Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30.01.2019
Exécuté par DUDU (administrateur) sur PC-DE-DUDU (31-01-2019 19:49:18)
Exécuté depuis C:\Users\DUDU\Downloads
Profils chargés: DUDU (Profils disponibles: DUDU)
Platform: Windows Vista (TM) Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Lavasoft Limited) C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
() C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick.exe
() C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick-connector.exe
() C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\Program Files (x86)\Tor\tor.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(GFI Software) C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
(Farbar) C:\Users\DUDU\Downloads\FRST64 (2).exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-10-24] (AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd)
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {7083c17d-4cf9-11e1-892f-00248c212b84} - F:\DVAP.exe
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {9eb50319-88d3-11df-b644-00248c212b84} - G:\DPFMate.exe
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {a7f7595f-5509-11e2-8f70-00248c212b84} - G:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {c6fefb27-0c0e-11e7-963b-00248c212b84} - G:\Setup.exe
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {c8122702-7b90-11df-8453-00248c212b84} - G:\Toshiba\more4you.exe
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {d2f3f7b7-3ff9-11e7-8bfa-806e6f6e6963} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {f6d216c0-881e-11df-9cce-00248c212b84} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\launcher.exe
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\MountPoints2: {f799ae92-3f6b-11e1-8bb5-00248c212b84} - F:\APPInst.exe
HKLM\...\Drivers32-x32: [msacm.l3codecp] => C:\Windows\SysWOW64\l3codecp.acm [220672 2008-01-21] (Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\...\Drivers32-x32: [vidc.DIVX] => C:\Windows\SysWOW64\DivX.dll [685056 2009-05-01] (DivX, Inc.)
HKLM\...\Drivers32-x32: [vidc.yv12] => C:\Windows\SysWOW64\DivX.dll [685056 2009-05-01] (DivX, Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\49.0.79.76\Installer\chrmstp.exe [2018-10-27] (AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
IFEO\mcsettings.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\pcdr5cuiw32.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\pdfeditor.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\presentationhost.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\settingseditor.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\transfertbasecarto.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\vsbatch2pdf.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\vspdf2word.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
IFEO\vspdfprsrv.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{14C8AC34-7627-4BD3-B061-9A6F2917C0D4}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{7AC1BEB0-DFEA-4896-83A4-B043F335347C}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{D1E87935-149B-4FD2-A80D-8E5C058D57AC}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2260066265-393213169-1671809853-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM -> {0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} URL =
SearchScopes: HKLM -> {8FA8CF48-84DE-48E4-BC86-2CE033C98BA7} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKLM -> {E912A64F-8AA9-4F39-BD13-FCA04E1FDB8E} URL = hxxp://fr.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913932
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-12-05] (Google Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-14] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-12-05] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-14] (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Pas de fichier
Toolbar: HKLM - Pas de nom - !{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - Pas de fichier
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-12-05] (Google Inc.)
Toolbar: HKLM-x32 - Pas de nom - !{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - Pas de fichier
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-12-05] (Google Inc.)
Toolbar: HKU\S-1-5-21-2260066265-393213169-1671809853-1000 -> Pas de nom - {472734EA-242A-422B-ADF8-83D1E48CC825} - Pas de fichier
Toolbar: HKU\S-1-5-21-2260066265-393213169-1671809853-1000 -> Pas de nom - {7CD364C4-812B-4CB1-A30A-AAE798E5E59E} - Pas de fichier
Toolbar: HKU\S-1-5-21-2260066265-393213169-1671809853-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-12-05] (Google Inc.)
