Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-04-2020
Exécuté par FOUFATE (administrateur) sur PC-SALON (ASUSTeK Computer INC. ET2232I) (13-04-2020 16:07:14)
Exécuté depuis D:\Users\FOUFATE\Desktop
Profils chargés: FOUFATE (Profils disponibles: FOUFATE & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(ASUSTeK Computer Inc. -> ) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Key Suite\AsKeySuite.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe
(ASUSTeK Computer Inc. -> ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe
(MAGIX AG) [Fichier non signé] C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AWiC] => C:\Program Files (x86)\Qualcomm Atheros\AWiCMgr.exe [179840 2014-05-14] (Qualcomm Atheros -> Atheros) [Fichier non signé]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\...\Run: [CCleaner Smart Cleaning] => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\...\Run: [Chromium] => "c:\users\foufate\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\FlowSync.exe [1397248 2018-09-17] (Polar Electro Oy) [Fichier non signé]
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\...\MountPoints2: {606adeee-c739-11e9-82ce-ac9e17a80580} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\...\MountPoints2: {885c3d1c-6c0a-11e9-82c5-ac9e17a80580} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\...\MountPoints2: {885c3d8e-6c0a-11e9-82c5-ac9e17a80580} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\...\MountPoints2: {926f8e28-5bbe-11ea-82e8-ac9e17a80580} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk [2016-03-13]
ShortcutTarget: ImageBrowser EX Agent.lnk -> C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe () [Fichier non signé]
GroupPolicy-x32: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {10B4D1D2-A6C9-49F8-AE86-83884908A254} - System32\Tasks\ASUS\SyncUp => C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
Task: {6D4515BD-6280-4BEB-970B-B5646B551F5C} - System32\Tasks\ASUS\Power_Manager_background => C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe
Task: {709D5731-5997-4AF3-93E1-437921ED2016} - System32\Tasks\ASUS\ASUS Key Suite Helper => C:\Program Files (x86)\ASUS\ASUS Key Suite\AsKeySuite.exe [2178872 2014-08-16] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {88C5706C-085D-469F-AE0F-D90BCDD7B4AB} - System32\Tasks\ASUS\ASUS Manager - PC Cleanup - SecureDeleteBackground => C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe [930448 2014-06-04] (ASUSTeK Computer Inc. -> ) [Fichier non signé]
Task: {88CA5AC7-E13F-438A-AE36-96257BF737C2} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [21784 2015-02-02] (ASUSTeK Computer Inc. -> )
Task: {99B9B40E-2B5C-4BDB-AA68-5466490E2460} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C1322033-84F2-47E0-A3F3-B040D5C57708} - System32\Tasks\ASUS\ASUS AiCharger_II TrayIcon => C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe [297784 2015-07-07] (ASUSTeK Computer Inc. -> ASUSTeK)
Task: {DE6C2C7F-016E-4D69-9058-442268168889} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [922576 2016-07-15] (ASUSTeK Computer Inc. -> )
Task: {EAF3B414-0B7E-4FDE-8C0B-CE2A38064251} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [225592 2014-03-19] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {F7AE33EA-46E2-4E1B-B986-598EBF4A3CB0} - System32\Tasks\ASUS\ASUS Updater => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe [940496 2016-07-15] (ASUSTeK Computer Inc. -> )
Task: {FA37A921-0036-484B-B08B-509794D64C87} - System32\Tasks\ASUS\ASUS AiCharger_Desktop Execute => C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe [548512 2013-04-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\McAfee Cleanup.job => C:\Users\FOUFATE\AppData\Local\Temp\MCPR.tmp\mccleanup.exeČ-p mpfpcu,mpfp,mps,shred,mpscu,mskcu,msk,emproxy,mas,fwdriver,hw,mbk,mcproxy,mhn,mqccu,mqc,shrd,nmc,redir,mna,mwl,msad,vs,msc,mcpr -log C:\Users\FOUFATE\AppData\Local\Temp -w C:\Users\FOUFATE\AppData\Local\Temp\MCPR.tmp <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3F90E32C-B276-4DE7-AFD7-377AFA9E8479}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{DC0B8249-A4E4-4C5C-BB42-1F27F8929A92}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-578986011-4052719449-1834885046-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-578986011-4052719449-1834885046-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll Pas de fichier
