BtDtGyE0AyCzztG0B0C0FyEtG0AtByD0CyDtA0DyBtCtD0A0C2QtN0A0LzuyE%26cr%3D1515275570%26a%3Dwbf_kngo_16_39%26os_ver%3D6.3%26os%3DWindows%2B8.1
FF NewTab: Mozilla\Firefox\Profiles\6tka36u8.default -> about:newtab
FF Extension: (Avast SafePrice) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\6tka36u8.default\Extensions\sp@avast.com.xpi [2018-06-18] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/sp/update.json]
FF Extension: (Avast Online Security) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\6tka36u8.default\Extensions\wrc@avast.com.xpi [2018-06-18]
FF Extension: (Google Code Correction) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\6tka36u8.default\features\{554630bb-03af-4257-ae0d-c0b6646bb331}\google-code-correction@mozilla.org.xpi [2018-06-18] [Legacy]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-10-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-3376397031-1901727109-3312997615-1001: @squareclock.com/SQ3DPlayer_Production_HBMV1 -> C:\Users\user\AppData\Local\SquareClock.Production_HBMV1\NPSQ3D.dll [2015-10-25] (3DVIA SAS -> SquareClock SAS) [Fichier non signé]
FF Plugin HKU\S-1-5-21-3376397031-1901727109-3312997615-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies SF -> Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR DefaultSearchURL: Default -> hxxp://search.searchvzc.com/s?remove=remove&query={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2019-05-12]
CHR Extension: (Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-24]
CHR Extension: (Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-24]
CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Recherche Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-02-07]
CHR Extension: (Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-27]
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-05-11]
CHR Extension: (Avast Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-04-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-06]
CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Guest Profile [2015-01-26]
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhmeggicckjohfhgocjieomdmmanmocd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3376397031-1901727109-3312997615-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6660888 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\WINDOWS\system32\AdminService.exe [208384 2012-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Commnucations)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [362488 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-04] (AVAST Software s.r.o. -> AVAST Software)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-08-19] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-08-19] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [839288 2015-08-19] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246464 2015-06-12] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 AvastSecureBrowserElevationService; "C:\Program Files (x86)\AVAST Software\Browser\Application\73.0.1270.86\elevation_service.exe" [X]
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [254128 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196000 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320624 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57888 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [257832 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166848 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1031000 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [476776 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [220640 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [385848 2019-04-24] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\WINDOWS\system32\DRIVERS\athw8x.sys [3680256 2013-06-18] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-08-19] (Bluestack Systems, Inc. -> BlueStack Systems)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 RadioHIDMini; C:\WINDOWS\System32\drivers\RadioHIDMini.sys [32168 2015-07-16] (Samsung Electronics CO., LTD. -> Windows (R) Win 7 DDK provider)
R3 RTL8168; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 xb1usb; C:\WINDOWS\System32\drivers\xb1usb.sys [42760 2016-02-23] (Windows Central Build Account - X -> Microsoft Corporation)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-05-12 11:13 - 2019-05-12 11:15 - 000035872 _____ C:\Users\user\Downloads\FRST.txt
2019-05-12 11:13 - 2019-05-12 11:13 - 000000000 ____D C:\Users\user\Downloads\FRST-OlderVersion
2019-05-12 11:12 - 2019-05-12 11:13 - 002430976 _____ (Farbar) C:\Users\user\Downloads\FRST64-2.1.exe
2019-05-12 11:12 - 2019-05-12 11:13 - 000000000 ____D C:\FRST
