Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 4.02.2019
Exécuté par Hery (administrateur) sur PEERS2 (05-02-2019 12:30:43)
Exécuté depuis C:\Users\Hery\Desktop
Profils chargés: Hery (Profils disponibles: Hery)
Platform: Windows 8 Pro (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Flexera Software, Inc.) C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Flexera Software, Inc.) C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe
(Flexera Software, Inc.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\perfhost.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\boots\syswin.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe.154934359467101
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ESRI) C:\Program Files (x86)\ArcGIS\License10.1\bin\ARCGIS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Hery\Desktop\FRST64 (1).exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2015-01-19] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [702768 2014-12-31] ()
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-03-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2017-10-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2014-04-06] (AMD)
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [49805160 2018-11-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3952696 2018-09-29] (Tonec Inc.)
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\Run: [syswin] => C:\boots\syswin.exe [4730812 2018-12-03] ()
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {246ac4a6-2846-11e3-bf4c-008cfa3fd571} - "H:\AutoRun.exe" TMM80
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {5388d49d-38aa-11e4-827c-008cfa3fd571} - "F:\AutoRun.exe"
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {5388d4ba-38aa-11e4-827c-008cfa3fd571} - "F:\AutoRun.exe"
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {7835646d-d135-11e8-8a38-008cfa3fd571} - "F:\LaunchU3.exe" -a
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {8e9361ad-67b4-11e3-800f-008cfa3fd571} - "F:\LaunchU3.exe" -a
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {9425e625-9fde-11e4-8359-008cfa3fd571} - "J:\AutoRun.exe"
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {f9a70f6d-154a-11e8-8921-008cfa3fd571} - "F:\Windows/AutoRun.exe"
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {fadea068-3dbb-11e4-8285-2cd05a3cc390} - "J:\iLinker.exe"
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\MountPoints2: {fae70518-b66f-11e4-8392-2cd05a3cc390} - "C:\Windows\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL wandoujia_installer.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2019-01-18] (Google Inc -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\Windows\SysWOW64\advpack.dll [2012-07-26] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk [2013-07-04]
ShortcutTarget: Launcher.lnk -> C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe ()

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.139.15.38 41.242.96.6
Tcpip\..\Interfaces\{16657EAE-1B78-44A8-A351-65193A1C5652}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{42A43460-4EB4-4DC5-8660-EBBC2E3D0CCC}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9194F22D-B325-47E5-BB2E-68BE8D520743}: [DhcpNameServer] 192.139.15.38 41.242.96.6
Tcpip\..\Interfaces\{92C0517C-9DEB-4AD3-B9FD-9F772BC760B9}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{C438FADF-76E3-43F0-98A7-CC4DC139050E}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{F8ECF157-BF43-4385-BDFD-6577B8EB5CFA}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131183083656820641&GUID=103D465E-6303-4480-8628-5C51623F1B73
HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.fr.msn.com/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL =
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3026758210-3083759529-1156594917-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-3026758210-3083759529-1156594917-1001 -> {536E43F8-8631-408E-B588-5E04A1C24F10} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-3026758210-3083759529-1156594917-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3026758210-3083759529-1156594917-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={F6A2E463-31B3-451F-9815-CEA1407BFCE8}&mid=ccbd9b99936347cda0ead1c5bcdb3c82-a766eb4b37da56f867e8fc619e538e9105e2d0a2&lang=fr&ds=AVG&coid=avgtbavg&cmpid=0316tb&pr=fr&d=2015-05-23 22:11:01&v=4.2.8.608&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3026758210-3083759529-1156594917-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2018-06-19] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-10-02] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-10-02] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2018-06-19] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Pas de nom -> {C08DF07A-3E49-4E25-9AB0-D3882835F153} -> Pas de fichier
Toolbar: HKU\S-1-5-21-3026758210-3083759529-1156594917-1001 -> Pas de nom - {FF121668-E9F5-4AB6-AF36-82836CDD5071} - Pas de fichier
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Pas de fichier
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: [core]
defaultProfile=default
[non trouvé(e)] <==== ATTENTION
FF ProfilePath: C:\Users\Hery\AppData\Roaming\Mozilla\Firefox\Profiles\sat4jdji.default-1431589174152 [2018-09-26]
FF Extension: (DotVPN — better than VPN.) - C:\Users\Hery\AppData\Roaming\Mozilla\Firefox\Profiles\sat4jdji.default-1431589174152\Extensions\firefox@dotvpn.com.xpi [2016-04-25] [Legacy]
