Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01.09.2018 03
Exécuté par Jacques (administrateur) sur JC (07-09-2018 19:00:39)
Exécuté depuis C:\Users\Jacques\Desktop\Outils
Profils chargés: Jacques (Profils disponibles: Jacques)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Innovative Solutions) C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe
() C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
(Orange) C:\Users\Jacques\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(DEVGURU Co., LTD.) D:\SamsungSmartSwitch\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(The CefSharp Authors) C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1735288 2016-09-30] (Logitech, Inc.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-11-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318112 2017-10-18] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (CANON INC.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-11-30] (Google Inc.)
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\Run: [Orange Installer] => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [476760 2015-01-19] ()
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\Run: [grwinHyper] => C:\Program Files (x86)\Le Robert\Le Grand Robert\grwinHyper.exe [1118208 2016-09-05] (Bureau Van Dijk – Dictionnaires Le Robert)
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\Run: [SmartSwitchPDLR.exe] => D:\SamsungSmartSwitch\SmartSwitchPC\SmartSwitchPDLR.exe [1184928 2018-05-02] (Samsung)
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30784504 2018-08-31] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\MountPoints2: {6f6be6a3-995f-11e8-a092-3085a90cedbb} - "L:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\MountPoints2: {7904f8ca-8164-11e4-8279-3085a90cedbb} - "K:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\MountPoints2: {e60ce8f5-9967-11e8-a095-3085a90cedbb} - "L:\HiSuiteDownLoader.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation)
Startup: C:\Users\Jacques\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trust.Zone VPN Client.lnk [2018-01-05]
ShortcutTarget: Trust.Zone VPN Client.lnk -> C:\Program Files\Trust.Zone VPN Client\trustzone_x64.exe (Pas de fichier)
BootExecute:

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1CFDC67B-B192-48F3-BEFC-6DC6C23CC1C8}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{1CFDC67B-B192-48F3-BEFC-6DC6C23CC1C8}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131154567481998774&GUID=B8B89623-654B-4438-AB91-1F43B002FB9F
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131154567482006369&GUID=B8B89623-654B-4438-AB91-1F43B002FB9F
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131154567481998774&GUID=B8B89623-654B-4438-AB91-1F43B002FB9F
HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://r.orange.fr/r/Oodc_oi_odc?ref=O_OI_defaultPage_IEe64_w81e64_odc
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2018-06-20] (Internet Download Manager, Tonec Inc.)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2018-06-20] (Internet Download Manager, Tonec Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKU\S-1-5-21-2152729796-1268659573-3007759190-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1471525312027
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: vmblls0h.default-1531477366801
FF ProfilePath: C:\Users\Jacques\AppData\Roaming\Mozilla\Firefox\Profiles\vmblls0h.default-1531477366801 [2018-09-07]
FF Homepage: Mozilla\Firefox\Profiles\vmblls0h.default-1531477366801 -> hxxps://r.orange.fr/r/Oodc_oi_odc?ref=O_OI_defaultPage_FFe64_w81e64_odc
FF HomepageOverride: Mozilla\Firefox\Profiles\vmblls0h.default-1531477366801 -> Enabled: qwantcomforfirefox@jetpack
FF Extension: (Oui) - C:\Users\Jacques\AppData\Roaming\Mozilla\Firefox\Profiles\vmblls0h.default-1531477366801\Extensions\qwantcomforfirefox@jetpack.xpi [2018-08-22]
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: (Freemake Video Converter Plugin) - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2017-01-03] [Legacy] [non signé]
FF HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2018-06-25]
FF HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF HKU\S-1-5-21-2152729796-1268659573-3007759190-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jacques\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Jacques\AppData\Roaming\IDM\idmmzcc5 [2017-03-31] [Legacy] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-08-14] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-08-14] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3Andreas\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2016-02-29] (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxp://www.qwant.com/"
CHR DefaultSearchURL: Default -> hxxps://www.qwant.com/?q={searchTerms}&client=ext-chrome-sb
CHR DefaultSearchKeyword: Default -> www.qwant.com
CHR DefaultSuggestURL: Default -> hxxps://api.qwant.com/api/suggest/?q={searchTerms}&client=opensearch&lang=fr_fr
CHR Profile: C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default [2018-09-07]
CHR Extension: (Slides) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-05-14]
CHR Extension: (Docs) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-14]
CHR Extension: (Google Drive) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-05-14]
CHR Extension: (YouTube) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-14]
CHR Extension: (Adobe Acrobat) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-05-15]
CHR Extension: (Sheets) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-05-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-05-14]
CHR Extension: (Qwant) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2018-08-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-14]
CHR Extension: (Gmail) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-05-14]
CHR Extension: (Chrome Media Router) - C:\Users\Jacques\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-21]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-07-10]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-07-10]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [29912 2015-05-11] (AOMEI Tech Co., Ltd.) [Fichier non signé]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] () [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [391744 2017-07-11] ()
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2015-11-20] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S2 Orange update Core Service; C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe [1082016 2012-10-05] (France Telecom SA)
R2 ss_conn_service; D:\SamsungSmartSwitch\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
S3 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [1223024 2010-04-09] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.228\WsAppService.exe [493280 2017-07-28] (Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe [102112 2017-08-10] (Wondershare)
S2 Dedicarz Service; pas de ImagePath
S2 FreemakeVideoCapture; pas de ImagePath
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [30648 2015-02-26] () [Fichier non signé]
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [151480 2015-02-26] () [Fichier non signé]
S3 ampa; C:\Windows\system32\ampa.sys [17008 2013-12-18] () [Fichier non signé]
S3 ampa; C:\Windows\SysWOW64\ampa.sys [17008 2013-12-18] () [Fichier non signé]
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [17848 2015-02-26] () [Fichier non signé]
S3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [31920 2013-06-02] (Wondershare)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2018-04-20] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-04-20] (Huawei Technologies Co., Ltd.)
