Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19-11-2017 Exécuté par Guillaume (Nouv.) (administrateur) sur GUILLAUME-HP (22-11-2017 16:36:44) Exécuté depuis C:\Users\Guillaume (Nouv.)\Desktop Profils chargés: Guillaume (Nouv.) (Profils disponibles: Guillaume (Nouv.) & guillaume) Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (HP) C:\Program Files (x86)\HP SimplePass\BioMonitor.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6463592 2012-02-13] (Realtek Semiconductor) HKLM\...\Run: [SetDefault] => C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-19] (Hewlett-Packard Development Company, L.P.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-11-20] (AVAST Software) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-02-14] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2012-01-30] (EasyBits Software AS) HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [Adobe ARM] => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.) HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1444880 2015-11-14] (Easybits) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-314043229-2679359975-2306955212-1007\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-27] (Disc Soft Ltd) HKU\S-1-5-21-314043229-2679359975-2306955212-1007\...\Run: [Chromium] => "c:\users\guillaume (nouv.)\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory=Default --restore-last-session HKU\S-1-5-21-314043229-2679359975-2306955212-1007\...\Policies\system: [DisableLockWorkstation] 0 HKU\S-1-5-21-314043229-2679359975-2306955212-1007\...\Policies\system: [DisableChangePassword] 0 HKU\S-1-5-21-314043229-2679359975-2306955212-1007\...\MountPoints2: {3aa5588f-c6f4-11e1-b7ac-806e6f6e6963} - E:\GO.exe HKU\S-1-5-21-314043229-2679359975-2306955212-1007\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [333824 2010-11-21] (Microsoft Corporation) ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2012-07-05] (EasyBits Software Corp.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\Parameters: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{218B2115-65C3-4806-9D4C-15DE83292047}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{8B0181B9-2F25-412F-B927-B77836021CA4}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{8B0181B9-2F25-412F-B927-B77836021CA4}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{C8611079-55DC-4FC1-B726-FDEFA66C484E}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{C8611079-55DC-4FC1-B726-FDEFA66C484E}: [DhcpNameServer] 8.8.8.8 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-314043229-2679359975-2306955212-1007\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/ SearchScopes: HKLM -> DefaultScope la valeur est absente SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = SearchScopes: HKLM -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF SearchScopes: HKLM -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=hxxp://www.ebay.fr/sch/i.html?_nkw={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=hxxp://www.ebay.fr/sch/i.html?_nkw={searchTerms} SearchScopes: HKU\S-1-5-21-314043229-2679359975-2306955212-1007 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKU\S-1-5-21-314043229-2679359975-2306955212-1007 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=CPNTDF SearchScopes: HKU\S-1-5-21-314043229-2679359975-2306955212-1007 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKU\S-1-5-21-314043229-2679359975-2306955212-1007 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=hxxp://www.ebay.fr/sch/i.html?