Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019 Exécuté par Alexandre (administrateur) sur PC-BLADE (10-04-2019 11:32:59) Exécuté depuis C:\Users\Alexandre\Desktop Profils chargés: Alexandre (Profils disponibles: Alexandre) Platform: Windows 8.1 (Update) (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (Malwarebytes Corporation -> Malwarebytes) C:\Users\Alexandre\Downloads\adwcleaner_7.3.exe (IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (PacketVideo Corporation -> PacketVideo) C:\Program Files (x86)\Serveur Media\twonkymediaserverconfig.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe (PacketVideo Corporation -> PacketVideo) C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (PacketVideo Corporation -> ) C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\ProtectedService.exe (VTech Electronics North America, LLC -> ) C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2015-12-17] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [317824 2016-01-18] (VTech Electronics North America, LLC -> ) HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4072648 2018-04-24] (Comodo Security Solutions, Inc. -> COMODO) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {05593e87-3e26-11e7-84b1-90e6bac835e7} - "G:\autorun.exe" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {05593e9c-3e26-11e7-84b1-90e6bac835e7} - "G:\autorun.exe" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {0ea24f7b-0e4c-11e6-8485-90e6bac835e7} - "G:\autorun.exe" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {13a839f0-7f0e-11e5-8468-90e6bac835e7} - "G:\autorun.exe" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {36413891-668d-11e5-8465-90e6bac835e7} - "G:\autorun.exe" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {5cb236b3-b96b-11e3-82bf-90e6bac835e7} - "G:\LaunchU3.exe" -a HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {8307ae1a-793d-11e3-8252-90e6bac835e7} - "F:\SETUP.EXE" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {9df1e94c-c192-11e6-84a0-90e6bac835e7} - "G:\autorun.exe" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {b45b2f14-784f-11e3-824b-806e6f6e6963} - "D:\dvdcheck.exe" HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\MountPoints2: {f0f4368c-8193-11e6-8493-90e6bac835e7} - "G:\DigiGoSetup.exe" HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [475936 2007-05-09] (Logitech Inc -> Logitech Inc.) HKLM\...\Drivers32: [MSVideo] => C:\Windows\system32\vfwwdm32.dll [69632 2015-04-02] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Fichier non signé] HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [416544 2007-05-09] (Logitech Inc -> Logitech Inc.) HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Fichier non signé] HKLM\...\Drivers32-x32: [vidc.yv12] => yv12vfw.dll HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\Drivers32: [vidc.spv1] => C:\Users\Alexandre\AppData\Local\Learnpulse\Screenpresso\ScreenpressoCodec.dll [167656 2019-02-01] (Learnpulse -> LearnPulse) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-26] (Google LLC -> Google Inc.) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Agent Serveur Média.lnk [2016-03-06] ShortcutTarget: Agent Serveur Média.lnk -> C:\Program Files (x86)\Serveur Media\twonkymediaserverconfig.exe (PacketVideo Corporation -> PacketVideo) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{03C9ABA5-22A8-488E-8FBC-6BD5D2272242}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms} SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3166757265-2865098428-1234438810-1001 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2014-08-20] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2014-08-20] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2015-12-17] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-06] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-06] (Oracle America, Inc. -> Oracle Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\zdkqqupt.default [2019-04-10] FF Extension: (Tampermonkey) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\zdkqqupt.default\Extensions\firefox@tampermonkey.net.xpi [2019-04-05] FF Extension: (uBlock Origin) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\zdkqqupt.default\Extensions\uBlock0@raymondhill.net.xpi [2019-03-14] FF Extension: (Video DownloadHelper) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\zdkqqupt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-08-02] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\zdkqqupt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-04] FF HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Alexandre\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\Alexandre\AppData\Roaming\IDM\idmmzcc5 [2014-09-02] [Legacy] [non signé] FF HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Alexandre\AppData\Roaming\IDM\idmmzcc5 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll [2019-03-13] (Adobe Systems Incorporated -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll [2019-03-13] (Adobe Systems Incorporated -> ) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) [Fichier non signé] FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-11-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default [2019-04-09] CHR Extension: (Google Drive) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-06] CHR Extension: (Adobe Acrobat) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-04-08] CHR Extension: (Protection Web Avira) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-04-08] CHR