Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:31-10-2015 Exécuté par Bertrand (administrateur) sur BERTRAND-PC (01-11-2015 17:31:33) Exécuté depuis C:\Users\Bertrand\Desktop Profils chargés: Bertrand (Profils disponibles: Bertrand) Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France) Internet Explorer Version 10 (Navigateur par défaut: "C:\Program Files\Opera\Opera.exe" "%1") Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\AsLdrSrv.exe () C:\Program Files\ATKGFNEX\GFNEXSrv.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ATK) C:\Program Files\ASUS\Splendid\ACMON.exe (ASUSTeK) C:\Windows\System32\ACEngSvr.exe (ASUS) C:\Program Files\ASUS\Net4Switch\Net4Switch.exe () C:\Program Files\ASUS\ASUS Live Update\ALU.exe () C:\Program Files\ASUS\Wireless Console 3\wcourier.exe () C:\Program Files\PenWes\PenWes.exe (ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe (ASUS) C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe (VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (Google Inc.) C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe (AlcorMicro Co., Ltd.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS Data Security Manager\ADSMTray.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Bouygues Telecom) C:\ProgramData\media center Bouygues Telecom\MediaServer.exe () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe () C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe (Oracle Corporation) C:\OraHome_1\oracledq\Common Files\oracledp\inetd\2\inetd.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\WDC.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1474560 2009-09-11] (VIA) HKLM\...\Run: [HControlUser] => C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [497024 2009-07-30] (ELAN Microelectronic Corp.) HKLM\...\Run: [ATKOSD2] => C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [6859392 2009-08-17] (ASUS) HKLM\...\Run: [ATKMEDIA] => C:\Program Files\ASUS\ATK Media\DMedia.exe [170624 2009-08-19] (ASUS) HKLM\...\Run: [AmIcoSinglun] => C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [233472 2009-09-01] (AlcorMicro Co., Ltd.) HKLM\...\Run: [ADSMTray] => C:\Program Files\ASUS\ASUS Data Security Manager\ADSMTray.exe [272952 2009-06-24] (ASUSTek Computer Inc.) HKLM\...\Run: [] => [X] HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [782520 2015-10-10] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66320 2015-09-21] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\Run: [BitTorrent] => C:\Users\Bertrand\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-09] (BitTorrent Inc.) HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\Run: [Polar FlowSync] => [X] HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\Run: [Google Update] => C:\Users\Bertrand\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc.) HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\Run: [AirDroid 3] => C:\Program Files\AirDroid\AirDroid.exe /start HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\MountPoints2: {49e44c65-ede3-11e0-a018-0026186e19ec} - G:\SETUP.EXE HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\MountPoints2: {cc321a84-5a23-11e1-a2ce-0026186e19ec} - G:\setup.exe HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\MountPoints2: {ed99bfac-2865-11e3-9e3b-0026186e19ec} - G:\HTC_Sync_Manager_PC.exe HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries) HKU\S-1-5-18\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000 Lsa: [Notification Packages] scecli C:\Program Files\ASUS\ASUS Data Security Manager\ASPWDFLT ShellIconOverlayIdentifiers: [ADSMOverlayIcon] -> {A825576B-0042-4F0F-8FB0-93CE0F054E69} => C:\Program Files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll [2007-06-15] () ShellIconOverlayIdentifiers: [ADSMOverlayIcon1] -> {A8D448F4-0431-45AC-9F5E-E1B434AB2249} => C:\Program Files\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll [2007-06-01] () ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{7FF843BF-BB98-409D-B1B8-61A0F4E040D5}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{AB285B9F-A3D0-47E8-9BD0-6B48FE8DE670}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{D4FF77D8-2B84-40D6-85BE-6BE767DA2B7C}: [NameServer] 178.33.41.181,88.191.223.122 Tcpip\..