_nkw={searchTerms} BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13] (Advanced Micro Devices) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-27] (Oracle Corporation) BHO: HP SimplePass Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass\x64\IEBHO.dll [2011-12-11] (HP) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-20] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-27] (Oracle Corporation) BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13] (Advanced Micro Devices) BHO-x32: HP SimplePass Browser Helper Object -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:\Program Files (x86)\HP SimplePass\IEBHO.DLL [2011-12-11] (HP) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-20] (AVAST Software) BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) Toolbar: HKLM - HP SimplePass Toolbar - {C98EE38D-21E4-4A50-907D-2B56FEC7013E} - C:\Program Files (x86)\HP SimplePass\x64\IEBHO.dll [2011-12-11] (HP) Toolbar: HKLM-x32 - HP SimplePass Toolbar - {C98EE38D-21E4-4A50-907D-2B56FEC7013E} - C:\Program Files (x86)\HP SimplePass\IEBHO.DLL [2011-12-11] (HP) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Pas de fichier Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-15] () FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-27] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-27] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-15] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2011-11-07] (Adobe Systems, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-07-21] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-08-03] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxps://www.google.fr/ CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Profile: C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default [2017-11-22] CHR Extension: (Google Traduction) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-11-17] CHR Extension: (Slides) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-18] CHR Extension: (Docs) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-18] CHR Extension: (Google Drive) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-04] CHR Extension: (YouTube) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-04] CHR Extension: (Adblock Plus) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-29] CHR Extension: (Sheets) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-18] CHR Extension: (Google Docs hors connexion) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-04] CHR Extension: (Avast Online Security) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-10-18] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-29] CHR Extension: (Gmail) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-04] CHR Extension: (Chrome Media Router) - C:\Users\Guillaume (Nouv.)\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-15] CHR HKLM-x32\...\Chrome\Extension: [clgckgfbhciacomhlchmgdnplmdiadbj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [jpfgjjhcgfbfkkoelpepohanhmbhdanh] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2011-12-09] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-02-14] (Advanced Micro Devices, Inc.) [Fichier non signé] R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7549928 2017-11-20] (AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-11-20] (AVAST Software) R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS) [Fichier non signé] R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [260424 2011-12-11] (HP) S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-07-21] (WildTangent) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4609416 2013-11-06] (INCA Internet Co., Ltd.) [Fichier non signé] R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.) S3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [269640 2011-12-09] (AuthenTec, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S2 AdobeARMservice; "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2012-01-03] (Advanced Micro Devices) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [183584 2017-11-20] (AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321032 2017-11-20] (AVAST Software s.r.o.) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [198968 2017-11-20] (AVAST Software s.r.o.) R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343288 2017-11-20] (AVAST Software s.r.o.) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57728 2017-11-20] (AVAST Software s.r.o.) S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [47008 2017-11-20] (AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [148288 2017-11-20] (AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110376 2017-11-20] (AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84416 2017-11-20] (AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1026232 2017-11-20] (AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [455376 2017-11-20] (AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203976 2017-11-20] (AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [364464 2017-11-20] (AVAST Software) R3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30352 2017-10-04] (Disc Soft Ltd) R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-11-21] (Malwarebytes) R3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [259688 2011-10-27] (Realtek Semiconductor Corp.) S3 SmbDrv; C:\Windows\system32\drivers\Smb_driver.sys [21264 2012-02-24] (Synaptics Incorporated) R3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.) S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-11-22 16:36 - 2017-11-22 16:37 - 000023012 _____ C:\Users\Guillaume (Nouv.)\Desktop\FRST.txt 2017-11-22 16:36 - 2017-11-22 16:36 - 002391552 _____ (Farbar) C:\Users\Guillaume (Nouv.)\Desktop\FRST64.exe 2017-11-22 16:36 - 2017-11-22 16:36 - 000000000 ____D C:\FRST 2017-11-22 14:17 - 2017-11-22 14:17 - 000000000 ____D C:\ProgramData\SWCUTemp 2017-11-21 22:29 - 2017-11-21 23:17 - 000322552 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence-Instru finale.sfk 2017-11-21 22:29 - 2017-11-21 23:17 - 000322552 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Silence (Projet Fini).sfk 2017-11-21 22:15 - 2017-11-21 22:15 - 000718555 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Silence (Projet Fini).wav.asd 2017-11-21 22:14 - 2017-11-21 22:14 - 041277644 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Silence (Projet Fini).wav 2017-11-21 22:01 - 2017-11-21 22:01 - 041277644 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence-Instru finale.wav 2017-11-21 22:01 - 2017-11-21 22:01 - 000705931 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence-Instru finale.wav.asd 2017-11-21 21:48 - 2017-11-21 21:48 - 000197343 _____ C:\Users\Guillaume (Nouv.)\Desktop\ZHPDiag.txt 2017-11-21 21:40 - 2017-11-21 21:40 - 002929536 _____ C:\Users\Guillaume (Nouv.)\Desktop\ZHPDiag3.exe 2017-11-21 21:36 - 2017-11-21 21:36 - 000056120 _____ C:\Users\Guillaume (Nouv.)