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2014-04-01] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2014-04-01] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2014-04-01] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2014-04-01] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\DUDU\AppData\Roaming\Mozilla\Firefox\Profiles\5pqug0ww.default-1495786349536 [2019-01-31]
FF user.js: detected! => C:\Users\DUDU\AppData\Roaming\Mozilla\Firefox\Profiles\5pqug0ww.default-1495786349536\user.js [2018-04-26]
FF Homepage: Mozilla\Firefox\Profiles\5pqug0ww.default-1495786349536 -> about:home
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\DUDU\AppData\Roaming\Mozilla\Firefox\Profiles\5pqug0ww.default-1495786349536\Extensions\sp@avast.com.xpi [2018-10-09]
FF Extension: (Avast Online Security) - C:\Users\DUDU\AppData\Roaming\Mozilla\Firefox\Profiles\5pqug0ww.default-1495786349536\Extensions\wrc@avast.com.xpi [2018-10-24]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-11-04] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension
FF Extension: (PDF Architect 2 Creator) - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2015-01-24] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: (RealDownloader) - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-06-16] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKU\S-1-5-21-2260066265-393213169-1671809853-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [Legacy] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-06] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-06] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [Pas de fichier]
FF Plugin-x32: @Diginext.fr/VirtualGeoGP -> C:\Program Files (x86)\VirtualGeo3-GP\WebPlugin\Win32\npQtAPI3DPlugin.dll [2014-03-21] (DIGINEXT)
FF Plugin-x32: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Player\npDivxPlayerPlugin.dll [2009-05-18] (DivX, Inc)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-14] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-14] (Oracle Corporation)
FF Plugin-x32: @ma-config.com/HardwareDetection -> C:\Program Files (x86)\ma-config.com\nphardwaredetection.dll [2011-11-14] (Cybelsoft)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll [2012-04-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2015-06-16] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-06-16] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-21] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH)
FF Plugin HKU\S-1-5-21-2260066265-393213169-1671809853-1000: @tools.google.com/Google Update;version=3 -> C:\Users\DUDU\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-2260066265-393213169-1671809853-1000: @tools.google.com/Google Update;version=9 -> C:\Users\DUDU\AppData\Local\Google\Update\1.3.28.1\npGoogleUpdate3.dll [Pas de fichier]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2018-02-05] (SUPERAntiSpyware.com)
R2 Ad-Aware Service; C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe [1236336 2013-03-18] (Lavasoft Limited)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-10-24] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-27] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [325024 2018-10-24] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-27] (AVAST Software)
S3 ExpressInvoiceService; C:\Program Files (x86)\NCH Software\ExpressInvoice\expressinvoice.exe [2645216 2017-10-14] (NCH Software)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129992 2008-02-03] (EasyBits Sofware AS) [Fichier non signé]
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [Fichier non signé]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [Fichier non signé]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [225280 2007-02-28] (Hewlett-Packard Co.) [Fichier non signé]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-02-28] (Hewlett-Packard Co.) [Fichier non signé]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 InstallClick; C:\Program Files (x86)\RIFT Technologies\InstallClick Connector\installclick.exe [149840 2012-04-26] ()
S4 maconfservice; C:\Program Files (x86)\ma-config.com\maconfservice.exe [311928 2011-11-14] (CybelSoft)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 NMSAccessU; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [71096 2009-11-12] ()
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