FF Extension: (SaveFrom.net Helper) - C:\Users\Hery\AppData\Roaming\Mozilla\Firefox\Profiles\sat4jdji.default-1431589174152\Extensions\helper-sig@savefrom.net.xpi [2018-05-04]
FF Extension: (IDM Integration Module) - C:\Users\Hery\AppData\Roaming\Mozilla\Firefox\Profiles\sat4jdji.default-1431589174152\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2017-11-03]
FF Extension: (Adblock Plus) - C:\Users\Hery\AppData\Roaming\Mozilla\Firefox\Profiles\sat4jdji.default-1431589174152\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => non trouvé(e)
FF HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\Firefox\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => non trouvé(e)
FF HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\SeaMonkey\Extensions: [eagleget_ffext@eagleget.com] - C:\Program Files (x86)\EagleGet\addon\eagleget_ffext@eagleget.com.xpi => non trouvé(e)
FF HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Hery\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Hery\AppData\Roaming\IDM\idmmzcc5 [2018-10-24] [Legacy] [non signé]
FF HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-10-02] ()
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-10-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-10-02] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-09-19] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-10-02] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-13] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-09-19] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3026758210-3083759529-1156594917-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Hery\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default [2019-02-05]
CHR Extension: (Slides) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-31]
CHR Extension: (Chameleon) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\acdpiemklcfaoglpjmidpjdbhkgdoede [2017-11-07]
CHR Extension: (Docs) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-31]
CHR Extension: (Google Drive) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-07]
CHR Extension: (YouTube) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-07]
CHR Extension: (Kronymous - Access internet via Tor Network) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfdhngcahhplaibahkkjhdklhihbaikl [2018-05-08]
CHR Extension: (Tampermonkey) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-09-06]
CHR Extension: (Adobe Acrobat) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-10-01]
CHR Extension: (Sheets) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-31]
CHR Extension: (SaveFrom Net) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmakpjahbdpafpgbnnlhbgnjacdniaeb [2017-12-05]
CHR Extension: (Tor™ Browser Button) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\goimpaiignmlnmdnpnkbbjoophmbebhp [2018-09-24]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2018-10-25]
CHR Extension: (IDM Integration Module) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2019-01-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-07]
CHR Extension: (Chrome Media Router) - C:\Users\Hery\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-30]
CHR Profile: C:\Users\Hery\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-12]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx <non trouvé(e)>
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-10-18]
CHR HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3026758210-3083759529-1156594917-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hdkdmoacnkphoadmfidlhfdobieblphn] - C:\Program Files (x86)\EagleGet\addon\eagleget_newtab.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2018-10-18]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [240128 2014-03-22] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [431920 2014-10-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [431920 2014-12-31] () [Fichier non signé]
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [994096 2014-10-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ArcGIS License Manager; C:\Program Files (x86)\ArcGIS\License10.1\bin\lmgrd.exe [1408904 2012-01-05] (Environmental Systems Research Institute -> Flexera Software, Inc.)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [408944 2017-10-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [437224 2016-10-27] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [Fichier non signé]
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [164352 2011-08-04] (HP) [Fichier non signé]
R2 InternetEverywhere_Service; C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe [347120 2012-09-07] (WebToGo Mobiles Internet GmbH -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes Corporation -> Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.812\McCHSvc.exe [405392 2018-09-27] (McAfee, Inc. -> McAfee, Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [Fichier non signé]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2015-01-19] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [0 2018-12-03] (CryptCATAdminCalcHashFromFileHandle failed to return cbHash, #2 -> ) <==== ATTENTION (zéro octet Fichier/Dossier)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S0 adp94xx; C:\Windows\System32\drivers\adp94xx.sys [492272 2012-07-26] (Microsoft Windows -> Adaptec, Inc.)