\Desktop\Compte rendu Malwarebytes.txt 2017-11-21 21:35 - 2017-11-22 14:20 - 000000290 __RSH C:\ProgramData\ntuser.pol 2017-11-20 18:19 - 2017-11-21 20:51 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2017-11-20 09:23 - 2017-11-20 09:23 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-11-20 09:23 - 2017-11-20 09:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-11-20 09:23 - 2017-11-20 09:23 - 000000000 ____D C:\ProgramData\Malwarebytes 2017-11-20 09:23 - 2017-11-20 09:23 - 000000000 ____D C:\Program Files\Malwarebytes 2017-11-20 09:23 - 2017-11-01 08:54 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys 2017-11-20 09:13 - 2017-11-20 09:13 - 000004398 _____ C:\Users\Guillaume (Nouv.)\Desktop\AdwCleaner[S1].txt 2017-11-20 09:09 - 2017-11-20 09:08 - 000183584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2017-11-20 09:08 - 2017-11-20 09:08 - 000365168 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-11-19 17:44 - 2017-11-19 17:44 - 008261584 _____ (Malwarebytes) C:\Users\Guillaume (Nouv.)\Desktop\adwcleaner_7.0.4.0.exe 2017-11-19 17:39 - 2017-11-19 17:41 - 000015367 _____ C:\Users\Guillaume (Nouv.)\Desktop\ZHPCleaner.txt 2017-11-19 17:09 - 2017-11-19 17:09 - 002973056 _____ C:\Users\Guillaume (Nouv.)\Downloads\ZHPCleaner.exe 2017-11-19 17:09 - 2017-11-19 17:09 - 000000846 _____ C:\Users\Guillaume (Nouv.)\Desktop\ZHPCleaner.lnk 2017-11-19 16:33 - 2017-11-19 16:33 - 010009088 _____ C:\Users\Guillaume (Nouv.)\Downloads\Les Sims 4 InstallShield Wizard.exe 2017-11-19 16:27 - 2017-11-19 16:31 - 223652918 _____ C:\Users\Guillaume (Nouv.)\Downloads\The Escapists 2. PC.rar 2017-11-19 15:12 - 2017-11-19 15:12 - 000716209 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 8).wav.asd 2017-11-19 15:11 - 2017-11-19 15:11 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 8).wav 2017-11-19 15:09 - 2017-11-19 15:09 - 000704205 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 7).wav.asd 2017-11-19 15:08 - 2017-11-19 15:08 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 7).wav 2017-11-19 15:04 - 2017-11-19 15:04 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 6).wav 2017-11-19 15:04 - 2017-11-19 15:04 - 000713221 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 6).wav.asd 2017-11-19 15:01 - 2017-11-19 15:01 - 000702481 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 5).wav.asd 2017-11-19 15:00 - 2017-11-19 15:00 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 5).wav 2017-11-18 22:05 - 2017-11-18 22:05 - 000000000 ____D C:\Users\Guillaume (Nouv.)\ASIO4ALL 2017-11-18 21:40 - 2017-11-18 21:40 - 000700965 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 4).wav.asd 2017-11-18 21:39 - 2017-11-18 21:39 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 4).wav 2017-11-18 21:37 - 2017-11-18 21:37 - 000450263 _____ C:\Users\Guillaume (Nouv.)\Desktop\ASIO4ALL_2_13_French.exe 2017-11-18 21:13 - 2017-11-18 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jBridge 2017-11-18 21:13 - 2017-11-18 21:13 - 000000000 ____D C:\Program Files\JBridge 2017-11-18 21:12 - 2017-11-18 21:13 - 000866913 _____ C:\Users\Guillaume (Nouv.)\Desktop\jBridgev1.75Setup_Demonstration version.zip 2017-11-17 23:30 - 2017-11-17 23:30 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Silence.wav 2017-11-17 23:30 - 2017-11-17 23:30 - 000719567 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Silence.wav.asd 2017-11-17 23:22 - 2017-11-17 23:23 - 000697017 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 3).wav.asd 2017-11-17 23:22 - 2017-11-17 23:22 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 3).wav 2017-11-17 23:08 - 2017-11-17 23:08 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 2).wav 2017-11-17 23:08 - 2017-11-17 23:08 - 000715445 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 2).wav.asd 2017-11-17 22:57 - 2017-11-17 22:57 - 041126444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 1).wav 2017-11-17 22:57 - 2017-11-17 22:57 - 000694545 _____ C:\Users\Guillaume (Nouv.)