2019-05-08 18:47 - 2019-05-08 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-05-07 21:51 - 2019-05-07 21:51 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-05-07 21:51 - 2019-05-07 21:51 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-05-06 17:51 - 2019-05-06 17:51 - 000003179 _____ C:\Users\user\Downloads\Game of Thrones S08E04 FRENCH HDTV.torrent
2019-05-03 21:33 - 2019-05-03 21:34 - 000000000 ____D C:\Users\user\Desktop\daher
2019-05-03 21:32 - 2019-05-03 21:33 - 020030693 _____ C:\Users\user\Desktop\daher 2.pdf
2019-05-01 17:14 - 2019-05-01 17:14 - 000007751 _____ C:\Users\user\Downloads\aladdin-french-hdlight-1080p-1992.torrent
2019-05-01 17:00 - 2019-05-01 17:00 - 000015947 _____ C:\Users\user\Downloads\Toy Story FRENCH DVDRIP 1996.torrent
2019-04-29 19:14 - 2019-04-29 19:14 - 000003325 _____ C:\Users\user\Downloads\Game of Thrones S08E03 FRENCH HDTV.torrent
2019-04-24 18:23 - 2019-04-24 18:22 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-04-22 14:37 - 2019-05-08 20:42 - 000000000 ____D C:\Users\user\Desktop\dossier UIMM mémoire de stage et présentation
2019-04-22 14:37 - 2019-04-22 14:37 - 000000000 ____D C:\Users\user\Documents\Modèles Office personnalisés
2019-04-22 12:51 - 2019-04-22 12:51 - 000002674 _____ C:\Users\user\Downloads\Game of Thrones S08E02 FRENCH HDTV.torrent
2019-04-22 10:30 - 2019-04-22 10:30 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2019-04-22 10:30 - 2019-04-22 10:30 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2019-04-22 10:14 - 2019-04-22 10:14 - 000042797 _____ C:\Users\user\Downloads\ticket_7569383.pdf
2019-04-21 11:21 - 2019-04-21 11:21 - 000002965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002930 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002857 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002853 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002853 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002847 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002813 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000002785 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2019-04-21 11:21 - 2019-04-21 11:21 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
2019-04-21 11:18 - 2019-04-21 11:18 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2019-04-21 11:17 - 2019-04-21 11:17 - 000000000 ____D C:\WINDOWS\PCHEALTH
2019-04-21 11:17 - 2019-04-21 11:17 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2019-04-21 11:17 - 2019-04-21 11:17 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2019-04-21 11:14 - 2019-04-21 11:20 - 000000000 ____D C:\WINDOWS\SHELLNEW
2019-04-21 11:14 - 2019-04-21 11:14 - 000000000 ____D C:\Users\user\AppData\Local\Microsoft Help
2019-04-21 11:14 - 2019-04-21 11:14 - 000000000 ____D C:\Program Files\Microsoft Analysis Services
2019-04-21 11:14 - 2019-04-21 11:14 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-04-21 11:14 - 2019-04-21 11:14 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2019-04-21 11:13 - 2019-04-21 11:17 - 000000000 ____D C:\Program Files\Microsoft Office
2019-04-21 10:58 - 2019-04-21 10:58 - 003743923 _____ C:\Users\user\Downloads\KMSAuto Lite 1.3.5.3 Activator.rar
2019-04-21 10:48 - 2019-04-21 10:50 - 011237526 _____ C:\Users\user\Downloads\KMSAuto-Net (1).zip
2019-04-21 10:44 - 2019-04-21 10:50 - 011237526 _____ C:\Users\user\Downloads\KMSAuto-Net.zip
2019-04-21 10:34 - 2019-04-21 10:34 - 000001270 _____ C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2019-04-21 10:31 - 2019-04-21 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2019-04-21 10:31 - 2019-04-21 10:31 - 000000000 ____D C:\Program Files (x86)\Elaborate Bytes
2019-04-21 10:30 - 2019-04-21 10:30 - 001710680 _____ C:\Users\user\Downloads\virtual-clonedrive_5-5-0-0_fr_79406.exe
2019-04-13 09:21 - 2019-04-13 09:21 - 000003732 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-04-13 09:21 - 2019-04-13 09:21 - 000003150 _____ C:\WINDOWS\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-04-13 09:06 - 2019-04-24 18:26 - 000000077 _____ C:\WINDOWS\system32\Drivers\aswSP.sys.sum

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-05-12 11:01 - 2015-02-02 23:14 - 000000000 ___RD C:\Users\user\OneDrive
2019-05-12 00:34 - 2015-01-26 20:03 - 000000000 ____D C:\Users\user\AppData\Roaming\ClassicShell
2019-05-11 23:58 - 2016-10-02 20:58 - 000000982 _____ C:\WINDOWS\Tasks\Yahoo! Powered canel.job
2019-05-08 19:45 - 2015-01-26 19:51 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3376397031-1901727109-3312997615-1001