S0 adpahci; C:\Windows\System32\drivers\adpahci.sys [340720 2012-07-26] (Microsoft Windows -> Adaptec, Inc.)
S0 adpu320; C:\Windows\System32\drivers\adpu320.sys [184048 2012-07-26] (Microsoft Windows -> Adaptec, Inc.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [13938688 2014-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [628224 2014-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 athr; C:\Windows\system32\DRIVERS\athw8x.sys [3915264 2015-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [215040 2015-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-10-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131608 2014-10-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-05-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [533224 2012-09-20] (Microsoft Windows -> Broadcom Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [110488 2014-12-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ewusbmbb; C:\Windows\system32\DRIVERS\ewusbwwan.sys [422400 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ewusbmbb; C:\Windows\SysWOW64\DRIVERS\ewusbwwan.sys [422400 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_hwusbdev; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [117248 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_hwusbdev; C:\Windows\SysWOW64\DRIVERS\ew_hwusbdev.sys [117248 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\Windows\system32\DRIVERS\ewusbmdm.sys [226048 2015-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\Windows\SysWOW64\DRIVERS\ewusbmdm.sys [223232 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-19] (Martin Malik - REALiX -> REALiX(tm))
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-08-22] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2015-01-20] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S0 nfrd960; C:\Windows\System32\drivers\nfrd960.sys [52464 2012-07-26] (Microsoft Windows -> IBM Corporation)
S3 orange_zte_cdc_acm; C:\Windows\system32\DRIVERS\orange_zte_cdc_acm.sys [77824 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_cdc_acm; C:\Windows\SysWOW64\DRIVERS\orange_zte_cdc_acm.sys [77824 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_cdc_ecm; C:\Windows\system32\DRIVERS\orange_zte_cdc_ecm.sys [36352 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_cdc_ecm; C:\Windows\SysWOW64\DRIVERS\orange_zte_cdc_ecm.sys [36352 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_ecm_enum; C:\Windows\System32\drivers\orange_zte_ecm_enum.sys [52224 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_ecm_enum; C:\Windows\SysWOW64\drivers\orange_zte_ecm_enum.sys [52224 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_ecm_enum_filter; C:\Windows\System32\drivers\orange_zte_ecm_enum_filter.sys [52224 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_ecm_enum_filter; C:\Windows\SysWOW64\drivers\orange_zte_ecm_enum_filter.sys [52224 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_wcpo; C:\Windows\system32\DRIVERS\orange_zte_wcpo.sys [10752 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S3 orange_zte_wcpo; C:\Windows\SysWOW64\DRIVERS\orange_zte_wcpo.sys [10752 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> ZTE)
S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2012-07-26] (Microsoft Windows -> Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [206104 2014-12-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [27136 2014-11-05] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [23200 2015-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation -> Microsoft Corporation)
S3 SliceDisk5; \??\C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

Error(1) reading file: "C:\Windows\System32\Tasks\Programme de mise à jour en ligne de HP."