\Desktop\Silence (Audio Instru 1).wav.asd 2017-11-17 22:11 - 2017-11-17 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Helm 2017-11-17 22:11 - 2017-11-17 22:11 - 000000000 ____D C:\Program Files\Helm 2017-11-17 22:04 - 2017-11-17 22:04 - 002283896 _____ C:\Users\Guillaume (Nouv.)\Desktop\k200 (1).zip 2017-11-17 21:55 - 2017-11-17 21:55 - 019533824 _____ C:\Users\Guillaume (Nouv.)\Desktop\Helm_64bit_v0_9_0_r.msi 2017-11-17 21:04 - 2017-11-17 21:04 - 010645333 _____ C:\Users\Guillaume (Nouv.)\Desktop\DC1A2-win.zip 2017-11-17 20:57 - 2017-11-17 20:58 - 000000000 ____D C:\Users\Guillaume (Nouv.)\Desktop\Projets Ableton 2017-11-17 20:27 - 2017-11-17 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ohm Force 2017-11-17 18:19 - 2017-11-17 18:19 - 000000990 _____ C:\Users\Public\Desktop\Massive.lnk 2017-11-17 18:16 - 2017-11-17 18:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments 2017-11-17 18:16 - 2017-11-17 18:16 - 000001059 _____ C:\Users\Public\Desktop\Service Center.lnk 2017-11-17 18:16 - 2017-11-17 18:16 - 000000000 __HDC C:\ProgramData\{C78336EC-F2EB-4640-99A4-DFE96581B90B} 2017-11-17 18:16 - 2017-11-17 18:16 - 000000000 ____D C:\ProgramData\Native Instruments 2017-11-17 18:14 - 2017-11-17 18:19 - 000000000 __HDC C:\ProgramData\{E26B3878-7CEC-469C-B449-5CAA336DF8CD} 2017-11-17 17:37 - 2017-11-21 22:15 - 000000000 ____D C:\Program Files\Ableton Live 9 2017-11-17 17:19 - 2017-11-17 17:27 - 000000000 ____D C:\Users\Guillaume (Nouv.)\Desktop\ableton_live_suite_9.7.3_64 2017-11-16 16:10 - 2017-11-16 16:10 - 006451244 _____ C:\Users\Guillaume (Nouv.)\Desktop\Projet Petit Biscuit (Base).wav 2017-11-16 16:10 - 2017-11-16 16:10 - 000116286 _____ C:\Users\Guillaume (Nouv.)\Desktop\Projet Petit Biscuit (Base).wav.asd 2017-11-15 22:57 - 2017-11-15 22:57 - 000806444 _____ C:\Users\Guillaume (Nouv.)\Desktop\Essai Chill.wav 2017-11-15 22:57 - 2017-11-15 22:57 - 000018114 _____ C:\Users\Guillaume (Nouv.)\Desktop\Essai Chill.wav.asd 2017-11-15 17:10 - 2017-11-15 17:10 - 000002265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-11-15 17:10 - 2017-11-15 17:10 - 000002253 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-11-15 17:08 - 2017-11-15 17:08 - 000003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2017-11-15 17:08 - 2017-11-15 17:08 - 000003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2017-11-15 17:07 - 2017-11-15 17:07 - 000000000 ____D C:\Users\Guillaume (Nouv.)\AppData\Local\Apps\2.0 2017-11-15 16:54 - 2017-11-15 16:54 - 000000000 _____ C:\Windows\SysWOW64\last.dump 2017-11-15 16:39 - 2017-11-20 09:21 - 000000000 ____D C:\AdwCleaner 2017-11-14 20:49 - 2017-11-14 20:49 - 001264297 _____ C:\Users\Guillaume (Nouv.)\Desktop\tau2_win_vst_demo.zip 2017-11-14 20:49 - 2017-11-14 20:47 - 002530283 ____N C:\Users\Guillaume (Nouv.)\Desktop\dexed-0.9.3-win.zip 2017-11-14 17:28 - 2017-11-14 17:28 - 000059052 _____ C:\Users\Guillaume (Nouv.)\Desktop\Native.Instruments.Massive.STANDALONE.VSTi.RTAS.1.3.0.x86.x64-ASSiGN.rar 2017-11-13 19:49 - 2017-11-13 19:50 - 031399244 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Strange (Project no Finished).wav 2017-11-12 19:11 - 2017-11-12 19:11 - 000000000 _____ C:\autoexec.bat 2017-11-11 20:33 - 2017-11-11 20:33 - 041466644 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Silence (Projet non fini)(wav).wav 2017-11-11 20:33 - 2017-11-11 20:33 - 000723685 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Silence (Projet non fini)(wav).wav.asd 2017-11-10 21:40 - 2017-11-10 21:40 - 002478394 _____ C:\Users\Guillaume (Nouv.)