Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2019 01 Exécuté par Florian (administrateur) sur FLORIAN (Hewlett-Packard HPE-570fr) (25-07-2019 19:03:49) Exécuté depuis C:\Users\Florian\Desktop Profils chargés: Florian (Profils disponibles: Florian) Platform: Windows 7 Home Premium (X64) Langue: Français (France) Internet Explorer Version 9 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (Easybits AS -> Easybits) C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe (EasyBits Software AS -> EasyBits Software AS) [Fichier non signé] C:\Windows\SysWOW64\ezSharedSvcHost.exe (Hewlett-Packard Company -> ) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard Company) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Hewlett-Packard) [Fichier non signé] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard ) C:\Program Files\IDT\WDM\beats64.exe (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (OpenOffice.org) [Fichier non signé] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (OpenOffice.org) [Fichier non signé] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (PDF Complete -> PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (TuneUp Software -> TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe (TuneUp Software -> TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [37888 2010-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard ) HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard Company -> Hewlett-Packard) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [489472 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [611896 2010-09-15] (Hewlett-Packard Company -> ) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [2799784 2014-09-17] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé] HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [316848 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [664600 2010-09-28] (PDF Complete -> PDF Complete Inc) HKLM-x32\...\Run: [BATINDICATOR] => C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe [2068992 2009-05-09] (Hewlett-Packard) [Fichier non signé] HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1444880 2015-11-16] (Easybits AS -> Easybits) HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-07-08] (Hewlett-Packard Company -> Hewlett-Packard) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-2078028138-3213762506-5380699-1001\...\Run: [background_fault] => "C:\Users\Florian\AppData\Local\background_fault\aswRD.exe" "C:\Users\Florian\AppData\Local\background_fault\bf.dll",background_fault_collector <==== ATTENTION HKU\S-1-5-21-2078028138-3213762506-5380699-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2078028138-3213762506-5380699-1001\...\MountPoints2: {2815b39d-90ca-11e4-933e-e06995b78059} - K:\LaunchU3.exe -a HKU\S-1-5-21-2078028138-3213762506-5380699-1001\...\MountPoints2: {46d0e711-b3df-11e1-bf31-e06995b78059} - K:\autorun.exe HKU\S-1-5-21-2078028138-3213762506-5380699-1001\...\MountPoints2: {ed525b0d-8fdc-11e1-98a5-e06995b78059} - K:\loaderw.exe /no hidden HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.) IFEO: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\agatha christie - peril at end house-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\bejeweled2-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\blasterball3-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\bounce-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\buildalot5-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\cake mania-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\chuzzle deluxe-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\diner dash 2 restaurant rescue-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\drivegreen1-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\farm frenzy-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\fate-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\insaniquarium-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\jewelquest2-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\jqsolitaire-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\lightscribecontrolpanel.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\lslauncher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\onplay.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\penguins-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\plants vs. zombies-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\polar-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\provider.