\Interfaces\{D4FF77D8-2B84-40D6-85BE-6BE767DA2B7C}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKU\S-1-5-21-3129516268-2821103674-558665774-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/?pc=UP21&ocid=UP21DHP&dt=021113 HKU\S-1-5-21-3129516268-2821103674-558665774-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3129516268-2821103674-558665774-1000 -> DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2012-08-16] (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-08-16] (Oracle Corporation) BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.) DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} hxxp://www.monvisiocam.com/tchat/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe DPF: {62D90588-609E-4208-A260-A6CEC45BB92C} hxxp://www.monvisiocam.com/tchatpro/2.0.18/CFWebU.exe DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation) Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll Pas de fichier Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll Pas de fichier Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\Bertrand\AppData\Roaming\Mozilla\Firefox\Profiles\ucbs69qi.default FF SearchEngineOrder.3: Bing FF Homepage: google.fr FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP21DF&PC=UP21&dt=021113&q= FF NetworkProxy: "autoconfig_url", "http://univ-lille1.fr/autoproxy/lille1.pac" FF NetworkProxy: "http", "proxy.univ-lille1.fr" FF NetworkProxy: "http_port", 3128 FF NetworkProxy: "type", 4 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-22] () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-05-06] () FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin: @java.com/DTPlugin,version=10.6.2 -> C:\Windows\system32\npDeployJava1.dll [2012-08-16] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.6.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2012-08-16] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-21] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-21] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3129516268-2821103674-558665774-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Bertrand\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited) FF Plugin HKU\S-1-5-21-3129516268-2821103674-558665774-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Bertrand\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google) FF Plugin HKU\S-1-5-21-3129516268-2821103674-558665774-1000: @talk.google.com/O1DPlugin -> C:\Users\Bertrand\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google) FF Plugin HKU\S-1-5-21-3129516268-2821103674-558665774-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Bertrand\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-22] (Google Inc.) FF Plugin HKU\S-1-5-21-3129516268-2821103674-558665774-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Bertrand\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-22] (Google Inc.) FF Plugin HKU\S-1-5-21-3129516268-2821103674-558665774-1000: SkypePlugin -> C:\Users\Bertrand\AppData\Local\SkypePlugin\7.9.0.56\npGatewayNpapi.dll [2015-10-22] (Skype Technologies S.A.) FF user.js: detected! => C:\Users\Bertrand\AppData\Roaming\Mozilla\Firefox\Profiles\ucbs69qi.default\user.js [2012-06-12] FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-05-31] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-05-31] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-05-31] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-05-31] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-05-31] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\Bertrand\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Bertrand\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google) FF SearchPlugin: C:\Users\Bertrand\AppData\Roaming\Mozilla\Firefox\Profiles\ucbs69qi.default\searchplugins\bingp.xml [2013-02-12] FF Extension: Avira Browser Safety - C:\Users\Bertrand\AppData\Roaming\Mozilla\Firefox\Profiles\ucbs69qi.default\Extensions\abs@avira.com [2015-10-23] [non signé] FF Extension: Firebug - C:\Users\Bertrand\AppData\Roaming\Mozilla\Firefox\Profiles\ucbs69qi.default\Extensions\firebug@software.joehewitt.com.xpi [2015-10-27] FF Extension: iGraal - C:\Users\Bertrand\AppData\Roaming\Mozilla\Firefox\Profiles\ucbs69qi.default\Extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi [2015-10-10] [non signé] FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-05-24] [non signé] FF HKU\S-1-5-21-3129516268-2821103674-558665774-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2014-08-20] Chrome: ======= CHR HomePage: Default -> hxxp://fr.msn.com/?pc=UP21&ocid=UP21DHP&dt=021113 CHR StartupUrls: Default -> "hxxp://fr.msn.com/?pc=UP21&ocid=UP21DHP&dt=021113","hxxp://www.google.fr/" CHR Plugin: (Native Client) - C:\Users\Bertrand\AppData\Local\Google\Chrome\Application\46.0.2490.80\ppGoogleNaClPluginChrome.dll => Pas de fichier CHR Plugin: (Chrome PDF Viewer) - C:\Users\Bertrand\AppData\Local\Google\Chrome\Application\46.0.2490.80\pdf.dll => Pas de fichier CHR Plugin: (Shockwave Flash) - C:\Users\Bertrand\AppData\Local\Google\Chrome\Application\46.0.2490.80\gcswf32.dll => Pas de fichier CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll => Pas de fichier CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Pas de fichier CHR Plugin: (Java Deployment Toolkit 6.0.260.3) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.) CHR Plugin: (Java(TM) Platform SE 6 U26) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll => Pas de fichier CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll => Pas de fichier CHR Plugin: (Google Talk Plugin) - C:\Users\Bertrand\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\Bertrand\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll => Pas de fichier CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () CHR Plugin: (Google Update) - C:\Users\Bertrand\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll => Pas de fichier CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Pas de fichier CHR Profile: C:\Users\Bertrand\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (iGraal) - C:\Users\Bertrand\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2015-10-10] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Bertrand\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-07] CHR Extension: (Appel Skype) - C:\Users\Bertrand\AppData\Local\Google\Chrome\User Data\Default\Extensions\poghlonenmjdkfghdpfomojhhfggildk [2015-10-29] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx StartMenuInternet: Google Chrome.5JI2QLKKJ46YCX45IYCW5KBZLQ - C:\Users\Bertrand\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [Fichier non signé] S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [932912 2015-10-10] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [461672 2015-10-10] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [461672 2015-10-10] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1147720 2015-10-22] (Avira Operations GmbH & Co. KG) R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-15] (ASUS) R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] () [Fichier non signé] R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [240360 2015-09-21] (Avira Operations GmbH & Co. KG) S2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [762272 2015-09-11] (Garmin Ltd. or its subsidiaries) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 media center Bouygues Telecom; C:\ProgramData\media center Bouygues Telecom\MediaServer.exe [4177408 2013-07-04] (Bouygues Telecom) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [Fichier non signé] R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [80896 2011-03-31] () [Fichier non signé] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [Fichier non signé] R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] () R2 TS inetd; C:\OraHome_1\oracledq\Common Files\oracledp\inetd\2\inetd.exe [122880 2008-06-30] (Oracle Corporation) [Fichier non signé] S2 TSS 11.5 - Scheduler; C:\OraHome_1\oracledq\metabase_server\bin\scheduler.exe [1236282 2008-11-10] (Oracle Corporation) [Fichier non signé] S3 wampapache; c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe [18432 2012-05-13] (Apache Software Foundation) [Fichier non signé] S3 wampmysqld; c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe [8177664 2012-04-19] () [Fichier non signé] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [27136 2009-08-21] (Alcor Micro, Corp.) R0 AsDsm; C:\Windows\system32\Drivers\AsDsm.sys [30264 2011-03-13] (ASUSTek Computer Inc) R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108448 2015-10-10] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136728 2015-08-26] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-07-19] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [55912 2015-10-10] (Avira Operations GmbH & Co. KG) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-06-15] (DT Soft Ltd) R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [87040 2009-07-29] (ELAN Microelectronic Corp.) R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [20936 2007-08-03] () R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( ) R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [48640 2009-08-23] (Atheros Communications, Inc.) R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2009-06-18] (Windows (R) Win 7 DDK provider) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation) R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [14392 2009-05-13] (ASUS) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1766592 2009-06-05] () R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [31848 2015-07-19] (Avira Operations GmbH & Co. KG) S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2012-12-13] (Apple, Inc.) [Fichier non signé] R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1066496 2009-07-09] (VIA Technologies, Inc.) S1 ASPI32; pas de ImagePath S3 ipswuio; System32\DRIVERS\ipswuio.