\Desktop\vbox3.zip 2017-11-10 21:39 - 2017-11-10 21:39 - 004051161 _____ C:\Users\Guillaume (Nouv.)\Desktop\kr5.zip 2017-11-10 21:39 - 2017-11-10 21:39 - 002283896 _____ C:\Users\Guillaume (Nouv.)\Desktop\k200.zip 2017-11-10 21:16 - 2017-11-10 21:17 - 021917990 _____ C:\Users\Guillaume (Nouv.)\Desktop\EDM Vocals By Comerm.rar 2017-11-10 21:04 - 2017-11-10 21:04 - 000003592 _____ C:\Windows\System32\Tasks\{156885CF-95ED-79D5-CF19-8255ADDE5D4B} 2017-11-10 21:02 - 2017-11-10 21:02 - 000021560 _____ C:\Windows\System32\Tasks\UYbPJ7Ferayw 2017-11-10 18:25 - 2017-11-10 18:25 - 000008679 _____ C:\Users\Guillaume (Nouv.)\Desktop\Absolute.nmsv 2017-11-10 18:17 - 2017-11-10 18:17 - 000008635 _____ C:\Users\Guillaume (Nouv.)\Desktop\Ad Voca.nmsv 2017-11-10 18:06 - 2017-11-10 18:06 - 000000000 ____D C:\Program Files\Common Files\Native Instruments 2017-11-10 18:03 - 2017-11-17 18:17 - 000000000 ____D C:\Program Files\Native Instruments 2017-11-10 17:58 - 2017-11-10 18:00 - 000000000 ____D C:\Users\Guillaume (Nouv.)\Desktop\BIFROST - Massive 1.3.0 2017-11-10 17:56 - 2017-11-10 17:57 - 116907116 _____ C:\Users\Guillaume (Nouv.)\Desktop\BIFROST - Massive 1.3.0.zip 2017-11-10 17:46 - 2017-11-10 17:46 - 000000000 ___HD C:\$AV_ASW 2017-11-06 22:48 - 2017-11-06 22:48 - 014515244 _____ C:\Users\Guillaume (Nouv.)\Desktop\New Project (Nov 2017).wav 2017-11-06 22:48 - 2017-11-06 22:48 - 000255929 _____ C:\Users\Guillaume (Nouv.)\Desktop\New Project (Nov 2017).wav.asd 2017-11-04 23:27 - 2017-11-04 23:27 - 000100372 _____ C:\Users\Guillaume (Nouv.)\Desktop\HyS-Reboot (ft. Ruslan Tishenko) [120, B].mp3.asd 2017-11-04 22:08 - 2017-11-04 22:08 - 000000000 ____D C:\Program Files (x86)\Steinberg 2017-11-04 22:05 - 2017-11-04 22:05 - 000000000 ____D C:\ProgramData\Audio Damage 2017-11-04 22:04 - 2017-11-17 22:11 - 000000000 ____D C:\Program Files\Common Files\VST3 2017-11-04 22:00 - 2017-11-17 17:16 - 000000000 ____D C:\Program Files\sforzando 2017-11-04 22:00 - 2017-11-04 22:00 - 000000000 ____D C:\Program Files\Plogue 2017-11-04 22:00 - 2017-11-04 22:00 - 000000000 ____D C:\Program Files\Common Files\VST2 2017-11-04 17:08 - 2017-11-06 22:01 - 000000000 ____D C:\Zemana AntiMalware 2017-11-04 17:08 - 2017-11-05 01:07 - 000089087 _____ C:\Windows\ZAM_Guard.krnl.trace 2017-11-04 17:08 - 2017-11-04 21:18 - 000174460 _____ C:\Windows\ZAM.krnl.trace 2017-11-04 17:06 - 2017-11-04 17:06 - 006625600 _____ (Zemana Ltd. ) C:\Users\guillaume.guillaume-HP\Downloads\Zemana.AntiMalware.Setup.exe 2017-11-04 16:43 - 2017-11-04 16:43 - 000003968 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{305D974D-08F9-422D-800A-11393620B690} 2017-11-04 16:43 - 2017-11-04 16:43 - 000002253 _____ C:\Users\guillaume.guillaume-HP\Desktop\Google Chrome.lnk 2017-11-04 16:41 - 2017-11-04 16:41 - 000000000 ____D C:\Users\guillaume.guillaume-HP\AppData\LocalLow\AuthenTec 2017-11-04 16:40 - 2017-11-21 21:33 - 000000000 ____D C:\Users\guillaume.guillaume-HP 2017-11-04 16:40 - 2017-11-04 16:40 - 000000020 ___SH C:\Users\guillaume.guillaume-HP\ntuser.ini 2017-11-04 16:40 - 2017-11-04 16:40 - 000000000 _SHDL C:\Users\guillaume.guillaume-HP\Voisinage réseau 2017-11-04 16:40 - 2017-11-04 16:40 - 000000000 _SHDL C:\Users\guillaume.guillaume-HP\Voisinage d'impression 2017-11-04 16:40 - 2017-11-04 16:40 - 000000000 _SHDL C:\Users\guillaume.guillaume-HP\Modèles 2017-11-04 16:40 - 2017-11-04 16:40 - 000000000 _SHDL C:\Users\guillaume.guillaume-HP\Mes documents 2017-11-04 16:40 - 2017-11-04 16:40 - 000000000 _SHDL C:\Users\guillaume.guillaume-HP\Menu Démarrer 2017-11-01 20:04 - 2017-11-01 20:02 - 001993912 ____N C:\Users\Guillaume (Nouv.)