R2 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SBAMSvc; C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [3677000 2012-09-20] (GFI Software)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [2743310 2011-12-25] () [Fichier non signé]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2028864 2011-12-13] (TuneUp Software)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.227\WsAppService.exe [492768 2017-06-21] (Wondershare) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (Wondershare)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [201408 2018-10-24] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [230512 2018-10-24] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201928 2018-10-24] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346760 2018-10-24] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59664 2018-10-24] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [185240 2018-10-24] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [47064 2018-10-24] (AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42456 2018-10-24] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163376 2018-10-24] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr.sys [79800 2018-10-24] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88112 2018-10-24] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1028840 2018-10-24] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467904 2018-10-24] (AVAST Software)
R3 aswStmXP; C:\Windows\System32\drivers\aswStmXP.sys [188312 2018-10-24] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381144 2018-10-24] (AVAST Software)
S3 driverhardwarev2x64; C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys [16640 2011-07-21] (CybelSoft)
S3 fbxusb; C:\Windows\System32\DRIVERS\fbxusb64.sys [39320 2007-08-27] (FreeBox SA)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-06-13] (GFI Software)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [269824 2006-04-13] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [48640 2009-02-26] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [33280 2006-04-13] (HP)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [190696 2018-11-05] (Malwarebytes)
S3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [44768 2019-01-15] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2019-01-15] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [89720 2018-10-23] (Malwarebytes)
R0 nvrd64; C:\Windows\System32\drivers\nvrd64.sys [166944 2008-07-21] (NVIDIA Corporation)
S3 PCD5SRVC{8AAF211B-043E02A9-05040000}; C:\Program Files\PC-Doctor for Windows\PCD5SRVC_x64.pkms [25888 2008-11-05] (PC-Doctor, Inc.) [Fichier non signé]
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-04-16] (Research In Motion Limited)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2009-11-12] () [Fichier non signé]
S3 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [7168 2009-11-12] () [Fichier non signé]
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [11856 2010-08-19] (TuneUp Software)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [50688 2010-04-19] (Apple, Inc.) [Fichier non signé]
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2008-11-28] (CyberLink Corp.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 JLTECH0227; System32\Drivers\jl2005c.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-01-31 19:48 - 2019-01-31 19:48 - 002428928 _____ (Farbar) C:\Users\DUDU\Downloads\FRST64 (2).exe
2019-01-31 19:44 - 2019-01-31 19:45 - 000053215 _____ C:\Users\DUDU\Downloads\Addition.txt
2019-01-31 19:42 - 2019-01-31 19:50 - 000027594 _____ C:\Users\DUDU\Downloads\FRST.txt
2019-01-31 19:42 - 2019-01-31 19:49 - 000000000 ____D C:\FRST
2019-01-31 19:41 - 2019-01-31 19:41 - 002428928 _____ (Farbar) C:\Users\DUDU\Downloads\FRST64 (1).exe
2019-01-31 19:41 - 2019-01-31 19:41 - 001788416 _____ (Farbar) C:\Users\DUDU\Downloads\FRST (1).exe
2019-01-31 19:40 - 2019-01-31 19:40 - 001788416 _____ (Farbar) C:\Users\DUDU\Downloads\FRST.exe
2019-01-31 19:38 - 2019-01-31 19:38 - 002428928 _____ (Farbar) C:\Users\DUDU\Downloads\FRST64.exe
2019-01-30 11:50 - 2019-01-30 11:50 - 007320272 _____ (Malwarebytes) C:\Users\DUDU\Downloads\adwcleaner_7.2.6.0.exe
2019-01-30 09:28 - 2019-01-30 09:28 - 000000000 ____D C:\Users\DUDU\AppData\Local\ZHP
2019-01-30 09:27 - 2019-01-30 09:27 - 003305856 _____ C:\Users\DUDU\Downloads\ZHPCleaner.exe
2019-01-15 18:22 - 2019-01-15 18:22 - 000000000 ____D C:\Users\DUDU\AppData\Local\Adobe
2019-01-10 18:35 - 2019-01-10 18:44 - 811888361 _____ C:\Users\DUDU\Downloads\wetransfer-83d66b.zip