S3 LcUvcUpper; C:\Windows\system32\DRIVERS\LcUvcUpper.sys [34424 2015-02-09] (Microsoft Corporation)
S3 LifeCamTrueColor; C:\Windows\system32\DRIVERS\LifeCamTrueColor.sys [37936 2016-07-27] (Microsoft Corporation)
S3 Neo_VPN; C:\Windows\system32\DRIVERS\neo_vpn.sys [22784 2018-01-05] (Trust.Zone VPN Project)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-09-04] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R1 nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys [314808 2017-01-25] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S3 ssm_bus; C:\Windows\System32\drivers\ssm_bus.sys [136192 2016-01-08] (MCCI Corporation)
S3 ssm_mdfl; C:\Windows\system32\DRIVERS\ssm_mdfl.sys [18944 2016-01-08] (MCCI Corporation)
S3 ssm_mdm; C:\Windows\system32\DRIVERS\ssm_mdm.sys [172032 2016-01-08] (MCCI Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-09-07 13:26 - 2018-09-07 19:00 - 000000000 ____D C:\FRST
2018-09-07 11:55 - 2018-09-07 11:55 - 000385501 _____ C:\Users\Jacques\Desktop\ZHPDiag.txt
2018-09-07 11:48 - 2018-09-07 11:48 - 000000000 ____D C:\Users\Jacques\AppData\Local\ZHP
2018-09-02 11:10 - 2018-09-02 11:10 - 000000000 ____D C:\Users\Jacques\Documents\Mon Garmin
2018-09-02 11:08 - 2018-09-02 11:08 - 000000000 ____D C:\Users\Jacques\AppData\Local\GARMIN_Corp
2018-09-01 11:41 - 2018-09-01 11:41 - 003124067 _____ C:\Users\Jacques\Downloads\Drive_51_61_OM_FR.pdf
2018-09-01 11:09 - 2018-09-01 11:09 - 000000000 ____D C:\Users\Jacques\Documents\Garmin
2018-09-01 11:03 - 2018-09-01 11:03 - 000000000 ____D C:\Users\Jacques\AppData\Local\Garmin_Ltd._or_its_subsid
2018-09-01 11:02 - 2018-09-02 11:08 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\Garmin
2018-09-01 11:02 - 2018-09-02 11:08 - 000000000 ____D C:\Users\Jacques\AppData\Local\Garmin
2018-09-01 11:02 - 2018-09-02 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2018-09-01 11:02 - 2018-09-01 16:58 - 000000000 ____D C:\Program Files (x86)\Garmin
2018-09-01 11:02 - 2018-09-01 16:57 - 000000000 ____D C:\ProgramData\Garmin
2018-09-01 11:02 - 2018-09-01 11:02 - 000003556 _____ C:\Windows\System32\Tasks\GarminUpdaterTask
2018-09-01 11:02 - 2018-09-01 11:02 - 000000000 ____D C:\Program Files\DIFX
2018-08-31 10:09 - 2018-08-21 13:29 - 025745920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-08-31 10:09 - 2018-08-21 12:57 - 005777408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-08-31 10:09 - 2018-08-21 12:44 - 020286976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-08-31 10:09 - 2018-08-21 12:32 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-08-31 10:09 - 2018-08-21 12:20 - 015283712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-08-31 10:09 - 2018-08-21 12:16 - 004510720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-08-31 10:09 - 2018-08-21 12:05 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-08-31 10:09 - 2018-08-21 12:04 - 001554944 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-08-31 10:09 - 2018-08-21 12:03 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-08-31 10:09 - 2018-08-21 11:45 - 004037632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-08-31 10:09 - 2018-08-21 11:41 - 001329152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-08-31 10:09 - 2018-07-24 19:50 - 006522344 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2018-08-31 10:09 - 2018-07-24 19:50 - 001488008 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2018-08-31 10:09 - 2018-07-24 19:50 - 000261408 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2018-08-31 10:09 - 2018-07-06 19:14 - 000346112 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2018-08-31 10:09 - 2018-07-06 18:22 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll
2018-08-31 10:09 - 2018-07-06 01:17 - 001115648 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2018-08-31 10:09 - 2018-06-26 17:25 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2018-08-31 10:09 - 2018-06-26 17:14 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2018-08-31 10:09 - 2018-06-21 15:31 - 001200640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2018-08-31 10:09 - 2018-06-21 15:30 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2018-08-31 10:08 - 2018-08-21 13:07 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-08-31 10:08 - 2018-08-21 12:57 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-08-31 10:08 - 2018-08-21 12:28 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-08-31 10:08 - 2018-08-21 12:24 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-08-31 10:08 - 2018-08-21 12:20 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-08-31 10:08 - 2018-08-21 12:03 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-08-31 10:08 - 2018-08-21 11:58 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-08-31 10:08 - 2018-08-21 11:52 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-08-31 10:08 - 2018-08-21 11:39 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-08-31 10:08 - 2018-06-21 15:24 - 000513456 _____ C:\Windows\SysWOW64\locale.nls
2018-08-31 10:08 - 2018-06-21 15:24 - 000513456 _____ C:\Windows\system32\locale.nls
2018-08-27 17:38 - 2018-08-27 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMend
2018-08-27 10:17 - 2018-08-27 10:17 - 000004096 ____H C:\Users\Jacques\AppData\Local\keyfile3.drm
2018-08-18 18:31 - 2018-08-18 18:31 - 000001087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2018-08-18 18:31 - 2018-08-18 18:31 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\Canneverbe Limited
2018-08-18 18:31 - 2018-08-18 18:31 - 000000000 ____D C:\ProgramData\Canneverbe Limited
2018-08-18 18:31 - 2018-08-18 18:31 - 000000000 ____D C:\Program Files (x86)\CDBurnerXP
2018-08-18 18:30 - 2018-08-18 18:30 - 006401856 _____ (Canneverbe Limited ) C:\Users\Jacques\Downloads\cdbxp_setup_4.5.8.6795.exe
2018-08-18 18:23 - 2018-08-18 18:23 - 000000000 ____D C:\Program Files (x86)\Alex Feinman
2018-08-18 15:24 - 2018-08-18 15:24 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\DeepBurner
2018-08-18 15:24 - 2018-08-18 15:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeepBurner
2018-08-18 15:23 - 2018-08-18 15:23 - 000000000 ____D C:\Program Files (x86)\Astonsoft
2018-08-18 15:15 - 2018-08-18 15:15 - 000789504 _____ C:\Users\Jacques\Downloads\iso-recorder_3-1_fr_36463_32.msi
2018-08-17 11:41 - 2018-08-17 12:50 - 000000000 ____D C:\Users\Jacques\VirtualBox VMs
2018-08-17 11:41 - 2018-08-17 12:50 - 000000000 ____D C:\Users\Jacques\.VirtualBox
2018-08-17 11:33 - 2018-08-17 11:33 - 113983488 _____ (Oracle Corporation) C:\Users\Jacques\Downloads\VirtualBox-5.2.18-124319-Win.exe
2018-08-15 10:19 - 2018-07-19 09:06 - 007371616 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-08-15 10:19 - 2018-07-19 08:48 - 001737600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-08-15 10:19 - 2018-07-19 06:35 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-08-15 10:19 - 2018-07-19 06:33 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-08-15 10:19 - 2018-07-19 06:23 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-08-15 10:19 - 2018-07-19 06:22 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2018-08-15 10:19 - 2018-07-19 06:21 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-08-15 10:19 - 2018-07-19 06:03 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-08-15 10:19 - 2018-07-19 06:01 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-08-15 10:19 - 2018-07-19 05:55 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2018-08-15 10:19 - 2018-07-19 05:54 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-08-15 10:19 - 2018-07-19 05:47 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-08-15 10:19 - 2018-07-19 05:45 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-08-15 10:19 - 2018-07-19 05:43 - 002136064 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-08-15 10:19 - 2018-07-19 05:30 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-08-15 10:19 - 2018-07-19 05:28 - 002882048 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2018-08-15 10:19 - 2018-07-19 05:28 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-08-15 10:19 - 2018-07-19 05:28 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-08-15 10:19 - 2018-07-19 05:17 - 001049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2018-08-15 10:19 - 2018-07-07 20:33 - 