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll Pas de fichier
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll Pas de fichier

FireFox:
========
FF DefaultProfile: 0m6tu472.default
FF ProfilePath: C:\Users\FOUFATE\AppData\Roaming\Mozilla\Firefox\Profiles\0m6tu472.default [2020-04-13]
FF user.js: detected! => C:\Users\FOUFATE\AppData\Roaming\Mozilla\Firefox\Profiles\0m6tu472.default\user.js [2019-10-28]
FF Homepage: Mozilla\Firefox\Profiles\0m6tu472.default -> hxxp://www.orange.fr/portail
FF HomepageOverride: Mozilla\Firefox\Profiles\0m6tu472.default -> Disabled: _b7Members0619_@free.mytransitguide.com
FF NewTabOverride: Mozilla\Firefox\Profiles\0m6tu472.default -> Disabled: _b7Members0619_@free.mytransitguide.com
FF Extension: (Avast Online Security) - C:\Users\FOUFATE\AppData\Roaming\Mozilla\Firefox\Profiles\0m6tu472.default\Extensions\wrc@avast.com.xpi [2020-03-06]
FF Extension: (Video DownloadHelper) - C:\Users\FOUFATE\AppData\Roaming\Mozilla\Firefox\Profiles\0m6tu472.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-30]
FF HKLM-x32\...\Firefox\Extensions: [PointGrab@PointGrab.com] - C:\Program Files (x86)\PointGrab\Hand Gesture Control\PointGrab.xpi
FF Extension: (PointGrab) - C:\Program Files (x86)\PointGrab\Hand Gesture Control\PointGrab.xpi [2014-04-23] [] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_207.dll [2019-06-15] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_207.dll [2019-06-15] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Pas de fichier]
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default [2020-03-18]
CHR Extension: (Slides) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-05-25]
CHR Extension: (Docs) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-25]
CHR Extension: (Google Drive) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-25]
CHR Extension: (YouTube) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-06]
CHR Extension: (Avast Online Security) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-28]
CHR Extension: (Gmail) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-25]
CHR Extension: (Chrome Media Router) - C:\Users\FOUFATE\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AWiCSrvc; C:\Program Files (x86)\Qualcomm Atheros\AWiCSrvc.exe [50816 2014-05-14] (Qualcomm Atheros -> Atheros Communications) [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-24] (MAGIX AG) [Fichier non signé]
S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Fichier non signé]
S4 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation - pGFX -> Intel Corporation)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [Fichier non signé]
S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S4 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-02-27] (Malwarebytes Inc -> Malwarebytes)
S4 PGService; C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe [64776 2014-04-23] (PointGrab Ltd -> PointGrab LTD)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-09-07] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-09-07] (Microsoft Corporation -> Microsoft Corporation)
S3 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
S2 MBAMInstallerService; C:\Users\FOUFATE\AppData\Local\Temp\MBAMInstallerService.exe [X] <==== ATTENTION

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AiChargerDT; C:\Windows\SysWow64\drivers\AiChargerDT.sys [14880 2012-10-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [74240 2013-07-05] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R0 assdv2; C:\Windows\System32\Drivers\assdv2.sys [21816 2013-12-05] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] (ASUSTeK Computer Inc. -> )