Extension: (Skyload – Téléchargeur de musique et de vidéos) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnmpfimijcopbiaiobinamadmnmhckmp [2019-04-08] CHR Extension: (Google Docs hors connexion) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-12] CHR Extension: (AdBlock) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-04-08] CHR Extension: (Video DownloadHelper) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2018-08-19] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-06] CHR Extension: (Chrome Media Router) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-08] CHR Profile: C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Guest Profile [2015-03-06] CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-08-28] CHR HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\ALEXAN~1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-04-16] CHR HKU\S-1-5-21-3166757265-2865098428-1234438810-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-08-28] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [245760 2015-06-23] (Microsoft Windows Hardware Compatibility Publisher -> AMD) S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [893008 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntivirProtectedService; C:\Program Files (x86)\Avira\AntiVir Desktop\ProtectedService.exe [314264 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [248312 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [248312 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1191152 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [466280 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10736912 2019-02-11] (Comodo Security Solutions, Inc. -> COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2018-12-17] (Comodo Security Solutions, Inc. -> COMODO) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé] R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] (Canon Inc. -> ) R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1199816 2018-04-24] (Comodo Security Solutions, Inc. -> COMODO) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes) R2 Serveur Média; C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe [501336 2016-03-06] (PacketVideo Corporation -> PacketVideo) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-04-11] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-04-11] (Microsoft Corporation -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [21612032 2015-06-23] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) S3 amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [663552 2015-06-23] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2015-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [75432 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S0 avelam; C:\Windows\System32\drivers\avelam.sys [22336 2019-02-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [188008 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [175104 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [46704 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [89736 2019-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [35360 2018-05-22] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [823344 2018-05-22] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [42080 2018-05-22] (Comodo Security Solutions, Inc. -> COMODO) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2014-01-09] (DT Soft Ltd -> DT Soft Ltd) R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [125712 2018-05-22] (Comodo Security Solutions, Inc. -> COMODO) R1 isedrv; C:\Windows\system32\drivers\isedrv.sys [63200 2017-12-13] (Comodo Security Solutions, Inc. -> COMODO) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [274416 2019-04-10] (Malwarebytes Corporation -> Malwarebytes) R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> ) R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek ) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-04-11] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-04-11] (Microsoft Windows -> Microsoft Corporation) S3 GPUIO; \??\C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\690b33e1-0462-4e84-9bea-c7552b45432a.sys [X] S3 Ser2pl; \SystemRoot\system32\DRIVERS\ser2pl64.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-04-10 11:32 - 2019-04-10 11:34 - 000025572 _____ C:\Users\Alexandre\Desktop\FRST.txt 2019-04-10 11:32 - 2019-04-10 11:32 - 000000000 ____D C:\FRST 2019-04-10 11:32 - 2019-04-10 11:30 - 002434048 _____ (Farbar) C:\Users\Alexandre\Desktop\FRST64.exe 2019-04-10 11:12 - 2019-04-10 11:12 - 000483209 _____ C:\Users\Alexandre\Desktop\ZHPCleaner-[R]-10042019-11_08_34.html 2019-04-10 11:12 - 2019-04-10 11:12 - 000000000 ____D C:\Users\Alexandre\Desktop\ZHPCleaner-[R]-10042019-11_08_34_fichiers 2019-04-10 11:08 - 2019-04-10 11:08 - 000166489 _____ C:\Users\Alexandre\Desktop\ZHPCleaner (R).txt 2019-04-10 11:05 - 2019-04-10 11:05 - 000165988 _____ C:\Users\Alexandre\Desktop\ZHPCleaner (S).txt 2019-04-10 10:52 - 2019-04-10 10:52 - 000002836 _____ C:\Users\Alexandre\Desktop\AdwCleaner[C02].txt 2019-04-10 10:48 - 2019-04-10 10:49 - 003130240 _____ C:\Users\Alexandre\Desktop\ZHPCleaner.exe 2019-04-10 10:38 - 2019-04-10 10:38 - 000274416 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2019-04-09 20:23 - 2019-04-10 10:33 - 007025360 _____ (Malwarebytes) C:\Users\Alexandre\Downloads\adwcleaner_7.3.exe 2019-04-02 20:53 - 2019-04-02 20:53 - 000000000 ____D C:\Users\Alexandre\Downloads\Avant avril 2019 2019-03-28 