001548632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-08-15 10:19 - 2018-07-07 19:05 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-08-15 10:19 - 2018-07-07 19:02 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-08-15 10:19 - 2018-07-07 19:00 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2018-08-15 10:19 - 2018-07-07 18:33 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-08-15 10:19 - 2018-07-07 18:31 - 000113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2018-08-15 10:19 - 2018-07-06 19:37 - 001754624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2018-08-15 10:19 - 2018-07-06 18:36 - 001491968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2018-08-15 10:19 - 2018-06-30 20:00 - 001113952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2018-08-15 10:19 - 2018-06-24 17:11 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2018-08-15 10:19 - 2018-06-24 17:04 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2018-08-15 10:19 - 2018-06-19 15:38 - 003611136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2018-08-15 10:19 - 2018-06-19 15:38 - 003321344 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2018-08-15 10:19 - 2018-06-19 15:31 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2018-08-15 10:19 - 2018-06-19 15:29 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2018-08-15 10:19 - 2018-06-16 17:03 - 002779136 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2018-08-15 10:19 - 2018-06-16 16:59 - 002464256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2018-08-14 06:58 - 2018-08-14 06:58 - 000222864 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetLwf.sys
2018-08-14 06:58 - 2018-08-14 06:58 - 000213080 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp6.sys
2018-08-11 12:01 - 2018-08-11 12:03 - 000000000 ____D C:\pilotes

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-09-07 19:00 - 2015-03-01 11:29 - 000000000 ___RD C:\Users\Jacques\Desktop\Outils
2018-09-07 18:59 - 2016-11-19 11:22 - 000000000 ____D C:\Users\Jacques\AppData\LocalLow\Mozilla
2018-09-07 18:35 - 2014-11-30 13:59 - 001817064 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-07 18:35 - 2013-08-23 00:24 - 000806842 _____ C:\Windows\system32\perfh00C.dat
2018-09-07 18:35 - 2013-08-23 00:24 - 000156662 _____ C:\Windows\system32\perfc00C.dat
2018-09-07 18:35 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2018-09-07 18:28 - 2014-11-30 14:13 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-07 18:28 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-07 17:35 - 2015-11-03 16:08 - 000000008 __RSH C:\ProgramData\ntuser.pol
2018-09-07 17:33 - 2018-06-26 09:31 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-09-07 17:33 - 2015-03-30 15:41 - 000000000 ____D C:\Users\Jacques\AppData\LocalLow\Temp
2018-09-07 17:33 - 2013-08-22 17:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2018-09-07 17:33 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2018-09-07 16:59 - 2014-11-30 14:01 - 000003920 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{751E710C-EBA1-4E5C-8A1E-9CCD9782CED9}
2018-09-07 15:51 - 2014-11-30 15:46 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\DMCache
2018-09-07 13:08 - 2018-07-30 18:26 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\vlc
2018-09-07 13:05 - 2018-07-25 14:25 - 000000000 ____D C:\Users\Jacques\AppData\LocalLow\uTorrent
2018-09-07 13:05 - 2016-12-03 13:02 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\uTorrent
2018-09-07 11:55 - 2015-10-27 15:20 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\ZHP
2018-09-07 11:51 - 2016-01-07 12:14 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\IDM
2018-09-07 10:28 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2018-09-06 10:33 - 2015-03-01 13:38 - 000000000 ____D C:\Users\Jacques\Desktop\Captvty
2018-09-05 18:34 - 2014-11-30 13:56 - 000000000 ____D C:\Users\Jacques
2018-09-05 12:41 - 2015-07-26 13:34 - 000019889 _____ C:\Users\Jacques\AppData\Roaming\JC.MTBF.txt
2018-09-05 12:41 - 2014-12-10 17:58 - 000000000 ____D C:\Users\Jacques\AppData\Local\Pinnacle
2018-09-05 12:41 - 2014-12-10 16:46 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2018-09-05 10:23 - 2015-03-01 11:25 - 000000000 ___RD C:\Users\Jacques\Desktop\Multimedia
