Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-09-2019
Exécuté par Joël André (administrateur) sur PC-JOEL (ASUSTeK COMPUTER INC. M70AD-NN) (05-09-2019 21:28:24)
Exécuté depuis C:\Users\Joël André\Desktop
Profils chargés: Joël André (Profils disponibles: Joël André & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corporation) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corporation) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Ulrich Krebs) [Fichier non signé] C:\Program Files (x86)\Kalender\Kalender.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-08] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [280576 2013-09-26] (Realtek Semiconductor Corporation) [Fichier non signé]
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1804432 2015-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2015-02-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé]
HKU\S-1-5-21-667031501-3915121476-3680893919-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-667031501-3915121476-3680893919-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-667031501-3915121476-3680893919-1001\...\Run: [Kalender] => C:\Program Files (x86)\Kalender\Kalender.exe [1015808 2017-05-01] (Ulrich Krebs) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {2BEC7D95-F2BD-4DA8-87A1-BFE452296269} - System32\Tasks\HDCleanerSkipUAC => C:\PROGRAMMES COMPLéMENTAIRES\HD CLEANER\HDCLEANERX64\HDCleaner.exe [2517328 2018-12-22] (Kurt Zimmermann -> Kurt Zimmermann) [Fichier non signé]
Task: {5DACA779-9BF7-4D55-B737-02E7EA9AB0B8} - System32\Tasks\EPSON XP-510 Series Invitation {74F58E5C-DEC9-499B-8429-FAEEAD7F9595} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [679488 2015-01-19] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {68DC5D30-F2E2-4733-85AA-64B4D935818F} - System32\Tasks\EPSON XP-510 Series Update {C324B13E-DC26-44D1-9090-B66C6B1E6B63} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [679488 2015-01-19] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {718F5871-8AD6-4D2E-AE5F-CC3DAFB57A81} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6602152 2015-12-08] (Piriform Ltd -> Piriform Ltd)
Task: {7AF67B6B-DD5D-46E3-8680-CCCD51634C3A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [137260640 2019-01-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {81AB7652-B574-42CA-A340-FCEDFFDBBD0D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {8612EF02-B71C-47EE-AA1C-E3AD5CDEB1D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {950B1EC4-954E-4CAF-BE00-FB5F52E0113B} - System32\Tasks\{B3ECB84C-CA82-4D93-9771-07FB3331B9BF} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 7\psp.exe" -d "C:\Program Files (x86)\Jasc Software Inc\Paint Shop Pro 7\"
Task: {C09173A1-3063-4EE6-9B57-C1F65CABA234} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [969992 2016-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {C4731587-57C7-40E5-831B-1A6DAEEA56F9} - System32\Tasks\EPSON XP-510 Series Invitation {C324B13E-DC26-44D1-9090-B66C6B1E6B63} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [679488 2015-01-19] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {D73AFF11-28BB-49FF-BAE7-C9662D2A0E2E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [969992 2016-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7CF3F16-7C06-4DA6-A333-FE3F1186E4E4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FCCE70ED-6D12-4465-88C2-0443EFEBBF5D} - System32\Tasks\EPSON XP-510 Series Update {74F58E5C-DEC9-499B-8429-FAEEAD7F9595} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [679488 2015-01-19] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {FF318E6F-0741-4C62-979C-32A540E2E751} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\EPSON XP-510 Series Invitation {74F58E5C-DEC9-499B-8429-FAEEAD7F9595}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-510 Series Invitation {C324B13E-DC26-44D1-9090-B66C6B1E6B63}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-510 Series Update {74F58E5C-DEC9-499B-8429-FAEEAD7F9595}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{74F58E5C-DEC9-499B-8429-FAEEAD7F9595} /F:UpdateWORKGROUP\PC-JOEL$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-510 Series Update {C324B13E-DC26-44D1-9090-B66C6B1E6B63}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{C324B13E-DC26-44D1-9090-B66C6B1E6B63} /F:UpdateWORKGROUP\PC-JOEL$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{49B29D79-0165-482A-A510-4B68AFB436AB}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F044C57D-9E43-4A74-8C8C-CED66DE44606}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-667031501-3915121476-3680893919-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-667031501-3915121476-3680893919-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
SearchScopes: HKU\S-1-5-21-667031501-3915121476-3680893919-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-667031501-3915121476-3680893919-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-09-22] (Eyeo GmbH -> Eyeo GmbH)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 6fzkf5zu.default
FF ProfilePath: C:\Users\Joël André\AppData\Roaming\Mozilla\Firefox\Profiles\6fzkf5zu.default [2019-09-05]
FF Homepage: Mozilla\Firefox\Profiles\6fzkf5zu.default -> about:blank
FF Extension: (Disconnect) - C:\Users\Joël André\AppData\Roaming\Mozilla\Firefox\Profiles\6fzkf5zu.default\Extensions\2.0@disconnect.me.xpi [2017-11-17]
FF Extension: (Clear Flash Cookies) - C:\Users\Joël André\AppData\Roaming\Mozilla\Firefox\Profiles\6fzkf5zu.default\Extensions\clear-flash-cookies@cpeterso.com.xpi [2019-05-04]
FF Extension: (HTTPS partout) - C:\Users\Joël André\AppData\Roaming\Mozilla\Firefox\Profiles\6fzkf5zu.default\Extensions\https-everywhere@eff.org.xpi [2017-11-17]
FF Extension: (Firefox Lightbeam) - C:\Users\Joël André\AppData\Roaming\Mozilla\Firefox\Profiles\6fzkf5zu.default\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2017-11-17]
FF Extension: (DuckDuckGo Plus) - C:\Users\Joël André\AppData\Roaming\Mozilla\Firefox\Profiles\6fzkf5zu.default\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2017-11-17]
FF Extension: (uBlock Origin) - C:\Users\Joël André\AppData\Roaming\Mozilla\Firefox\Profiles\6fzkf5zu.default\Extensions\uBlock0@raymondhill.net.xpi [2017-11-17]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-20] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-20] (Adobe Systems Incorporated -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-01-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S4 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-11-06] (ASUSTeK Computer Inc. -> )
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [35328 2013-05-07] (Realtek Semiconductor Corporation) [Fichier non signé]
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122728 2017-09-04] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [59392 2013-09-26] () [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3189488 2016-07-02] (Microsoft Corporation -> Microsoft Corporation)
S3 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes Corporation -> Malwarebytes)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AiChargerDT; C:\Windows\SysWow64\drivers\AiChargerDT.sys [14880 2012-10-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R0 assdv2; C:\Windows\System32\Drivers\assdv2.sys [21816 2013-12-05] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] (ASUSTeK Computer Inc. -> )
R3 azvusb; C:\WINDOWS\System32\drivers\azvusb.sys [54784 2009-08-24] (Microsoft Windows Hardware Compatibility Publisher -> AzureWave Technologies, Inc.)
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d64x64.sys [469264 2013-06-27] (Intel Corporation -> Intel Corporation)
S3 HCWF9BDA; C:\WINDOWS\System32\Drivers\hcwF9b64.sys [188376 2013-09-25] (Hauppauge Computer Works -> ITE )
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253888 2019-09-05] (Malwarebytes Corporation -> Malwarebytes)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [38048 2014-09-04] (Nvidia Corporation -> NVIDIA Corporation)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [548056 2013-09-05] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
S3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [3759320 2014-12-01] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-11-26] (Adlice -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-09-05 21:28 - 2019-09-05 21:28 - 000020740 _____ C:\Users\Joël André\Desktop\FRST.txt
2019-09-05 21:27 - 2019-09-05 21:28 - 000000000 ____D C:\FRST
2019-09-05 21:22 - 2019-09-05 20:47 - 001615360 _____ (Farbar) C:\Users\Joël André\Desktop\FRST64.exe
2019-09-05 20:59 - 2019-09-05 20:59 - 000447920 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-09-05 20:49 - 2019-09-05 20:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-09-05 20:47 - 2019-09-05 20:47 - 001615360 _____ (Farbar) C:\Users\Joël André\Downloads\FRST64(1).exe
2019-09-01 09:55 - 2019-09-01 09:56 - 000010838 _____ C:\Users\Joël André\Downloads\loto_201902.zip
2019-08-24 09:47 - 2019-08-24 09:49 - 000001831 _____ C:\Users\Joël André\Desktop\Liste cartes routières.lnk
2019-08-23 10:03 - 2019-08-23 10:06 - 000001795 _____ C:\Users\Joël André\Desktop\Liste systèmes informatiques.lnk
2019-08-19 20:35 - 2019-08-19 20:42 - 000116995 _____ C:\Users\Joël André\Documents\ZHPDiag1.txt
2019-08-19 20:34 - 2019-08-19 20:41 - 000000101 _____ C:\Users\Joël
2019-08-19 19:13 - 2019-08-19 19:13 - 003035520 _____ (Nicolas Coolman) C:\Users\Joël André\Downloads\ZHPDiag3.exe
2019-08-17 19:01 - 2019-08-17 19:01 - 003118464 _____ (Nicolas Coolman) C:\Users\Joël André\Downloads\ZHPCleaner.exe