19:01 - 2019-03-28 19:01 - 000001138 _____ C:\Users\Public\Desktop\Avira.lnk 2019-03-28 03:51 - 2019-04-09 11:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2019-03-19 01:14 - 2019-03-19 01:14 - 000002196 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk 2019-03-19 01:14 - 2019-03-19 01:14 - 000002184 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk 2019-03-14 15:37 - 2019-03-06 09:23 - 001737712 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2019-03-14 15:37 - 2019-03-06 09:23 - 001501056 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2019-03-14 15:37 - 2019-03-06 09:23 - 001371464 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2019-03-14 15:37 - 2019-03-06 09:22 - 001677232 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2019-03-14 15:37 - 2019-03-06 09:22 - 001537768 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2019-03-14 15:37 - 2019-03-06 09:18 - 007368440 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2019-03-14 15:37 - 2019-03-06 08:27 - 004167680 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2019-03-14 15:37 - 2019-03-06 08:26 - 000032896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2019-03-14 15:37 - 2019-03-06 08:03 - 003324416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2019-03-14 15:37 - 2019-03-06 07:37 - 003617280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2019-03-14 15:37 - 2019-03-06 06:50 - 002780160 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2019-03-14 15:37 - 2019-03-06 06:39 - 002464256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2019-03-14 15:37 - 2019-02-26 09:57 - 025737216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2019-03-14 15:37 - 2019-02-26 09:33 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2019-03-14 15:37 - 2019-02-26 09:31 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2019-03-14 15:37 - 2019-02-26 09:31 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2019-03-14 15:37 - 2019-02-26 09:31 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2019-03-14 15:37 - 2019-02-26 09:25 - 020281856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2019-03-14 15:37 - 2019-02-26 09:22 - 005777920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2019-03-14 15:37 - 2019-02-26 09:20 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2019-03-14 15:37 - 2019-02-26 09:07 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2019-03-14 15:37 - 2019-02-26 09:04 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2019-03-14 15:37 - 2019-02-26 08:58 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2019-03-14 15:37 - 2019-02-26 08:57 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2019-03-14 15:37 - 2019-02-26 08:56 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2019-03-14 15:37 - 2019-02-26 08:56 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2019-03-14 15:37 - 2019-02-26 08:51 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2019-03-14 15:37 - 2019-02-26 08:46 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2019-03-14 15:37 - 2019-02-26 08:44 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2019-03-14 15:37 - 2019-02-26 08:43 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2019-03-14 15:37 - 2019-02-26 08:43 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2019-03-14 15:37 - 2019-02-26 08:41 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2019-03-14 15:37 - 2019-02-26 08:41 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2019-03-14 15:37 - 2019-02-26 08:39 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2019-03-14 15:37 - 2019-02-26 08:39 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2019-03-14 15:37 - 2019-02-26 08:36 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2019-03-14 15:37 - 2019-02-26 08:35 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2019-03-14 15:37 - 2019-02-26 08:33 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2019-03-14 15:37 - 2019-02-26 08:31 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2019-03-14 15:37 - 2019-02-26 08:31 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2019-03-14 15:37 - 2019-02-26 08:31 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2019-03-14 15:37 - 2019-02-26 08:29 - 013681664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2019-03-14 15:37 - 2019-02-26 08:29 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2019-03-14 15:37 - 2019-02-26 08:25 - 002882048 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2019-03-14 15:37 - 2019-02-26 08:20 - 001049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2019-03-14 15:37 - 2019-02-26 08:18 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2019-03-14 15:37 - 2019-02-26 08:12 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2019-03-14 15:37 - 2019-02-26 08:09 - 001332224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2019-03-14 15:37 - 2019-02-26 08:07 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2019-03-14 15:37 - 2019-02-26 08:06 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2019-03-14 15:37 - 2019-02-20 22:17 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll 2019-03-14 15:37 - 2019-02-15 21:58 - 000536584 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2019-03-14 15:37 - 2019-02-15 21:58 - 000466272 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2019-03-14 15:37 - 2019-02-15 21:58 - 000413176 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2019-03-14 15:37 - 2019-02-15 21:54 - 000038184 