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\slingo-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\virtual villagers - the secret city-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\wedding dash-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" IFEO\zuma-wt.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe" Startup: C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk [2013-06-02] ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () [Fichier non signé] BootExecute: autocheck autochk * aswBoot.exe /M:1665c890d /wow /dir:"C:\Program Files\AVAST Software\Avast" FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {08F82FEF-2ED2-4544-A774-16467E735F23} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [435040 2012-09-19] (TuneUp Software -> TuneUp Software) Task: {12B34ADB-36FA-40B7-87CC-EBACAECBDF57} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2281944 2019-07-19] (AVAST Software s.r.o. -> AVAST Software) Task: {1E1CC7F2-EEDF-4B28-B175-364EE72D0F89} - System32\Tasks\HPOSIAPP64 => C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe [53248 2009-02-28] () [Fichier non signé] Task: {4C749189-DE7D-4CAD-B168-558C4C4615A9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [630584 2014-05-12] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {55B2041B-3D6B-4F97-8BD1-B6C4D1772173} - \Programme de mise à jour en ligne de HP. -> Pas de fichier <==== ATTENTION Task: {62BCBCA3-F326-401F-B2A5-DFAE8825B27A} - System32\Tasks\{76CFA576-FE91-48B1-B35F-3D7CD9544501} => "c:\users\florian\appdata\local\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/5.5.0.124/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;disabled Task: {682227E7-63C0-4D67-9091-2BB2666A8509} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.) Task: {78DE2241-727E-4DD5-8A2D-B30C5BA83C35} - System32\Tasks\{E4CC49C3-01C1-419D-A0A3-676D088653AD} => C:\Windows\system32\pcalua.exe -a "C:\Star Wars Jedi Knight - Jedi Academy (2 Cds)\Daemon Tools 3.47.exe" -d "C:\Star Wars Jedi Knight - Jedi Academy (2 Cds)" Task: {7D751BA4-0BBE-4866-98BB-4CCDA7339A28} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-10] (Oracle America, Inc. -> Oracle Corporation) Task: {8C2577A1-F5BC-4F75-BA78-C3523E51F7FB} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [1060568 2014-05-24] (Microsoft Corporation -> Microsoft Corporation) Task: {8F32ACED-5340-4318-B19D-EB56494DCB88} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520 2015-04-14] (Hewlett-Packard Company -> Hewlett-Packard) Task: {925B4FBA-1E4D-4104-9BEA-0D4CF143A573} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728 2012-09-27] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {99C6191C-0D19-44A4-99BE-7A05C66BB332} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2314008 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) Task: {9BE51D64-36D0-451F-B35A-7F7AA4DDC3CE} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [829640 2014-04-15] (Microsoft Corporation -> Microsoft Corporation) Task: {9DDEEAC6-35E6-494C-9FF2-9EDE74A38BD5} - System32\Tasks\HPCeeScheduleForFlorian => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704 2010-09-14] (Hewlett-Packard Company -> Hewlett-Packard) Task: {A24DA07D-9A75-46CC-9061-40828CF2083E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728 2012-09-27] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {A9CA07C0-E585-4A1C-B069-192762B30F76} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {AA52FAC0-6FA9-41E7-9CA1-F732B2572A4F} - System32\Tasks\avastBCLRestartS-1-5-21-2078028138-3213762506-5380699-1001 => C:\Program Files (x86)\Mozilla Firefox\firefox.exe Task: {B10B1298-CA62-41CC-B47D-56B90459F70E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [630584 2014-05-12] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {B214E240-715E-413B-B052-F45ECCABA19E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {C3FB6FAC-4343-4105-85CC-2D3E50EF857D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000 2015-11-08] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {CA29DCF3-6753-4113-B74F-212239B9FCAA} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {CFE8BEC2-24CF-4D7C-A96C-0D27E8607D83} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFfix => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFfix.exe [253240 2013-08-05] (Hewlett-Packard Company -> Hewlett-Packard Company) Task: {D16E320D-7ABB-4259-8C3D-50F2063D5009} - System32\Tasks\{938BC4D6-3553-4D2D-ACF8-ADF823A7ABCE} => C:\Windows\system32\pcalua.exe -a "C:\Users\Florian\Documents\My Downloads\Star Wars Jedi Knight - Jedi Academy (2 Cds)\Daemon Tools 3.47.exe" -d "C:\Users\Florian\Documents\My