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-11-01 17:31 - 2015-11-01 17:32 - 00024974 _____ C:\Users\Bertrand\Desktop\FRST.txt 2015-11-01 17:31 - 2015-11-01 17:31 - 01701888 _____ (Farbar) C:\Users\Bertrand\Desktop\FRST.exe 2015-11-01 17:31 - 2015-11-01 17:31 - 00000000 ____D C:\FRST 2015-10-29 15:06 - 2015-10-29 15:10 - 00000000 ____D C:\Users\Bertrand\AppData\Local\SkypePlugin 2015-10-29 15:06 - 2015-10-29 15:06 - 13393920 _____ C:\Users\Bertrand\Downloads\SkypeWebPlugin.msi 2015-10-27 10:34 - 2015-10-27 10:43 - 00030787 _____ C:\Users\Bertrand\Desktop\Transformation Scorecast(1).xlsx 2015-10-27 10:31 - 2015-10-27 10:31 - 00032869 _____ C:\Users\Bertrand\Desktop\Transformation Scorecast.xlsx 2015-10-27 10:30 - 2015-10-27 10:42 - 02267648 _____ C:\Users\Bertrand\Desktop\Pronos Synergy 2016.xls 2015-10-26 14:25 - 2006-06-28 01:45 - 00047890 _____ C:\Users\Bertrand\Desktop\Red Hot Chili Peppers - Californication (2).gp4 2015-10-26 14:24 - 2015-10-26 14:24 - 00003795 _____ C:\Users\Bertrand\Downloads\Red Hot Chili Peppers - Californication (2).zip 2015-10-22 23:08 - 2015-10-23 09:04 - 00000000 ____D C:\Program Files\Mozilla Firefox 2015-10-22 12:33 - 2015-10-22 12:33 - 00000000 ____D C:\Users\Bertrand\AppData\Local\CEF 2015-10-22 12:31 - 2015-11-01 12:38 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2015-10-22 12:31 - 2015-10-22 12:31 - 00001984 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2015-10-22 10:54 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-10-22 10:54 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-10-22 10:54 - 2015-09-29 04:02 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-10-22 10:54 - 2015-09-29 03:59 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-10-22 10:54 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-10-22 10:54 - 2015-09-29 03:59 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-10-22 10:54 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-10-22 10:54 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-10-22 10:54 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-10-22 10:54 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-10-22 10:54 - 2015-09-29 03:58 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-10-22 10:54 - 2015-09-29 03:58 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-10-22 10:54 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-10-22 10:54 - 2015-09-29 03:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-10-22 10:54 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-10-22 10:54 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-10-22 10:54 - 2015-09-29 03:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-10-22 10:54 - 2015-09-29 03:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-10-22 10:54 - 2015-09-29 03:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-10-22 10:54 - 2015-09-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-10-22 10:54 - 2015-09-29 02:43 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-10-22 10:54 - 2015-09-29 02:43 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-10-22 10:54 - 2015-09-29 02:43 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-10-22 10:54 - 2015-09-15 18:42 - 00139096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-10-22 10:54 - 2015-09-15 18:42 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-10-22 10:54 - 2015-09-15 18:36 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-10-22 10:54 - 2015-09-15 18:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-10-22 10:54 - 2015-09-15 18:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-10-22 10:54 - 2015-09-15 18:36 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-10-22 10:54 - 2015-09-15 18:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-10-22 10:54 - 2015-09-15 18:36 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-10-22 10:54 - 2015-09-15 18:35 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-10-22 10:54 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-10-22 10:54 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2015-10-22 10:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2015-10-22 10:53 - 2015-10-01 18:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2015-10-22 10:53 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2015-10-22 10:53 - 2015-10-01 18:50 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2015-10-22 10:53 - 2015-10-01 18:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2015-10-22 10:53 - 2015-10-01 18:50 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2015-10-22 10:53 - 2015-10-01 17:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2015-10-22 10:53 - 2015-09-25 18:59 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-10-22 10:53 - 2015-09-25 18:59 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-10-22 10:53 - 2015-09-25 18:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-10-22 10:53 - 2015-09-25 18:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-10-22 10:53 - 2015-09-25 18:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-10-22 10:53 - 2015-09-25 18:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-10-22 10:53 - 2015-09-25 18:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-10-22 10:53 - 2015-09-25 18:58 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-10-22 