2019-02-05 12:30 - 2019-02-05 12:33 - 000033542 _____ C:\Users\Hery\Desktop\FRST.txt
2019-02-05 12:29 - 2019-02-05 12:30 - 000000000 ____D C:\FRST
2019-02-05 12:28 - 2019-02-05 12:29 - 002433024 _____ (Farbar) C:\Users\Hery\Desktop\FRST64 (1).exe
2019-02-05 12:14 - 2019-02-05 12:14 - 000000000 ____D C:\Users\Hery\AppData\Local\ElevatedDiagnostics
2019-02-05 12:08 - 2019-02-05 12:10 - 000000000 _____ C:\Users\Hery\Downloads\FRST64.exe
2019-02-05 11:58 - 2019-02-05 11:59 - 000000000 _____ C:\Users\Hery\Downloads\NordVPNSetup.exe
2019-02-05 11:51 - 2019-02-05 11:51 - 000042504 _____ C:\Users\Hery\Desktop\cc_20190205_115124.reg
2019-02-05 08:25 - 2019-02-05 08:26 - 000221662 _____ C:\Users\Hery\Downloads\MicrosoftProgram_Install_and_Uninstall.meta.diagcab
2019-02-04 17:08 - 2019-02-04 17:08 - 000009965 _____ C:\Users\Hery\Downloads\analyse_sol (1).xlsx
2019-02-04 17:07 - 2019-02-04 17:07 - 000009965 _____ C:\Users\Hery\Downloads\analyse_sol.xlsx
2019-02-04 16:21 - 2019-02-04 16:33 - 022036480 _____ C:\Users\Hery\Downloads\Non confirmé 948743.crdownload
2019-02-04 15:54 - 2019-02-04 15:58 - 000000000 _____ C:\Users\Hery\Downloads\torbrowser-install-8.0.5_en-US.exe
2019-02-04 15:03 - 2019-02-04 15:39 - 000000000 _____ C:\Users\Hery\Downloads\HotspotShield-7.15.1-hss-823-plain.exe
2019-02-04 14:51 - 2019-02-04 14:34 - 000000000 _____ C:\Users\Hery\Desktop\torbrowser-install-win64-8.0.5_en-US.exe
2019-02-04 13:47 - 2019-02-04 14:34 - 000000000 _____ C:\Users\Hery\Downloads\torbrowser-install-win64-8.0.5_en-US.exe
2019-02-04 13:04 - 2019-02-04 13:05 - 000000000 _____ C:\Users\Hery\Downloads\torbrowser-install-win64-8.0.5_fr (1).exe
2019-02-04 12:08 - 2019-02-04 12:24 - 000000000 _____ C:\Users\Hery\Downloads\tor-browser_8-0-2_fr_431559.exe
2019-02-04 11:42 - 2019-02-04 11:45 - 000000000 _____ C:\Users\Hery\Downloads\torbrowser-install-win64-8.0.5_fr.exe
2019-02-04 11:28 - 2019-02-04 11:34 - 000000000 _____ C:\Users\Hery\Downloads\TorBrowser-8.0.5-osx64_en-US.exe
2019-01-21 10:33 - 2019-01-21 10:33 - 000624459 _____ C:\Users\Hery\Downloads\Invitation Net ARES.pdf
2019-01-08 10:22 - 2019-01-08 10:22 - 000089503 _____ C:\Users\Hery\Downloads\MIS SOL_conv.zip

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-02-05 12:06 - 2018-10-01 18:59 - 000000000 ____D C:\Users\Hery\AppData\Local\CrashDumps
2019-02-05 12:06 - 2014-10-21 08:10 - 000000000 ____D C:\Windows\Minidump
2019-02-05 12:06 - 2012-07-26 08:37 - 000000000 ____D C:\Windows\Inf
2019-02-05 08:47 - 2017-11-02 11:24 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-02-05 08:24 - 2017-11-02 11:23 - 000000000 ____D C:\Program Files\CCleaner
2019-02-05 07:59 - 2012-07-26 10:22 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-04 16:15 - 2018-09-25 11:58 - 000000000 ____D C:\Users\Hery\AppData\Local\AVAST Software
2019-02-04 16:07 - 2018-10-24 11:15 - 000000000 ____D C:\Users\Hery\AppData\Roaming\DMCache
2019-02-04 14:04 - 2014-06-21 01:34 - 000000000 ____D C:\Users\Hery\AppData\Roaming\vlc