Downloads\Star Wars Jedi Knight - Jedi Academy (2 Cds)" Task: {D1D08D9E-4C13-46B6-B120-91C2BAF617F0} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [3987888 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) Task: {D72DE0DD-9227-472F-9AAE-4060EF309D66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [926520 2015-04-14] (Hewlett-Packard Company -> Hewlett-Packard) Task: {E9486A2E-005E-4297-8742-C1405F680407} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [12344 2014-07-08] (Hewlett-Packard Company -> Microsoft) Task: {EE7116F3-BD8A-463C-B332-286071D0D6C1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdater => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [630584 2014-05-12] (Hewlett-Packard Company -> Hewlett-Packard Company) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\HPCeeScheduleForFlorian.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013.job => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{72368790-E593-45E7-AA9A-8B68B4AE2F40}: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{829F5319-B76A-4CC4-8119-1425B73227F0}: [DhcpNameServer] 172.20.10.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF SearchScopes: HKLM -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM -> {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Desktops SearchScopes: HKLM -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM-x32 -> {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Desktops SearchScopes: HKLM-x32 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox SearchScopes: HKU\.DEFAULT -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = SearchScopes: HKU\S-1-5-21-2078028138-3213762506-5380699-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKU\S-1-5-21-2078028138-3213762506-5380699-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKU\S-1-5-21-2078028138-3213762506-5380699-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF SearchScopes: HKU\S-1-5-21-2078028138-3213762506-5380699-1001 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://fr.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKU\S-1-5-21-2078028138-3213762506-5380699-1001 -> {d944bb61-2e34-4dbf-a683-47e505c587dc} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-0/4?satitle={searchTerms}&mfe=Desktops SearchScopes: HKU\S-1-5-21-2078028138-3213762506-5380699-1001 -> {ec29edf6-ad3c-4e1c-a087-d6cb81400c43} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2014-05-24] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2014-05-24] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2014-05-24] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2014-05-24] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard) Toolbar: HKLM - Pas de nom - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Pas de fichier Toolbar: HKU\S-1-5-21-2078028138-3213762506-5380699-1001 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2014-05-24] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-01-01] (Skype Software Sarl -> Skype Technologies) FireFox: ======== FF DefaultProfile: mk06je6h.default-1483882484448 FF ProfilePath: C:\Users\Florian\AppData\Roaming\mozilla\firefox\Profiles\mu29e7l7.default-release [2019-07-25] FF Homepage: mozilla\firefox\Profiles\mu29e7l7.default-release -> hxxps://www.google.fr/ FF Extension: (ETP Search Volume Study) - C:\Users\Florian\AppData\Roaming\mozilla\firefox\Profiles\mu29e7l7.default-release\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-07-18] FF ProfilePath: C:\Users\Florian\AppData\Roaming\mozilla\firefox\Profiles\mk06je6h.default-1483882484448 [2019-07-25] FF Extension: (Pas de nom) - C:\Users\Florian\AppData\Roaming\Mozilla\Firefox\Profiles\mk06je6h.default-1483882484448\extensions\arthurj8283@gmail.com [non trouvé(e)] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-11-08] (Adobe Systems Incorporated -> ) FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-11-08] (Adobe Systems Incorporated -> ) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2012-10-31] (Apple Inc. -> ) FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-05-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-09-13] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-09-13] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN) [Fichier non signé] FF Plugin-x32: @www.dlmanager.net/omaha/tools//Software Update;version=8 -> C:\Program Files (x86)\Software\Update\1.2.201.0\npSoftwareOneClick8.dll [Pas de fichier] FF Plugin HKU\S-1-5-21-2078028138-3213762506-5380699-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Pas de