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-09-05 21:04 - 2016-01-13 23:14 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-667031501-3915121476-3680893919-1001
2019-09-05 21:03 - 2014-09-06 20:34 - 000806638 _____ C:\WINDOWS\system32\perfh00C.dat
2019-09-05 21:03 - 2014-09-06 20:34 - 000156992 _____ C:\WINDOWS\system32\perfc00C.dat
2019-09-05 21:03 - 2014-03-18 12:03 - 001820486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-05 21:03 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-09-05 20:59 - 2018-04-07 19:32 - 000000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2019-09-05 20:59 - 2018-04-07 19:32 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2019-09-05 20:59 - 2016-02-01 10:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-05 20:59 - 2016-01-16 11:39 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-05 20:59 - 2016-01-13 19:45 - 000253888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2019-09-05 20:59 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-05 20:58 - 2016-02-24 13:36 - 000000000 ____D C:\Users\Joël André\AppData\Local\ClassicShell
2019-09-05 20:58 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2019-09-05 20:50 - 2016-11-28 10:41 - 000000000 ____D C:\Users\Joël André\AppData\LocalLow\Mozilla
2019-09-05 20:49 - 2016-02-01 10:55 - 000001178 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-05 20:13 - 2016-01-16 21:15 - 000000000 ____D C:\Users\Joël André\Documents\Documents en cours
2019-09-05 12:12 - 2018-10-02 17:47 - 000000000 ____D C:\SyncBack_Setup_NI
2019-09-04 13:44 - 2017-05-26 12:32 - 000000000 ____D C:\Users\Joël André\AppData\Roaming\UK's Kalender
2019-09-02 13:03 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-08-22 08:27 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-10 19:34 - 2016-01-13 23:08 - 000000000 ____D C:\Users\Joël André\AppData\Local\Packages

==================== Fichiers à la racine de certains dossiers ================

2016-01-13 23:08 - 2019-09-05 20:59 - 012611240 _____ () C:\Users\Joël André\AppData\Local\BTServer.log
2016-02-05 19:07 - 2016-02-05 19:07 - 000007628 _____ () C:\Users\Joël André\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2016-02-22 13:31
==================== Fin de FRST.txt ============================