\Desktop\looperman-l-0672759-0111171-sushilbawa-alian-singer.wav 2017-11-01 19:39 - 2017-11-17 17:17 - 000000000 ____D C:\Program Files (x86)\vstplugins 2017-11-01 19:34 - 2017-11-01 19:34 - 000000000 ____D C:\Program Files\Common Files\Avid 2017-11-01 19:33 - 2017-11-01 19:33 - 000000000 ____D C:\Program Files\Steinberg 2017-11-01 16:25 - 2017-11-01 16:55 - 000000000 ____D C:\Users\Guillaume (Nouv.)\Desktop\Imperium Project 2017-11-01 16:24 - 2017-11-01 16:24 - 012783949 _____ C:\Users\Guillaume (Nouv.)\Desktop\Madeon - Imperium(Tripper Remake).zip 2017-11-01 16:23 - 2017-10-28 16:38 - 013354937 ____N C:\Users\Guillaume (Nouv.)\Desktop\Valzugg Free Sample Pack.zip 2017-11-01 16:22 - 2017-11-01 16:17 - 058637507 ____N C:\Users\Guillaume (Nouv.)\Desktop\Magic - Rude (Zedd Remix) NYSM Remake Project.zip 2017-11-01 16:22 - 2017-11-01 16:16 - 019332511 ____N C:\Users\Guillaume (Nouv.)\Desktop\Martin Garrix - Animals (Dj NYSM Remake) Project.zip 2017-11-01 16:22 - 2017-11-01 16:15 - 001635570 ____N C:\Users\Guillaume (Nouv.)\Desktop\Madeon - Home (NYSM Remake).zip 2017-11-01 16:06 - 2017-11-01 16:06 - 000045284 _____ C:\Users\Guillaume (Nouv.)\Desktop\silenceskills-Love (140 bpm-Bm).wav.asd 2017-11-01 16:03 - 2017-11-01 16:02 - 002424910 _____ C:\Users\Guillaume (Nouv.)\Desktop\silenceskills-Love (140 bpm-Bm).wav 2017-10-28 17:50 - 2017-10-28 17:50 - 000805113 _____ C:\Users\Guillaume (Nouv.)\Desktop\The club.wav.asd 2017-10-28 17:49 - 2017-10-28 17:49 - 046966544 _____ C:\Users\Guillaume (Nouv.)\Desktop\The club.wav 2017-10-28 15:24 - 2017-10-28 15:24 - 014610126 _____ C:\Users\Guillaume (Nouv.)\Desktop\MINI PACK GRATUIT (+Bonus)_New-Producer.rar 2017-10-28 15:24 - 2017-10-28 15:24 - 000000000 ____D C:\Users\Guillaume (Nouv.)\AppData\LocalLow\Adobe 2017-10-27 18:55 - 2017-11-22 15:38 - 000000000 ____D C:\Users\Guillaume (Nouv.)\Desktop\RAZEK+HyS 2017-10-27 16:25 - 2017-10-27 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony 2017-10-27 16:24 - 2017-10-27 16:24 - 000000000 ____D C:\ProgramData\Sony 2017-10-27 15:34 - 2017-10-27 15:32 - 000110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll 2017-10-27 15:32 - 2017-10-27 15:32 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2017-10-27 15:09 - 2017-10-27 16:11 - 000000000 ____D C:\Program Files\Sony ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-11-22 15:03 - 2017-07-14 01:31 - 000000000 ____D C:\Users\Guillaume (Nouv.)\Desktop\Vidéos Mirror's Edge YT 2017-11-22 14:31 - 2009-07-14 05:45 - 000031472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-11-22 14:31 - 2009-07-14 05:45 - 000031472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-11-22 14:15 - 2016-06-04 18:30 - 000000000 ____D C:\Users\Guillaume (Nouv.)\AppData\LocalLow\AuthenTec 2017-11-22 14:13 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-11-21 22:17 - 2017-07-02 17:23 - 000000000 ____D C:\Users\Guillaume (Nouv.)\Desktop\Contenu CLE USB 2017-11-21 21:35 - 2012-09-21 17:43 - 000001974 _____ C:\Users\Public\Desktop\HP+.lnk 2017-11-21 21:33 - 2016-06-04 18:29 - 000000000 ____D C:\Users\Guillaume (Nouv.) 2017-11-21 21:33 - 2016-01-22 19:47 - 000000000 ____D C:\Users\guillaume(Nouveau) 2017-11-21 17:53 - 2016-06-04 18:32 - 000004000 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E67959E1-C16B-48A6-B9B7-38DE8AB318BF} 2017-11-20 18:27 - 2017-10-03 20:56 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2017-11-20 09:09 - 2017-10-03 20:56 - 000455376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2017-11-20 