fichier] StartMenuInternet: FIREFOX.EXE - c:\program files (x86)\firefox\firefox.exe Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [bcjagnifjocnddgeknajocbkkhlgibem] - C:\Program Files (x86)\Chrome\surfcanyon.crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [415032 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [6845400 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2266296 2014-05-16] (Microsoft Corporation -> Microsoft Corporation) R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS -> EasyBits Software AS) [Fichier non signé] R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation -> NVIDIA Corporation) R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [Fichier non signé] S4 LightScribeService; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-11-22] (Hewlett-Packard Company) [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation -> NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation -> NVIDIA Corporation) R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1119768 2010-09-28] (PDF Complete -> PDF Complete Inc) R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [270336 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2365792 2012-09-19] (TuneUp Software -> TuneUp Software) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [37368 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [209304 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [263784 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [206624 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [61736 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42552 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [169160 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [112568 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [88208 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1031048 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [477336 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [225864 2019-07-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [387952 2019-07-25] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-07-25] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-07-25] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-07-25] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-07-25] (Malwarebytes Corporation -> Malwarebytes) S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R3 netr28x; C:\Windows\System32\DRIVERS\netr28x.sys [2556616 2013-09-23] (Mediatek Inc. -> Ralink Technology, Corp.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (Nvidia Corporation -> NVIDIA Corporation) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [517120 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-09-18] (TuneUp Software -> TuneUp Software) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [53760 2012-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) U0 aswVmm; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) Error(1) reading file: "C:\Windows\System32\Tasks\Programme de mise à jour en ligne de HP." 2019-07-25 19:03 - 2019-07-25 19:05 - 000038008 _____ C:\Users\Florian\Desktop\FRST.txt 2019-07-25 19:03 - 2019-07-25 19:03 - 000000000 ____D C:\FRST 2019-07-25 19:01 - 2019-07-25 19:01 - 002095104 _____ (Farbar) C:\Users\Florian\Desktop\farbar-recovery-scan-tool-64-bits_15-07-2019_fr_432987_64.exe 2019-07-25 18:59 - 2019-07-25 18:59 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2019-07-25 18:59 - 2019-07-25 18:59 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2019-07-25 18:58 - 2019-07-25 18:58 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2019-07-25 18:50 - 2019-07-25 18:57 - 000000000 ____D C:\AdwCleaner 2019-07-25 18:30 - 2019-07-25 18:30 - 007623880 _____ (Malwarebytes) C:\Users\Florian\Desktop\adwcleaner_7.4.exe 2019-07-25 18:19 - 2019-07-25 18:19 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2019-07-25 18:19 - 2019-07-25 18:19 - 000000000 ____D C:\Users\Florian\AppData\Local\mbamtray 2019-07-25 18:19 - 2019-07-25 18:19 - 000000000 ____D C:\Users\Florian\AppData\Local\mbam 2019-07-25 18:18 - 2019-07-25 18:18 - 000001829 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2019-07-25 18:18 - 2019-07-25 18:18 - 000000000 ____D C:\Program Files\Malwarebytes 2019-07-25 18:18 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2019-07-25 18:17 - 2019-07-25 18:18 - 064731688 _____ (Malwarebytes ) C:\Users\Florian\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.613-1.0.11698.exe 2019-07-24 10:33 - 2019-07-24 10:34 - 234455190 _____ C:\Users\Florian\Desktop\séance 04-04-1813.wav 2019-07-24 