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2019-03-14 15:37 - 2019-02-15 21:51 - 000449744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2019-03-14 15:37 - 2019-02-15 21:51 - 000413576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2019-03-14 15:37 - 2019-02-15 21:51 - 000033504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2019-03-14 15:37 - 2019-02-15 21:50 - 000372328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2019-03-14 15:37 - 2019-02-09 21:36 - 000444392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2019-03-14 15:37 - 2019-02-09 21:36 - 000218056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2019-03-14 15:37 - 2019-02-09 20:53 - 000923384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys 2019-03-14 15:37 - 2019-02-09 20:51 - 002014696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2019-03-14 15:37 - 2019-02-09 20:26 - 000333560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2019-03-14 15:37 - 2019-02-09 19:49 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2019-03-14 15:37 - 2019-02-09 19:49 - 000200704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys 2019-03-14 15:37 - 2019-02-09 19:49 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys 2019-03-14 15:37 - 2019-02-09 19:46 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2019-03-14 15:37 - 2019-02-09 19:18 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2019-03-14 15:37 - 2019-02-09 19:03 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2019-03-14 15:37 - 2019-02-09 18:56 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2019-03-14 15:37 - 2019-02-09 18:45 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll 2019-03-14 15:37 - 2019-02-09 18:18 - 000514048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2019-03-14 15:37 - 2019-02-09 18:16 - 000399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2019-03-14 15:37 - 2019-02-09 18:15 - 001095680 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2019-03-14 15:37 - 2019-02-09 02:38 - 002534936 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2019-03-14 15:37 - 2019-02-09 02:33 - 001901888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2019-03-14 15:37 - 2019-02-09 01:40 - 001137776 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2019-03-14 15:37 - 2019-02-09 01:40 - 000805168 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2019-03-14 15:37 - 2019-02-09 01:07 - 000614040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2019-03-14 15:37 - 2019-02-09 00:18 - 000862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2019-03-14 15:37 - 2019-02-08 23:39 - 001197056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll 2019-03-14 15:37 - 2019-02-08 23:29 - 000863232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll 2019-03-14 15:37 - 2019-02-08 21:55 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll 2019-03-14 15:37 - 2019-02-08 20:54 - 001755136 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2019-03-14 15:37 - 2019-02-08 20:51 - 002348032 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2019-03-14 15:37 - 2019-02-08 20:32 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll 2019-03-14 15:37 - 2019-02-08 19:50 - 001493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2019-03-14 15:37 - 2019-02-08 19:45 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2019-03-14 15:37 - 2019-02-07 21:38 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys 2019-03-14 15:37 - 2019-02-07 02:40 - 001311240 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2019-03-14 15:37 - 2019-02-07 02:40 - 001308240 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2019-03-14 15:37 - 2019-02-06 21:32 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys 2019-03-14 15:37 - 2019-02-06 21:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys 2019-03-14 15:37 - 2019-02-06 21:31 - 000684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2019-03-14 15:37 - 2019-02-06 21:30 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2019-03-14 15:37 - 2019-02-06 21:30 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2019-03-14 15:37 - 2019-02-06 20:27 - 001040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2019-03-14 15:37 - 2019-02-06 19:52 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2019-03-14 15:37 - 2019-02-01 06:27 - 002447600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2019-03-14 15:37 - 2019-01-09 06:20 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\hcproviders.dll 2019-03-14 15:37 - 2019-01-09 06:10 - 000546816 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll 2019-03-14 15:37 - 2019-01-09 06:06 - 000894976 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll 2019-03-14 15:37 - 2019-01-09 05:52 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hcproviders.dll 2019-03-14 15:37 - 2019-01-09 05:45 - 000530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll 2019-03-14 15:37 - 2019-01-09 05:40 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll 2019-03-14 15:37 - 2019-01-08 08:02 - 001764504 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2019-03-14 15:37 - 2019-01-08 07:12 - 001489704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2019-03-14 15:37 - 2019-01-05 09:35 - 000152128 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2019-03-14 15:37 - 2019-01-04 16:15 - 001635328 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2019-03-14 15:37 - 2019-01-04 16:15 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2019-03-14 15:37 - 