09:08 - 2017-10-03 20:56 - 000455384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys.151116535826703 2017-11-20 09:08 - 2017-10-03 20:56 - 000364464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2017-11-20 09:08 - 2017-10-03 20:56 - 000203976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2017-11-20 09:08 - 2017-10-03 20:56 - 000148288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2017-11-20 09:08 - 2017-10-03 20:56 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2017-11-20 09:08 - 2017-10-03 20:56 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2017-11-20 09:08 - 2017-10-03 20:56 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2017-11-20 09:07 - 2017-10-03 20:56 - 001026232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2017-11-20 09:07 - 2017-10-03 20:56 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys 2017-11-20 09:07 - 2017-10-03 20:56 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys 2017-11-20 09:07 - 2017-10-03 20:56 - 000198968 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys 2017-11-20 09:07 - 2017-10-03 20:56 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys 2017-11-17 16:53 - 2016-03-06 18:21 - 000000000 ____D C:\ProgramData\Ableton 2017-11-16 00:38 - 2015-05-10 17:14 - 000000000 ___SD C:\Windows\system32\GWX 2017-11-16 00:38 - 2012-07-05 22:28 - 000000000 ____D C:\Program Files (x86)\EasyBits For Kids 2017-11-16 00:38 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2017-11-16 00:37 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration 2017-11-15 17:38 - 2015-11-11 10:24 - 000004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-11-15 17:38 - 2012-04-02 16:55 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-11-15 17:38 - 2012-04-02 16:55 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-11-15 17:38 - 2012-04-02 16:55 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2017-11-15 17:38 - 2012-04-02 16:55 - 000000000 ____D C:\Windows\system32\Macromed 2017-11-15 17:09 - 2014-01-30 19:26 - 000000000 ____D C:\Program Files (x86)\Google 2017-11-15 15:46 - 2017-10-03 20:57 - 000001922 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk 2017-11-10 17:46 - 2017-10-10 14:46 - 000000000 ____D C:\ProgramData\{8C4B4928-0609-C3EE-80CF-5DAC1A8DD662} 2017-11-06 22:40 - 2012-04-03 01:21 - 000750962 _____ C:\Windows\system32\perfh00C.dat 2017-11-06 22:40 - 2012-04-03 01:21 - 000151794 _____ C:\Windows\system32\perfc00C.dat 2017-11-06 22:40 - 2009-07-14 06:13 - 001679020 _____ C:\Windows\system32\PerfStringBackup.INI 2017-10-27 19:00 - 2014-09-27 19:08 - 000000000 ____D C:\ProgramData\Package Cache 2017-10-27 16:11 - 2015-10-22 11:12 - 000030724 _____ C:\Windows\system32\--traceoff 2017-10-27 15:34 - 2015-08-09 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2017-10-27 15:34 - 2014-03-06 12:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-10-27 15:31 - 2014-06-23 17:46 - 000000000 ____D C:\Program Files\Java 2017-10-26 10:29 - 2017-10-04 13:25 - 000000000 ____D C:\ableton_live_suite_9.7.3_32 ==================== Fichiers à la racine de certains dossiers ======= 2016-06-04 20:27 - 2016-06-04 20:27 - 000003584 _____ () C:\Users\Guillaume (Nouv.)\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-06-09 20:35 - 2016-06-09 20:35 - 000001013 _____ () C:\Users\Guillaume (Nouv.)\AppData\Local\recently-used.xbel 2016-08-28 15:01 - 2016-08-28 15:01 - 000007598 _____ () C:\Users\Guillaume (Nouv.)\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-04-08 09:26 ==================== Fin de FRST.txt ============================