2019-01-02 09:27 - 2019-01-02 09:27 - 000140014 _____ C:\Users\DUDU\Downloads\Releve_n_012_du_31_12_2018_1139080854_tDgNXxlP.pdf
2019-01-02 09:22 - 2019-01-02 09:22 - 000082048 _____ C:\Users\DUDU\Downloads\lettre_changement_de_RA_20160421_1093588045_0JmtFbsX.pdf
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-01-31 19:20 - 2009-02-11 16:35 - 000714758 _____ C:\Windows\system32\perfh00C.dat
2019-01-31 19:20 - 2009-02-11 16:35 - 000141878 _____ C:\Windows\system32\perfc00C.dat
2019-01-31 19:20 - 2006-11-02 14:33 - 000000000 ____D C:\Windows\inf
2019-01-31 19:20 - 2006-11-02 13:46 - 001593474 _____ C:\Windows\system32\PerfStringBackup.INI
2019-01-31 19:12 - 2010-05-20 20:46 - 000109640 _____ C:\ProgramData\nvModes.001
2019-01-31 19:12 - 2006-11-02 16:42 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-01-31 19:12 - 2006-11-02 16:22 - 000003744 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2019-01-31 19:12 - 2006-11-02 16:22 - 000003744 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2019-01-31 19:11 - 2006-11-02 16:42 - 000032588 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-01-31 18:54 - 2017-08-30 18:18 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2019-01-31 18:51 - 2017-05-29 17:02 - 000000000 ____D C:\Users\DUDU\AppData\LocalLow\Mozilla
2019-01-31 18:39 - 2018-10-04 17:53 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-01-31 18:39 - 2017-04-17 21:35 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-01-31 18:30 - 2010-05-20 20:02 - 000109640 _____ C:\ProgramData\nvModes.dat
2019-01-30 19:22 - 2009-05-11 18:46 - 000000000 ____D C:\Users\DUDU\AppData\Local\Paint.NET
2019-01-30 11:51 - 2017-12-14 22:23 - 000000000 ____D C:\ProgramData\BSD
2019-01-30 11:51 - 2014-04-24 20:52 - 000000000 ____D C:\AdwCleaner
2019-01-30 11:51 - 2014-03-18 22:01 - 000000000 ____D C:\Users\DUDU\AppData\LocalLow\IObit
2019-01-30 11:51 - 2014-03-18 22:01 - 000000000 ____D C:\ProgramData\IObit
2019-01-30 11:51 - 2014-03-18 22:00 - 000000000 ____D C:\Users\DUDU\AppData\Roaming\IObit
2019-01-30 11:37 - 2016-07-03 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\manuals
2019-01-30 11:37 - 2014-04-24 20:31 - 000000000 ____D C:\Users\DUDU\AppData\Roaming\ZHP
2019-01-30 10:31 - 2009-05-11 15:55 - 000000000 ____D C:\Users\DUDU\AppData\Local\Google
2019-01-30 10:20 - 2015-01-24 11:56 - 000000000 ____D C:\Users\DUDU\AppData\Roaming\Lavasoft
2019-01-30 10:20 - 2009-11-01 18:07 - 000000000 ____D C:\ProgramData\Lavasoft
2019-01-19 13:17 - 2015-09-29 17:46 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-01-15 18:19 - 2018-10-23 05:21 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-01-15 18:19 - 2018-10-23 05:21 - 000044768 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-01-10 11:52 - 2011-10-28 18:00 - 000000000 ____D C:\Users\DUDU\AppData\Local\CrashDumps
2019-01-10 11:45 - 2017-05-30 09:58 - 000002792 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-01-10 11:45 - 2015-07-16 06:03 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-10 11:45 - 2015-07-16 06:03 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-10 11:42 - 2017-12-06 17:39 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
==================== Fichiers à la racine de certains dossiers =======
2013-06-13 17:59 - 2013-06-13 17:59 - 000129536 _____ () C:\Users\Public\AlexaNSISPlugin.4872.dll
2017-11-17 20:04 - 2017-11-17 20:04 - 007649280 _____ () C:\Program Files (x86)\GUT1880.tmp
2010-01-02 16:01 - 2010-01-02 16:01 - 000000019 _____ () C:\Users\DUDU\AppData\Roaming\4e6ef303
2009-10-01 18:16 - 2010-01-02 16:14 - 000005609 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404684C.manifest
2009-10-01 18:16 - 2010-01-02 16:14 - 000000011 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404684O.manifest
2009-10-01 18:16 - 2010-01-02 16:14 - 000003025 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404684P.manifest
2009-10-01 18:16 - 2010-01-02 16:14 - 000000011 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404684S.manifest
2010-01-02 16:01 - 2010-01-02 16:14 - 000000344 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404724C.manifest
2010-01-02 16:01 - 2010-01-02 16:13 - 000000079 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404724O.manifest
2010-01-02 16:01 - 2010-01-02 16:14 - 000002089 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404724P.manifest