10:53 - 2015-09-25 18:58 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-10-22 10:53 - 2015-09-25 18:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-10-22 10:53 - 2015-09-25 18:58 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-10-22 10:53 - 2015-09-17 21:45 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-10-22 10:53 - 2015-09-17 21:44 - 14290944 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-10-22 10:53 - 2015-09-17 21:44 - 01763328 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-10-22 10:53 - 2015-09-17 21:44 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-10-22 10:53 - 2015-09-17 21:44 - 00525824 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-10-22 10:53 - 2015-09-17 21:44 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-10-22 10:53 - 2015-09-17 21:44 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-10-22 10:53 - 2015-09-17 21:44 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 13775360 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 02866176 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 02056704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-10-22 10:53 - 2015-09-17 21:43 - 00715264 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-10-22 10:53 - 2015-09-17 21:43 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-10-22 10:53 - 2015-09-17 19:58 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-10-22 10:53 - 2015-09-17 19:27 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-10-22 10:53 - 2015-09-17 19:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2015-10-22 10:52 - 2015-09-18 18:47 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2015-10-22 10:52 - 2015-09-18 18:44 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-10-22 10:52 - 2015-09-18 18:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-10-22 10:52 - 2015-09-18 18:44 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-10-22 10:52 - 2015-09-18 18:44 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-10-22 10:52 - 2015-09-18 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-10-22 10:52 - 2015-09-18 18:35 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-10-10 00:45 - 2015-09-02 03:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-10-10 00:45 - 2015-09-02 03:48 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-10-10 00:45 - 2015-09-02 03:48 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-10-10 00:45 - 2015-09-02 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-10-10 00:45 - 2015-09-02 02:36 - 02384896 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-10-10 00:45 - 2015-09-02 02:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-10-10 00:45 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-10-10 00:45 - 2015-08-27 18:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-10-10 00:45 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2015-10-10 00:45 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-10-10 00:45 - 2015-08-05 18:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2015-10-10 00:45 - 2015-08-05 18:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-10-10 00:45 - 2015-08-05 18:40 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-10-10 00:45 - 2015-07-22 18:53 - 00937984 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-10-10 00:45 - 2015-07-22 18:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-10-10 00:45 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-10-10 00:45 - 2015-07-22 17:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-10-10 00:44 - 2015-07-15 03:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2015-10-10 00:44 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2015-10-10 00:44 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2015-10-10 00:44 - 2015-06-25 10:48 - 00105408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-10-10 00:44 - 2015-06-25 10:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-10-10 00:44 - 2015-06-25 10:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-11-01 17:24 - 2012-06-15 18:04 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3129516268-2821103674-558665774-1000UA.job 2015-11-01 17:17 - 2013-02-23 18:28 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-01 17:15 - 2011-03-13 21:12 - 00000000 ____D C:\Users\Bertrand\AppData\Roaming\BitTorrent 2015-11-01 17:13 - 2009-07-14 05:34 - 00013792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-11-01 17:13 - 2009-07-14 05:34 - 00013792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-11-01 17:11 - 2012-02-28 19:00 - 01420014 _____ C:\Windows\WindowsUpdate.log 2015-11-01 17:05 - 2014-11-17 19:48 - 00010460 _____ C:\Windows\setupact.log 2015-11-01 17:05 - 2013-02-23 18:28 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-01 17:05 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-11-01 16:09 - 