10:33 - 2019-07-24 10:26 - 234455190 _____ C:\Users\Florian\Desktop\séance 04-04-18120.wav 2019-07-24 10:25 - 2019-07-24 10:26 - 234455190 _____ C:\Users\Florian\Desktop\séance 04-04-1812.wav 2019-07-24 10:24 - 2019-07-24 10:18 - 234455190 _____ C:\Users\Florian\Desktop\séance 04-04-1811.wav 2019-07-24 10:24 - 2019-07-24 10:18 - 234455190 _____ C:\Users\Florian\Desktop\séance 04-04-1810.wav 2019-07-24 10:05 - 2019-07-24 14:56 - 000000000 ____D C:\Users\Florian\AppData\Roaming\audacity 2019-07-24 10:05 - 2019-07-24 10:05 - 000000965 _____ C:\Users\Public\Desktop\Audacity.lnk 2019-07-24 10:05 - 2019-07-24 10:05 - 000000000 ____D C:\Users\Florian\Documents\Audacity 2019-07-24 10:05 - 2019-07-24 10:05 - 000000000 ____D C:\Users\Florian\AppData\Local\Audacity 2019-07-24 10:05 - 2019-07-24 10:05 - 000000000 ____D C:\Program Files (x86)\Audacity 2019-07-24 10:03 - 2019-07-24 10:18 - 234455190 _____ C:\Users\Florian\Desktop\séance 04-04-181.wav 2019-07-24 10:02 - 2019-07-24 10:03 - 027908264 _____ (Audacity Team ) C:\Users\Florian\Downloads\audacity-win-2.3.2.exe 2019-07-19 23:24 - 2019-07-24 09:47 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-07-19 13:59 - 2019-07-19 13:59 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2019-07-18 17:31 - 2019-07-18 17:31 - 000001094 _____ C:\Users\Florian\Desktop\Battle.net.lnk 2019-07-18 15:33 - 2019-07-18 15:33 - 000263063 _____ C:\Users\Florian\Downloads\Manip ELAN.pdf 2019-07-18 15:16 - 2019-07-19 23:22 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update 2019-07-18 15:15 - 2019-07-18 15:15 - 020891464 _____ (Piriform Software Ltd) C:\Users\Florian\Downloads\ccsetup560.exe 2019-07-18 11:14 - 2019-07-18 11:14 - 000000886 _____ C:\Users\Public\Desktop\Firefox.lnk 2019-07-18 11:12 - 2019-07-18 11:12 - 000285696 _____ (Mozilla) C:\Users\Florian\Downloads\Firefox Installer.exe 2019-07-18 10:10 - 2019-07-18 10:10 - 000000000 ___HD C:\$AV_AVG 2019-07-18 10:07 - 2019-07-18 10:07 - 000001944 _____ C:\Users\Public\Desktop\AVG AntiVirus Gratuit.lnk 2019-07-18 10:07 - 2019-07-18 10:07 - 000000000 ____D C:\Users\Florian\AppData\Roaming\AVG 2019-07-18 10:07 - 2019-07-18 10:07 - 000000000 ____D C:\Users\Florian\AppData\Local\Avg 2019-07-18 10:06 - 2019-07-25 18:06 - 000387952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2019-07-18 10:06 - 2019-07-19 23:22 - 000004162 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update 2019-07-18 10:06 - 2019-07-18 10:06 - 000477336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2019-07-18 10:06 - 2019-07-18 10:06 - 000363440 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2019-07-18 10:06 - 2019-07-18 10:06 - 000225864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2019-07-18 10:06 - 2019-07-18 10:06 - 000169160 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2019-07-18 10:06 - 2019-07-18 10:06 - 000112568 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2019-07-18 10:06 - 2019-07-18 10:06 - 000088208 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2019-07-18 10:06 - 2019-07-18 10:06 - 000042552 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2019-07-18 10:06 - 2019-07-18 10:06 - 000000000 ____D C:\Windows\System32\Tasks\AVG 2019-07-18 10:06 - 2019-07-18 10:06 - 000000000 ____D C:\Program Files\Common Files\AVG 2019-07-18 10:06 - 2019-07-18 10:05 - 001031048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2019-07-18 10:06 - 2019-07-18 10:05 - 000263784 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2019-07-18 10:06 - 2019-07-18 10:05 - 000209304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2019-07-18 10:06 - 2019-07-18 10:05 - 000206624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys 2019-07-18 10:06 - 2019-07-18 10:05 - 000061736 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys 2019-07-18 10:06 - 2019-07-18 10:05 - 000037368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys 2019-07-18 10:04 - 2019-07-18 10:04 - 000268624 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Florian\Downloads\avg_antivirus_free_setup.exe 2019-07-18 10:04 - 2019-07-18 10:04 - 000000000 ____D C:\Program Files\AVG 2019-07-17 23:41 - 2019-07-17 23:41 - 000000000 _____ C:\Windows\SysWOW64\shoAE6.tmp 2019-07-17 12:43 - 2019-07-25 17:28 - 000545811 _____ C:\Users\Florian\Desktop\séance mémoire.eaf.001 2019-07-17 12:42 - 2019-07-25 17:28 - 000545811 _____ C:\Users\Florian\Desktop\séance mémoire.eaf 2019-07-17 12:38 - 2019-07-17 23:39 - 000000000 ____D C:\Users\Florian\Desktop\mémoire 2019-07-17 12:33 - 2019-07-25 17:28 - 000005833 _____ C:\Users\Florian\Desktop\séance