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4226560 2014-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2020-01-08] (Malwarebytes Inc -> Malwarebytes)
S3 PVUSB; C:\WINDOWS\System32\drivers\CESG64.sys [63808 2007-02-19] (CASIO COMPUTER CO.,LTD. -> CASIO COMPUTER CO.,LTD.)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbwwan; C:\WINDOWS\system32\DRIVERS\qcusbwwan.sys [557112 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation - Client Components Group -> Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [35856 2014-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [257880 2014-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123224 2014-09-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-04-13 11:02 - 2020-04-13 11:02 - 000099924 _____ C:\WINDOWS\ntbtlog.txt
2020-04-12 19:59 - 2020-04-12 19:59 - 000000000 ____D C:\WINDOWS\Panther
2020-04-12 19:35 - 2020-04-13 09:43 - 000000000 ___HD C:\$WINDOWS.~BT
2020-04-07 20:16 - 2020-04-07 20:51 - 000001050 _____ C:\Users\FOUFATE\Desktop\WinDirStat.lnk
2020-04-07 20:16 - 2020-04-07 20:51 - 000001050 _____ C:\Users\Administrator\Desktop\WinDirStat.lnk
2020-04-07 20:16 - 2020-04-07 20:16 - 000000000 ____D C:\Users\FOUFATE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2020-04-07 20:16 - 2020-04-07 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
2020-04-07 20:16 - 2020-04-07 20:16 - 000000000 ____D C:\Program Files (x86)\WinDirStat
2020-04-04 19:46 - 2020-04-04 19:46 - 000001178 _____ C:\Users\Public\Desktop\Polar FlowSync.lnk
2020-04-04 19:46 - 2020-04-04 19:46 - 000001178 _____ C:\ProgramData\Desktop\Polar FlowSync.lnk
2020-04-04 19:46 - 2020-04-04 19:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polar
2020-04-04 19:46 - 2020-04-04 19:46 - 000000000 ____D C:\Program Files (x86)\Polar
2020-04-04 15:04 - 2020-04-04 15:05 - 000003584 _____ C:\Users\FOUFATE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-04-03 20:53 - 2020-04-03 20:53 - 000000000 __SHD C:\Users\FOUFATE\AppData\LocalLow\EmieUserList
2020-04-03 20:53 - 2020-04-03 20:53 - 000000000 __SHD C:\Users\FOUFATE\AppData\LocalLow\EmieSiteList
2020-03-25 21:36 - 2020-03-25 21:36 - 000000207 _____ C:\WINDOWS\tweaking.com-regbackup-PC-SALON-Windows-8.1-(64-bit).dat
2020-03-25 20:37 - 2020-03-25 20:37 - 000000000 ____D C:\RegBackup
2020-03-25 20:36 - 2020-03-25 20:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2020-03-25 20:35 - 2020-03-25 20:36 - 000328300 _____ C:\WINDOWS\Tweaking.com - Windows Repair Setup Log.txt
2020-03-25 20:35 - 2020-03-25 20:35 - 000000000 ____D C:\Program Files (x86)\Tweaking.com

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-04-13 16:08 - 2020-02-26 21:44 - 000000000 ____D C:\FRST
2020-04-13 16:05 - 2016-11-16 10:27 - 000000000 ____D C:\Users\FOUFATE\AppData\LocalLow\Mozilla
2020-04-13 14:55 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-04-13 10:24 - 2016-04-23 19:54 - 000000000 ____D C:\Users\FOUFATE\AppData\Local\ElevatedDiagnostics
2020-04-12 20:33 - 2013-08-22 15:25 - 000524288 ___SH C:\WINDOWS\system32\config\BBI
2020-04-12 20:32 - 2016-03-13 14:34 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2020-04-12 20:32 - 2016-03-13 14:34 - 000001908 _____ C:\WINDOWS\diagerr.xml
2020-04-12 20:30 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2020-04-12 20:19 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\Registration
2020-04-12 16:26 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-04-11 20:53 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-11 19:55 - 2016-06-26 12:01 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-04-11 19:54 - 2020-01-26 16:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-04-11 19:53 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2020-04-11 16:34 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-04-10 16:23 - 2020-02-19 12:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-04-10 16:23 - 2016-03-13 15:22 - 000001178 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-04-09 07:36 - 2014-09-06 22:52 - 000449674 _____ C:\WINDOWS\system32\prfh0404.dat