2019-02-04 13:28 - 2018-10-02 08:35 - 000004628 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-02-04 13:28 - 2018-10-02 08:35 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-02-04 13:28 - 2018-06-18 20:53 - 000003512 _____ C:\Windows\System32\Tasks\Clean System Memory
2019-02-04 13:28 - 2018-04-17 13:58 - 000003232 _____ C:\Windows\System32\Tasks\{508194B2-BD98-403F-8A51-9BFAD442D776}
2019-02-04 13:28 - 2017-11-06 10:00 - 000003502 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-02-04 13:28 - 2017-11-06 10:00 - 000003374 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-02-04 13:28 - 2017-11-02 11:24 - 000002784 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-02-04 13:24 - 2018-10-01 11:34 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-02-04 13:21 - 2012-07-26 13:09 - 002171642 _____ C:\Windows\system32\perfh00C.dat
2019-02-04 13:21 - 2012-07-26 13:09 - 000830572 _____ C:\Windows\system32\perfc00C.dat
2019-02-04 13:21 - 2012-07-26 10:28 - 000005430 _____ C:\Windows\system32\PerfStringBackup.INI
2019-02-04 13:07 - 2018-09-25 11:24 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-02-01 11:06 - 2012-07-26 11:12 - 000000000 ____D C:\Windows\system32\NDF
2019-01-18 11:12 - 2017-11-06 10:03 - 000002197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-01-18 11:04 - 2014-06-15 13:37 - 000000000 ____D C:\ProgramData\Package Cache
2019-01-10 16:32 - 2013-05-27 00:18 - 000000000 ____D C:\Users\Hery

==================== Fichiers à la racine de certains dossiers =======

2017-08-24 15:27 - 2017-08-24 15:27 - 000000213 _____ () C:\Program Files (x86)\EagleGetfirefox.json
2015-05-19 10:05 - 2015-05-19 10:05 - 000000079 _____ () C:\Program Files (x86)\prefs.js
2014-07-16 21:09 - 2014-07-16 21:09 - 000000000 _____ () C:\Users\Hery\AppData\Roaming\.NANotifyHere
2015-05-24 13:28 - 2015-07-23 08:37 - 000000024 _____ () C:\Users\Hery\AppData\Roaming\appdataFr25.bin
2018-10-01 11:24 - 2014-12-19 09:43 - 000000034 _____ () C:\Users\Hery\AppData\Roaming\pdfdrawcodec.dll
2014-01-17 08:31 - 2014-09-17 10:41 - 000000600 _____ () C:\Users\Hery\AppData\Roaming\winscp.rnd
2015-03-18 12:57 - 2018-04-10 14:55 - 000005120 _____ () C:\Users\Hery\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-16 12:17 - 2015-01-16 12:17 - 000000001 _____ () C:\Users\Hery\AppData\Local\llftool.4.30.agreement
2015-01-16 13:06 - 2015-01-16 13:06 - 000000019 _____ () C:\Users\Hery\AppData\Local\llftool.license
2016-06-16 10:32 - 2016-06-16 10:32 - 000002530 _____ () C:\Users\Hery\AppData\Local\recently-used.xbel
2015-05-24 16:48 - 2015-05-24 16:48 - 000007601 _____ () C:\Users\Hery\AppData\Local\Resmon.ResmonCfg
2018-03-08 17:37 - 2018-06-01 21:04 - 000252928 _____ () C:\Users\Hery\AppData\Local\WebpageIcons.db
2016-10-26 08:12 - 2016-10-26 08:12 - 000000000 _____ () C:\Users\Hery\AppData\Local\{6A45A662-57D5-46EB-B33B-640061A00B4B}

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\dllhost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\dllhost.exe => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2019-01-30 11:42

==================== Fin de FRST.txt ============================