2018-09-04 17:21 - 2014-11-30 14:01 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2152729796-1268659573-3007759190-1001
2018-09-03 11:16 - 2017-10-25 10:25 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-09-02 11:07 - 2014-12-01 16:37 - 000000000 ____D C:\ProgramData\Package Cache
2018-08-31 18:00 - 2018-03-21 18:25 - 000552208 _____ C:\Windows\system32\FNTCACHE.DAT
2018-08-31 11:33 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2018-08-31 11:16 - 2015-03-01 11:31 - 000000000 ___RD C:\Users\Jacques\Desktop\Virus
2018-08-31 10:10 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2018-08-28 13:45 - 2018-05-07 15:21 - 000001024 ____H C:\AMTAG.BIN
2018-08-28 11:31 - 2016-12-12 12:36 - 000001024 ____H C:\SYSTAG.BIN
2018-08-28 11:31 - 2015-04-04 19:17 - 000000082 _____ C:\Windows\SysWOW64\winsevr.dat
2018-08-27 19:53 - 2018-06-26 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-08-27 17:38 - 2015-05-19 10:37 - 000000000 ____D C:\Program Files (x86)\WinMend
2018-08-26 09:42 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\AppReadiness
2018-08-25 15:04 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\NDF
2018-08-18 19:18 - 2015-06-06 14:47 - 000001890 _____ C:\Windows\diagwrn.xml
2018-08-18 19:18 - 2015-06-06 14:47 - 000001890 _____ C:\Windows\diagerr.xml
2018-08-18 12:39 - 2016-07-31 09:55 - 000000000 ____D C:\Users\Jacques\AppData\Local\CrashDumps
2018-08-17 21:57 - 2015-03-01 11:33 - 000000000 ___RD C:\Users\Jacques\Desktop\Programms
2018-08-17 21:50 - 2017-11-04 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2018-08-16 20:37 - 2017-04-12 14:01 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-08-15 10:22 - 2014-11-30 14:22 - 000000000 ____D C:\Windows\system32\MRT
2018-08-15 10:20 - 2014-11-30 14:22 - 137343192 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-08-14 13:08 - 2018-03-13 21:29 - 000004626 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-08-14 13:08 - 2015-09-04 09:21 - 000004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-08-14 13:08 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-08-14 13:08 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-08-13 12:01 - 2014-12-10 13:46 - 000000000 ____D C:\Program Files\CCleaner
2018-08-10 19:48 - 2018-03-13 21:50 - 000000000 ____D C:\ProgramData\CanonIJPLM
2018-08-10 17:35 - 2014-12-10 18:21 - 000000000 ____D C:\Users\Jacques\temp
2018-08-10 13:00 - 2018-07-13 12:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-08-10 11:40 - 2015-04-02 15:49 - 000000000 ____D C:\ProgramData\TEMP
2018-08-10 11:37 - 2015-04-02 15:49 - 000000000 ____D C:\Users\Jacques\AppData\Roaming\VideoReDo-TVSuite5
2018-08-10 11:30 - 2018-06-17 18:22 - 000000000 ____D C:\Users\Jacques\AppData\Local\Pinnacle_Studio_18
2018-08-10 10:47 - 2018-07-13 12:22 - 000001134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-08-10 10:47 - 2014-12-13 16:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-10 09:44 - 2018-05-14 18:12 - 000002388 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

==================== Fichiers à la racine de certains dossiers =======

2015-07-26 13:34 - 2018-09-05 12:41 - 000019889 _____ () C:\Users\Jacques\AppData\Roaming\JC.MTBF.txt
2015-04-15 12:49 - 2016-08-09 09:33 - 000000207 _____ () C:\Users\Jacques\AppData\Roaming\WB.CFG
2014-12-10 18:06 - 2016-09-01 14:31 - 000000907 _____ () C:\Users\Jacques\AppData\Roaming\__AvidCloudManager.log
2014-12-10 18:06 - 2015-10-03 20:49 - 000000972 _____ () C:\Users\Jacques\AppData\Roaming\__AvidCloudManagerPrevious.log
2017-01-27 21:41 - 2017-01-27 21:41 - 000551424 ____T (MultiMedia Soft) C:\Users\Jacques\AppData\Roaming\Microsoft\engine_ag.dll
2015-09-18 15:07 - 2018-06-17 18:31 - 000011264 _____ () C:\Users\Jacques\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-27 10:17 - 2018-08-27 10:17 - 000004096 ____H () C:\Users\Jacques\AppData\Local\keyfile3.drm
2015-02-04 12:08 - 2017-12-04 12:40 - 000007671 _____ () C:\Users\Jacques\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2018-09-04 10:11

==================== Fin de FRST.txt ============================