2020-04-09 07:36 - 2014-09-06 22:52 - 000135332 _____ C:\WINDOWS\system32\prfc0404.dat
2020-04-09 07:36 - 2014-09-06 22:28 - 000435308 _____ C:\WINDOWS\system32\prfh0804.dat
2020-04-09 07:36 - 2014-09-06 22:28 - 000135332 _____ C:\WINDOWS\system32\prfc0804.dat
2020-04-09 07:36 - 2014-09-06 22:08 - 000714616 _____ C:\WINDOWS\system32\perfh01F.dat
2020-04-09 07:36 - 2014-09-06 22:08 - 000149762 _____ C:\WINDOWS\system32\perfc01F.dat
2020-04-09 07:36 - 2014-09-06 21:53 - 000724478 _____ C:\WINDOWS\system32\perfh01D.dat
2020-04-09 07:36 - 2014-09-06 21:53 - 000151834 _____ C:\WINDOWS\system32\perfc01D.dat
2020-04-09 07:36 - 2014-09-06 21:37 - 000788558 _____ C:\WINDOWS\system32\prfh0816.dat
2020-04-09 07:36 - 2014-09-06 21:37 - 000163630 _____ C:\WINDOWS\system32\prfc0816.dat
2020-04-09 07:36 - 2014-09-06 21:22 - 000797214 _____ C:\WINDOWS\system32\perfh013.dat
2020-04-09 07:36 - 2014-09-06 21:22 - 000161794 _____ C:\WINDOWS\system32\perfc013.dat
2020-04-09 07:36 - 2014-09-06 21:06 - 000440562 _____ C:\WINDOWS\system32\perfh014.dat
2020-04-09 07:36 - 2014-09-06 21:06 - 000076716 _____ C:\WINDOWS\system32\perfc014.dat
2020-04-09 07:36 - 2014-09-06 20:47 - 000792962 _____ C:\WINDOWS\system32\perfh010.dat
2020-04-09 07:36 - 2014-09-06 20:47 - 000155884 _____ C:\WINDOWS\system32\perfc010.dat
2020-04-09 07:36 - 2014-09-06 20:34 - 000811108 _____ C:\WINDOWS\system32\perfh00C.dat
2020-04-09 07:36 - 2014-09-06 20:34 - 000159206 _____ C:\WINDOWS\system32\perfc00C.dat
2020-04-09 07:36 - 2014-09-06 20:22 - 000426168 _____ C:\WINDOWS\system32\perfh00B.dat
2020-04-09 07:36 - 2014-09-06 20:22 - 000081252 _____ C:\WINDOWS\system32\perfc00B.dat
2020-04-09 07:36 - 2014-09-06 20:12 - 000799622 _____ C:\WINDOWS\system32\perfh00A.dat
2020-04-09 07:36 - 2014-09-06 20:12 - 000166014 _____ C:\WINDOWS\system32\perfc00A.dat
2020-04-09 07:36 - 2014-09-06 19:54 - 000541594 _____ C:\WINDOWS\system32\perfh008.dat
2020-04-09 07:36 - 2014-09-06 19:54 - 000088660 _____ C:\WINDOWS\system32\perfc008.dat
2020-04-09 07:36 - 2014-09-06 19:46 - 000754050 _____ C:\WINDOWS\system32\perfh007.dat
2020-04-09 07:36 - 2014-09-06 19:46 - 000158702 _____ C:\WINDOWS\system32\perfc007.dat
2020-04-09 07:36 - 2014-09-06 19:36 - 000455470 _____ C:\WINDOWS\system32\perfh006.dat
2020-04-09 07:36 - 2014-09-06 19:36 - 000079224 _____ C:\WINDOWS\system32\perfc006.dat
2020-04-09 07:36 - 2014-03-18 12:03 - 011641410 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-09 07:28 - 2013-08-22 16:44 - 000573736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-04-07 20:16 - 2016-03-13 14:35 - 000000000 ____D C:\Users\FOUFATE
2020-04-04 23:34 - 2019-07-12 18:57 - 000000000 ____D C:\Users\FOUFATE\AppData\Local\CrashDumps
2020-04-02 01:49 - 2016-03-15 19:00 - 000744808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-03-26 00:23 - 2013-08-22 15:25 - 000000855 _____ C:\WINDOWS\system32\Drivers\etc\hosts_bak_319
2020-03-18 11:59 - 2017-02-16 12:54 - 000000000 ____D C:\Program Files (x86)\Google

==================== Fichiers à la racine de certains dossiers ========

2019-10-28 20:48 - 2019-11-03 13:31 - 000000100 _____ () C:\Users\FOUFATE\AppData\Roaming\Camdata.ini
2019-10-28 20:48 - 2019-11-03 13:31 - 000000408 _____ () C:\Users\FOUFATE\AppData\Roaming\CamLayout.ini
2019-10-28 20:48 - 2019-11-03 13:31 - 000000408 _____ () C:\Users\FOUFATE\AppData\Roaming\CamShapes.ini
2019-10-28 20:48 - 2019-11-03 13:31 - 000004547 _____ () C:\Users\FOUFATE\AppData\Roaming\CamStudio.cfg
2016-10-25 10:17 - 2016-11-23 20:59 - 000073980 _____ () C:\Users\FOUFATE\AppData\Roaming\log.dat
2019-10-28 20:47 - 2019-11-02 13:56 - 000000096 _____ () C:\Users\FOUFATE\AppData\Roaming\version2.xml
2020-04-04 15:04 - 2020-04-04 15:05 - 000003584 _____ () C:\Users\FOUFATE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-30 20:02 - 2018-09-30 20:02 - 000000000 _____ () C:\Users\FOUFATE\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2020-04-09 10:27
==================== Fin de FRST.txt ========================