2019-01-04 16:15 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2019-03-14 15:37 - 2019-01-04 16:15 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2019-03-14 15:37 - 2019-01-04 16:15 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2019-03-14 15:37 - 2019-01-04 16:15 - 000451584 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2019-03-14 15:37 - 2019-01-04 16:15 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2019-03-14 15:37 - 2019-01-04 16:15 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll ==================== Un mois (modifiés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-04-10 11:29 - 2016-03-06 19:03 - 000000000 ____D C:\ProgramData\Serveur Média 2019-04-10 11:12 - 2016-11-16 06:39 - 000000000 ____D C:\Users\Alexandre\AppData\LocalLow\Mozilla 2019-04-10 11:08 - 2015-04-13 11:20 - 000000000 ____D C:\Users\Alexandre\AppData\Roaming\ZHP 2019-04-10 10:44 - 2014-01-08 12:38 - 002168190 _____ C:\Windows\system32\PerfStringBackup.INI 2019-04-10 10:44 - 2013-08-23 00:24 - 001064646 _____ C:\Windows\system32\perfh00C.dat 2019-04-10 10:44 - 2013-08-23 00:24 - 000244308 _____ C:\Windows\system32\perfc00C.dat 2019-04-10 10:44 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf 2019-04-10 10:38 - 2016-03-06 19:03 - 000000000 ____D C:\Program Files (x86)\Serveur Media 2019-04-10 10:36 - 2018-02-16 17:40 - 000000000 ____D C:\ProgramData\NVIDIA 2019-04-10 10:36 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-04-10 10:35 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI 2019-04-10 10:17 - 2014-01-24 16:47 - 000000000 ___DO C:\Users\Alexandre\SkyDrive 2019-04-10 00:58 - 2014-01-09 12:03 - 000000000 ____D C:\Program Files (x86)\Steam 2019-04-10 00:57 - 2014-01-08 13:11 - 000000000 ____D C:\Users\Alexandre\AppData\Roaming\ClassicShell 2019-04-09 14:18 - 2017-04-11 10:25 - 000000000 ____D C:\AdwCleaner 2019-04-09 11:44 - 2014-01-09 12:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-04-09 11:36 - 2014-01-13 23:27 - 000000000 ____D C:\Users\Alexandre\AppData\Roaming\vlc 2019-04-03 23:10 - 2017-06-26 15:43 - 000000000 ____D C:\ProgramData\CanonIJPLM 2019-04-02 21:55 - 2015-11-06 16:57 - 001958912 ___SH C:\Users\Alexandre\Downloads\Thumbs.db 2019-04-02 19:24 - 2015-11-06 16:58 - 000073728 ___SH C:\Users\Alexandre\Documents\Thumbs.db 2019-04-02 12:02 - 2017-06-26 21:34 - 000000000 ____D C:\Users\Alexandre\dwhelper 2019-03-29 13:11 - 2014-01-08 12:47 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3166757265-2865098428-1234438810-1001 2019-03-29 10:44 - 2014-01-09 12:08 - 000001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-03-28 19:01 - 2016-07-28 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2019-03-28 18:58 - 2014-08-20 13:15 - 000000000 ____D C:\ProgramData\Package Cache 2019-03-28 01:11 - 2014-01-09 13:27 - 000003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-03-28 01:11 - 2014-01-09 13:27 - 000003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-03-26 10:01 - 2014-01-09 13:28 - 000002242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-03-26 10:01 - 2014-01-09 13:28 - 000002201 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-03-23 19:08 - 2019-02-21 00:48 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2019-03-19 01:14 - 2018-02-09 22:01 - 000000000 ____D C:\Program Files\Google 2019-03-17 20:59 - 2019-01-31 17:20 - 000000768 _____ C:\Users\Public\Desktop\miniFMRTE.lnk 2019-03-17 20:59 - 2019-01-31 17:20 - 000000744 _____ C:\Users\Public\Desktop\FMRTE 19.lnk 2019-03-17 20:59 - 2016-12-13 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FMRTE 2019-03-17 19:18 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache 2019-03-15 10:47 - 2013-08-22 16:44 - 000781600 _____ C:\Windows\system32\FNTCACHE.DAT 2019-03-15 10:40 - 2014-12-12 00:20 - 000000000 ____D C:\Windows\system32\appraiser 2019-03-15 10:40 - 2014-07-10 14:51 - 000000000 ___SD C:\Windows\system32\CompatTel 2019-03-15 10:40 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData 2019-03-14 17:39 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp 2019-03-14 15:43 - 2014-01-08 16:40 - 000000000 ____D C:\Windows\system32\MRT 2019-03-14 15:35 - 2014-01-08 16:40 - 127411920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2019-03-14 14:54 - 2018-12-12 19:11 - 000513376 _____ C:\Windows\system32\locale.nls 2019-03-14 14:52 - 2018-12-12 19:11 - 000513376 _____ C:\Windows\SysWOW64\locale.nls 2019-03-13 21:50 - 2014-01-08 12:42 - 000000000 ____D C:\Users\Alexandre 2019-03-13 12:58 - 2014-11-27 12:50 - 000004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2019-03-13 12:55 - 2018-03-13 16:28 - 000004642 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier 2019-03-13 12:53 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed 2019-03-13 12:52 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed Certains fichiers dans TEMP: ==================== 2019-02-01 13:01 - 2019-02-01 13:01 - 012706912 _____ (Learnpulse) C:\Users\Alexandre\AppData\Local\Temp\ScreenpressoUpd.exe 2018-09-03 11:20 - 2018-09-25 11:14 - 040210008 _____ () C:\Users\Alexandre\AppData\Local\Temp\vlc-3.0.4-win32.exe 2019-01-21 23:31 - 2019-01-21 23:33 - 040477384 _____ () C:\Users\Alexandre\AppData\Local\Temp\vlc-3.0.6-win32.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\dllhost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\dllhost.exe => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2019-04-07 12:56 ==================== Fin de FRST.txt ============================