2012-07-17 20:08 - 00000940 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3129516268-2821103674-558665774-1000UA.job 2015-11-01 16:09 - 2012-04-21 13:37 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-11-01 13:24 - 2012-06-15 18:04 - 00001038 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3129516268-2821103674-558665774-1000Core.job 2015-11-01 12:31 - 2011-03-13 16:27 - 01677530 _____ C:\Windows\system32\PerfStringBackup.INI 2015-11-01 12:26 - 2014-01-29 17:35 - 00000000 ____D C:\ProgramData\Package Cache 2015-11-01 12:24 - 2014-11-30 13:32 - 00288226 _____ C:\Windows\PFRO.log 2015-11-01 12:21 - 2012-07-17 20:08 - 00000918 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3129516268-2821103674-558665774-1000Core.job 2015-10-31 19:18 - 2013-02-23 14:57 - 00000000 ____D C:\Users\Bertrand\AppData\Roaming\vlc 2015-10-29 15:11 - 2013-02-11 22:52 - 00000000 ____D C:\Users\Bertrand\AppData\Roaming\Skype 2015-10-28 08:18 - 2012-10-17 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-10-27 15:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\AppCompat 2015-10-27 14:21 - 2014-07-28 21:11 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-10-27 14:20 - 2014-07-28 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-10-27 14:20 - 2014-07-28 21:10 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-10-27 14:20 - 2014-03-13 20:24 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-10-25 20:55 - 2012-04-26 20:15 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2015-10-23 14:15 - 2011-04-24 22:41 - 00045056 _____ C:\Windows\system32\acovcnt.exe 2015-10-23 03:18 - 2014-04-12 09:26 - 00000000 ____D C:\Windows\rescache 2015-10-23 02:38 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\fr-FR 2015-10-23 02:21 - 2011-10-10 18:49 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-10-23 02:19 - 2013-08-13 21:17 - 00000000 ____D C:\Windows\system32\MRT 2015-10-23 02:08 - 2011-03-14 12:25 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-10-23 02:02 - 2015-04-18 15:21 - 00000000 ____D C:\Windows\system32\appraiser 2015-10-23 02:02 - 2014-05-07 08:45 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-10-22 12:40 - 2013-11-25 21:26 - 00000000 ____D C:\Program Files\PDF Architect 2015-10-22 12:33 - 2011-03-14 19:10 - 00000000 ____D C:\Users\Bertrand\AppData\Local\Adobe 2015-10-22 12:31 - 2014-10-18 18:16 - 00000000 ____D C:\Program Files\Common Files\Adobe 2015-10-22 12:31 - 2011-03-14 16:21 - 00000000 ____D C:\Program Files\Adobe 2015-10-22 12:24 - 2011-03-14 16:21 - 00000000 ____D C:\ProgramData\Adobe 2015-10-22 10:55 - 2012-04-21 13:36 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-10-22 10:55 - 2011-05-25 09:22 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-10-22 10:37 - 2012-08-16 20:47 - 00000000 ____D C:\Program Files\FileHippo.com 2015-10-22 10:31 - 2014-12-13 14:02 - 00000000 ____D C:\Users\Bertrand\Documents\AirDroid 2015-10-10 02:46 - 2009-07-14 05:33 - 00433824 _____ C:\Windows\system32\FNTCACHE.DAT 2015-10-10 02:43 - 2015-04-10 07:15 - 00000000 ___SD C:\Windows\system32\GWX 2015-10-10 02:43 - 2009-07-14 10:01 - 00000000 ____D C:\Program Files\Windows Journal 2015-10-10 02:26 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Microsoft.NET 2015-10-10 00:02 - 2013-05-07 20:22 - 00055912 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2015-10-10 00:02 - 2012-10-17 20:38 - 00108448 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-10-05 09:50 - 2014-07-28 21:10 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-10-05 09:50 - 2014-07-28 21:10 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-10-05 09:50 - 2012-01-15 21:46 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys ==================== Fichiers à la racine de certains dossiers ======= 2011-03-13 17:54 - 2009-09-10 09:43 - 0012800 _____ () C:\Program Files\P4G 2007-06-12 09:34 - 2007-06-12 09:34 - 0035822 _____ () C:\Program Files\Common Files\ASPG_icon.ico 2008-05-22 08:35 - 2008-05-22 08:35 - 0051962 _____ () C:\Program Files\Common Files\banner.jpg 2009-04-08 10:31 - 2009-04-08 10:31 - 0106496 _____ () C:\Program Files\Common Files\CPInstallAction.dll 2008-08-11 21:45 - 2008-08-11 21:45 - 0155648 _____ (ASUS) C:\Program Files\Common Files\MSIactionall.dll 2011-07-04 11:59 - 2013-08-20 16:47 - 0014336 _____ () C:\Users\Bertrand\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2011-05-24 20:01 - 2011-09-03 11:41 - 0001316 _____ () C:\ProgramData\hpzinstall.log Fichiers à déplacer ou supprimer: ==================== C:\Users\Bertrand\avira_free_antivirus_en.exe Certains fichiers dans TEMP: ==================== C:\Users\Bertrand\AppData\Local\Temp\avgnt.exe C:\Users\Bertrand\AppData\Local\Temp\GUR499D.exe C:\Users\Bertrand\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2015-10-31 14:51 ==================== Fin de FRST.txt ============================