2010-01-02 16:01 - 2010-01-02 16:13 - 000000011 ___SH () C:\Users\DUDU\AppData\Roaming\9eeef404724S.manifest
2010-01-02 16:06 - 2010-01-02 16:06 - 000001372 _____ () C:\Users\DUDU\AppData\Roaming\9llLuT7.vbs
2014-09-01 09:18 - 2014-09-01 09:18 - 000002086 _____ () C:\Users\DUDU\AppData\Roaming\JAUTBY
2015-12-22 09:46 - 2015-12-22 09:54 - 000000115 _____ () C:\Users\DUDU\AppData\Roaming\LogFile.txt
2017-01-05 21:02 - 2017-01-05 21:02 - 000000292 _____ () C:\Users\DUDU\AppData\Roaming\mplex-log.log
2014-09-01 09:18 - 2014-09-01 09:18 - 000001248 _____ () C:\Users\DUDU\AppData\Roaming\OIELWDEM
2010-05-14 09:13 - 2010-05-14 09:13 - 000007859 _____ () C:\Users\DUDU\AppData\Roaming\pcouffin.cat
2010-05-14 09:13 - 2010-05-14 09:13 - 000001167 _____ () C:\Users\DUDU\AppData\Roaming\pcouffin.inf
2010-05-14 09:13 - 2010-05-14 09:13 - 000000055 _____ () C:\Users\DUDU\AppData\Roaming\pcouffin.log
2017-01-05 20:40 - 2017-01-05 21:02 - 000000395 _____ () C:\Users\DUDU\AppData\Roaming\PPTConverter.log
2010-01-02 16:09 - 2010-01-02 16:09 - 000001372 _____ () C:\Users\DUDU\AppData\Roaming\RjcRZozk9m6rk.vbs
2010-01-02 16:14 - 2010-01-02 16:14 - 000001372 _____ () C:\Users\DUDU\AppData\Roaming\t5pLBYh.vbs
2009-11-13 17:55 - 2009-11-13 17:55 - 000026311 _____ () C:\Users\DUDU\AppData\Roaming\UserTile.png
2014-03-10 20:20 - 2014-04-01 17:58 - 000000079 _____ () C:\Users\DUDU\AppData\Roaming\WB.CFG
2016-07-20 20:04 - 2017-01-12 19:40 - 000000398 _____ () C:\Users\DUDU\AppData\Roaming\wklnhst.dat
2010-01-02 16:01 - 2010-01-02 16:01 - 000001372 _____ () C:\Users\DUDU\AppData\Roaming\zAnwR.vbs
2017-04-13 17:59 - 2017-04-13 17:59 - 000000000 ____H () C:\Users\DUDU\AppData\Local\BIT9E90.tmp
2014-04-19 19:07 - 2018-08-21 21:29 - 000008268 _____ () C:\Users\DUDU\AppData\Local\d3d9caps.dat
2009-04-25 12:24 - 2017-01-05 21:02 - 000158720 _____ () C:\Users\DUDU\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-17 18:35 - 2018-09-17 18:35 - 000329994 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistMSI1831.txt
2011-11-01 14:07 - 2011-11-01 14:07 - 000336906 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistMSI1D0E.txt
2011-06-06 18:26 - 2011-06-06 18:26 - 000338960 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistMSI3760.txt
2013-07-04 18:20 - 2013-07-04 18:20 - 000318970 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistMSI597B.txt
2010-01-07 20:26 - 2010-01-07 20:26 - 000325462 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistMSI6466.txt
2010-01-07 20:26 - 2010-01-07 20:26 - 000348790 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistMSI6477.txt
2010-05-06 15:54 - 2010-05-06 15:54 - 000427310 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistMSI660F.txt
2018-09-17 18:35 - 2018-09-17 18:35 - 000011218 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI1831.txt
2011-11-01 14:07 - 2011-11-01 14:07 - 000014602 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI1D0E.txt
2011-06-06 18:26 - 2011-06-06 18:26 - 000016242 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI3760.txt
2015-02-06 20:13 - 2015-02-06 20:13 - 000014802 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI51B5.txt
2015-02-06 20:13 - 2015-02-06 20:13 - 000015094 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI51C9.txt
2013-07-04 18:20 - 2013-07-04 18:20 - 000011218 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI597B.txt
2010-01-07 20:26 - 2010-01-07 20:26 - 000011234 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI6466.txt
2010-01-07 20:26 - 2010-01-07 20:26 - 000011442 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI6477.txt
2010-05-06 15:54 - 2010-05-06 15:54 - 000011610 _____ () C:\Users\DUDU\AppData\Local\dd_vcredistUI660F.txt
2010-12-23 10:55 - 2010-12-23 10:55 - 000000036 _____ () C:\Users\DUDU\AppData\Local\housecall.guid.cache
2016-12-18 11:02 - 2018-11-21 04:53 - 000004096 ____H () C:\Users\DUDU\AppData\Local\keyfile3.drm
2013-06-17 19:32 - 2013-06-17 19:32 - 000000001 _____ () C:\Users\DUDU\AppData\Local\llftool.4.30.agreement
2014-04-09 18:38 - 2014-04-09 18:38 - 000002701 _____ () C:\Users\DUDU\AppData\Local\recently-used.xbel
2014-04-24 20:38 - 2014-04-24 20:38 - 000000840 _____ () C:\Users\DUDU\AppData\Local\ZHPFixReport.txt
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\dllhost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\dllhost.exe => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2019-01-31 19:22
==================== Fin de FRST.txt ============================