mémoire.pfsx 2019-07-17 12:09 - 2019-07-17 12:19 - 947957760 _____ C:\Users\Florian\Downloads\séance 04-04-18.MTS 2019-07-17 12:05 - 2019-07-18 10:04 - 000000000 ____D C:\Users\Florian\.elan_data 2019-07-17 12:05 - 2019-07-17 12:05 - 000001635 _____ C:\Users\Public\Desktop\ELAN 5-7-FX.lnk 2019-07-17 12:05 - 2019-07-17 12:05 - 000000000 ____D C:\Program Files\ELAN_5-7-FX 2019-07-17 11:48 - 2019-07-17 11:51 - 075077742 _____ (Max Planck Institute for Psycholinguistics ) C:\Users\Florian\Downloads\ELAN_5-7-FX_win.exe 2019-07-16 22:20 - 2019-07-16 22:20 - 004902896 _____ (Blizzard Entertainment) C:\Users\Florian\Downloads\Battle.net-Setup.exe ==================== Un mois (modifiés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-07-25 19:02 - 2017-05-20 17:38 - 000000000 ____D C:\Users\Florian\AppData\LocalLow\Mozilla 2019-07-25 18:58 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-07-25 18:57 - 2015-05-05 18:38 - 000000000 ____D C:\Windows\system32\log 2019-07-25 18:57 - 2009-07-14 06:45 - 000015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-07-25 18:57 - 2009-07-14 06:45 - 000015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-07-25 18:50 - 2017-05-25 16:10 - 000000000 ____D C:\Users\Florian\AppData\Local\background_fault 2019-07-25 18:48 - 2017-05-11 16:49 - 000000000 ____D C:\Program Files (x86)\Firefox 2019-07-25 18:18 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2019-07-25 18:17 - 2011-07-26 03:52 - 000745736 _____ C:\Windows\system32\perfh00C.dat 2019-07-25 18:17 - 2011-07-26 03:52 - 000148996 _____ C:\Windows\system32\perfc00C.dat 2019-07-25 18:17 - 2009-07-14 07:13 - 001664190 _____ C:\Windows\system32\PerfStringBackup.INI 2019-07-25 17:53 - 2017-05-25 16:10 - 000000000 ____D C:\Users\Florian\AppData\Local\CrashDumps 2019-07-25 17:51 - 2011-12-12 22:29 - 000000000 ____D C:\Users\Florian\AppData\Roaming\vlc 2019-07-24 09:47 - 2014-01-21 21:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-07-23 14:38 - 2013-07-19 11:10 - 000001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2019-07-19 23:23 - 2014-10-11 19:33 - 000000000 ____D C:\Users\Florian\AppData\Local\Battle.net 2019-07-19 23:22 - 2015-12-06 18:49 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software 2019-07-19 23:22 - 2015-03-04 11:53 - 000003256 _____ C:\Windows\System32\Tasks\avastBCLRestartS-1-5-21-2078028138-3213762506-5380699-1001 2019-07-19 23:22 - 2013-07-19 11:10 - 000003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2019-07-19 23:22 - 2012-12-16 15:19 - 000002770 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 2019-07-19 23:22 - 2012-12-15 20:36 - 000003704 _____ C:\Windows\System32\Tasks\Java Update Scheduler 2019-07-19 23:22 - 2012-02-07 19:23 - 000003286 _____ C:\Windows\System32\Tasks\{76CFA576-FE91-48B1-B35F-3D7CD9544501} 2019-07-19 22:17 - 2015-12-06 18:48 - 000000000 ____D C:\Program Files\Common Files\AV 2019-07-18 15:16 - 2013-08-20 11:03 - 000000784 _____ C:\Users\Public\Desktop\CCleaner.lnk 2019-07-18 15:16 - 2011-12-11 15:20 - 000000000 ____D C:\Program Files\CCleaner 2019-07-18 11:14 - 2012-09-23 15:34 - 000000000 ____D C:\Users\Florian\AppData\Roaming\mozilla 2019-07-18 10:10 - 2017-05-25 16:07 - 000000000 ____D C:\Users\Florian\AppData\Local\snare 2019-07-17 23:39 - 2014-11-01 12:27 - 000000000 ____D C:\Users\Florian\Desktop\Fac 2019-07-17 16:27 - 2011-07-26 03:11 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard 2019-07-17 12:05 - 2011-11-23 19:00 - 000000000 ____D C:\Users\Florian 2019-07-17 11:44 - 2014-10-11 19:33 - 000000000 ____D C:\Program Files (x86)\Battle.net 2019-07-17 11:42 - 2009-07-14 07:08 - 000032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2019-07-16 22:28 - 2017-01-07 22:41 - 000000000 ____D C:\Program Files (x86)\Popcorn Time 2019-07-16 22:22 - 2013-11-11 12:51 - 000000000 ____D C:\Users\Florian\AppData\Local\Blizzard Entertainment ==================== Fichiers à la racine de certains dossiers ================ 2012-01-31 00:44 - 2012-09-22 16:37 - 000000006 _____ () C:\Program Files (x86)\Common Files\WPVersion.txt 2014-02-16 15:26 - 2014-02-16 15:26 - 000001856 _____ () C:\Users\Florian\AppData\Roaming\GhostObjGAFix.xml 2013-12-19 13:14 - 2016-05-19 22:14 - 000000093 _____ () C:\Users\Florian\AppData\Roaming\WB.CFG 2014-01-21 20:47 - 2014-01-21 20:47 - 000000005 _____ () C:\Users\Florian\AppData\Roaming\WBPU-TTL.DAT ==================== SigCheck =============================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) LastRegBack: 2013-08-18 19:44 ==================== Fin de FRST.txt ============================