2019-05-08 18:48 - 2017-09-11 18:26 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-05-06 18:29 - 2014-11-21 00:46 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-06 18:29 - 2014-11-21 00:03 - 000806842 _____ C:\WINDOWS\system32\perfh00C.dat
2019-05-06 18:29 - 2014-11-21 00:03 - 000156662 _____ C:\WINDOWS\system32\perfc00C.dat
2019-05-06 18:29 - 2013-12-21 14:30 - 000000000 ____D C:\Users\user\Documents\Vuze Downloads
2019-05-06 18:29 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-05-06 18:24 - 2017-07-25 20:12 - 000000000 ____D C:\Users\user\AppData\Roaming\Azureus
2019-05-05 22:57 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-05 22:56 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2019-05-03 18:38 - 2015-01-26 20:07 - 000002242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-29 20:12 - 2016-08-16 13:57 - 000000000 ____D C:\Users\user\Desktop\LOLA
2019-04-29 01:23 - 2015-12-03 19:53 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-04-29 01:23 - 2015-01-26 20:05 - 000003500 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-04-29 01:23 - 2015-01-26 20:05 - 000003372 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-04-24 18:26 - 2015-01-26 20:17 - 000476776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-04-24 18:26 - 2015-01-26 20:17 - 000385848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-04-24 18:25 - 2017-03-20 20:49 - 000003910 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-24 18:22 - 2019-02-22 00:05 - 000257832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-04-24 18:22 - 2019-01-19 10:38 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-04-24 18:22 - 2018-10-23 18:05 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-04-24 18:22 - 2018-01-15 15:39 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-04-24 18:22 - 2015-01-26 20:17 - 001031000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-04-24 18:22 - 2015-01-26 20:17 - 000220640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-04-24 18:22 - 2015-01-26 20:17 - 000166848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-04-24 18:22 - 2015-01-26 20:17 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-04-24 18:22 - 2015-01-26 20:17 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-04-24 18:21 - 2019-01-19 10:38 - 000320624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-04-24 18:21 - 2019-01-19 10:38 - 000254128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-04-24 18:21 - 2019-01-19 10:38 - 000196000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-04-24 18:21 - 2019-01-19 10:38 - 000057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-04-23 13:43 - 2013-08-22 16:44 - 000499768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-04-22 16:38 - 2013-12-17 18:18 - 000000000 ____D C:\Users\user\Desktop\Mika
2019-04-22 13:28 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-04-22 13:25 - 2013-08-22 15:25 - 000000167 _____ C:\WINDOWS\win.ini
2019-04-22 13:10 - 2016-10-23 21:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-04-21 11:19 - 2013-08-22 17:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-21 11:15 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Common Files\System
2019-04-17 18:29 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache
2019-04-15 20:43 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2019-04-15 20:41 - 2017-09-11 18:32 - 000000000 ___RD C:\Users\user\Dropbox
2019-04-15 20:31 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-04-15 19:37 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-15 19:37 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-13 09:21 - 2018-04-04 10:36 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-04-12 00:08 - 2015-01-26 20:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-12 00:04 - 2015-01-26 20:45 - 131129288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers =======

2017-06-18 13:30 - 2017-06-18 13:30 - 000024382 _____ () C:\Program Files (x86)\uninstal.log
2018-01-02 16:58 - 2018-01-03 16:58 - 000000068 _____ () C:\Users\user\AppData\Local\BjXFnbPxlZ
2015-10-25 15:13 - 2015-10-25 15:13 - 000353118 _____ () C:\Users\user\AppData\Local\SquareClock.Production_HBMV1Icon.ico
2017-07-02 15:01 - 2017-07-02 15:01 - 000007406 _____ () C:\Users\user\AppData\Local\SquareClock.Production_Home_ConforamaIcon.ico
2016-10-02 21:00 - 2016-10-02 21:03 - 000000174 _____ () C:\Users\user\AppData\Local\uts.ini
2016-12-07 20:18 - 2016-12-07 20:18 - 000000000 _____ () C:\Users\user\AppData\Local\{D179F560-F5B5-4FB6-9C88-CBF508CE0EDC}

==================== SigCheck ===============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2019-05-01 17:19
==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité