Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05.2019 01
Exécuté par Borris (administrateur) sur GALANI (Packard Bell EasyNote TS11HR) (15-05-2019 05:00:54)
Exécuté depuis C:\Users\Borris\Downloads
Profils chargés: Borris (Profils disponibles: Borris)
Platform: Windows 8.1 Pro (Update) (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Mendeley Desktop\MendeleyWordPlugin.exe
(4) [Fichier non signé] C:\Program Files\Microsoft Silverlight\OMRDGQ69AF4U2\uurz-ey39+.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\Creator\FoxitProxyServer_Socket_RD.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G DATA Software AG -> G Data Software AG) C:\Program Files (x86)\G DATA\AntiVirus\AVK\AVKWCtlx64.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\AntiVirus\AVKTray\AVKTray.exe
(G DATA Software AG -> G DATA Software) C:\Program Files (x86)\G DATA\AntiVirus\TSNxG\TSNxGService.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(HP) [Fichier non signé] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Huawei Technologies Co.,Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Opera Software AS -> Opera Software) C:\Users\Borris\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499640 2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [330176 2014-08-19] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [Multitimer] => C:\Program Files (x86)\Multitimer\Multitimer.exe [281600 2017-12-12] () [Fichier non signé] <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [2755504 2016-12-28] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [2755504 2016-12-28] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [Opera Browser Assistant] => C:\Users\Borris\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2264152 2019-01-03] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [2385640] => "C:\Users\Borris\AppData\Local\Temp\is-CA1EB.tmp\SSISRepport.exe" /VERYSILENT <==== ATTENTION
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [3035662] => "C:\Users\Borris\AppData\Local\Temp\is-BOKH2.tmp\SSISRepport.exe" /VERYSILENT <==== ATTENTION
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [uurz-ey39+.exe] => C:\Program Files\Microsoft Silverlight\OMRDGQ69AF4U2\uurz-ey39+.exe [626176 2019-05-11] (4) [Fichier non signé]
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Run: [AvastBrowserAutoLaunch_8C9A68C485A09BDF6E3E49D71BBE5CAB] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1952880 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\MountPoints2: {bd30dc80-f08c-11e8-8269-dc0ea1193649} - "D:\LaunchU3.exe" -a
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\MountPoints2: {df56dfeb-3df5-11e9-8273-dc0ea1193649} - "D:\LaunchU3.exe"
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\MountPoints2: {f13a47b6-5d01-11e9-8280-dc0ea1193649} - "D:\AutoRun.exe"
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2755504 2016-12-28] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [2755504 2016-12-28] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.131\Installer\chrmstp.exe [2019-05-06] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\73.0.1270.87\Installer\chrmstp.exe [2019-04-17] (AVAST Software s.r.o. -> AVAST Software)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
Startup: C:\Users\Borris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk [2019-05-14]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN19M3H4PS05HW;CONNECTION=USB;MONITOR=1;
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0AA7DF4C-FC8F-45A1-A1F1-770E43BBB61D} - System32\Tasks\AdobeGCInvoker-1.0-GALANI-Borris => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {2635E5B2-21A9-4323-B2A2-36328D438ECE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4407136 2019-05-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {2687FDD9-86A1-44B1-8B40-ACAD6562BE4B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-10] (AVAST Software s.r.o. -> AVAST Software)
Task: {4A99BBAC-B042-45FD-B1B1-808F40350E4F} - System32\Tasks\Opera scheduled assistant Autoupdate 1547224933 => C:\Users\Borris\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-04-21] (Opera Software AS -> Opera Software)
Task: {4D7CB120-AF6B-48F4-A544-09F4C78C5057} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1952880 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {55AB74BC-4D50-4FD1-B5B3-C1D147C8635A} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-10] (AVAST Software s.r.o. -> AVAST Software)
Task: {67829356-7124-4371-B59F-4183E1BDF345} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-08-24] (Piriform Ltd -> Piriform Ltd)
Task: {6B317AB6-FD83-48D9-AE5B-858FEE91F709} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112160 2019-05-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {742A9E1F-FDBD-4304-B570-2092F95EC3BC} - System32\Tasks\Opera scheduled Autoupdate 1538340113 => C:\Users\Borris\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-04-21] (Opera Software AS -> Opera Software)
Task: {743CDC0E-D8E7-42D1-8323-D1EFF0619977} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {82DB34F9-ED7A-454A-8226-2480FE9C0CBA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {8B3E124C-BF85-484C-B268-84D4C77D17A6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [112160 2019-05-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B84F322-1483-4B99-95E8-2CD22D85741A} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [89840 2014-10-19] (Hewlett-Packard Company -> Hewlett Packard)
Task: {94DC6540-565B-4458-B518-FBDE5CE745CE} - System32\Tasks\{00924158-76A1-FCD8-421E-4E701D5D6C92} => C:\Users\Borris\AppData\Local\Rakipobe\Rolasiru.exe
Task: {9855FB41-FDC7-4F07-9751-0B5C5B5D08B4} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [4119656 2012-10-02] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {994608DF-CD0F-40FE-84E1-59AAE92088ED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4407136 2019-05-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {AB8289CC-7A96-440C-908F-23467FD53980} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1952880 2019-04-11] (AVAST Software s.r.o. -> AVAST Software)
Task: {B761E900-4282-4E0B-9651-39DED32D541B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {C93A7E35-BBAC-4012-BF6A-C791E5CAAB40} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1432200 2019-05-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {D029A785-4B64-4AD8-94D3-DC81E8EE204B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {D173FF8F-15F2-4959-BCF3-F85E652D16FC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25906688 2019-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3FD16A2-EAA3-4575-AA03-17E8ECAD1489} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D86AD278-401F-43AC-A5F5-AD2675ABEB03} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {DAEA6A45-BA8D-41F8-9A21-0A74ECFA960D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [25906688 2019-04-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB2AEC0B-C1C7-4E46-ACD7-E1AF6741E60C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1432200 2019-05-11] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\{00924158-76A1-FCD8-421E-4E701D5D6C92}.job => C:\Users\Borris\AppData\Local\Rakipobe\Rolasiru.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{362CBBD1-A7DB-4157-947F-69342C5AE137}: [DhcpNameServer] 192.168.43.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=elm&hsimp=yhs-001&type=hdr_s_18_48_jny_soverj_00_00¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dus%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCzytAyCyEzyyBtA0DzytN0D0TzutN1L2XzuyEtFtAtBtFtDtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SzyzztB1Rzy1StC1RtGyD1T1R1OtGyEzyyE1StG1SyDyEtCtG1StAzz1R1O1PtD1OyDyC1PyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1PtCtCtD1Q1TyE1OtG1QyD1TzytGyEyDzzzytG1T1R1PyEtGzzyCyCtC1Q1OtDtC1S1PzytC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1Rzu%26cr%3D1880929845%26a%3Dhdr_s_18_48_jny_soverj_00_00%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=elm&hsimp=yhs-001&type=hdr_s_18_48_jny_soverj_00_00¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dus%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCzytAyCyEzyyBtA0DzytN0D0TzutN1L2XzuyEtFtAtBtFtDtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SzyzztB1Rzy1StC1RtGyD1T1R1OtGyEzyyE1StG1SyDyEtCtG1StAzz1R1O1PtD1OyDyC1PyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1PtCtCtD1Q1TyE1OtG1QyD1TzytGyEyDzzzytG1T1R1PyEtGzzyCyCtC1Q1OtDtC1S1PzytC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1Rzu%26cr%3D1880929845%26a%3Dhdr_s_18_48_jny_soverj_00_00%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10092__190511
HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-xl/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_48_jny_soverj_00_00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCzytAyCyEzyyBtA0DzytN0D0TzutN1L2XzuyEtFtAtBtFtDtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SzyzztB1Rzy1StC1RtGyD1T1R1OtGyEzyyE1StG1SyDyEtCtG1StAzz1R1O1PtD1OyDyC1PyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1PtCtCtD1Q1TyE1OtG1QyD1TzytGyEyDzzzytG1T1R1PyEtGzzyCyCtC1Q1OtDtC1S1PzytC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1Rzu%26cr%3D1880929845%26a%3Dhdr_s_18_48_jny_soverj_00_00%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_48_jny_soverj_00_00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCzytAyCyEzyyBtA0DzytN0D0TzutN1L2XzuyEtFtAtBtFtDtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SzyzztB1Rzy1StC1RtGyD1T1R1OtGyEzyyE1StG1SyDyEtCtG1StAzz1R1O1PtD1OyDyC1PyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1PtCtCtD1Q1TyE1OtG1QyD1TzytGyEyDzzzytG1T1R1PyEtGzzyCyCtC1Q1OtDtC1S1PzytC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1Rzu%26cr%3D1880929845%26a%3Dhdr_s_18_48_jny_soverj_00_00%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_48_jny_soverj_00_00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCzytAyCyEzyyBtA0DzytN0D0TzutN1L2XzuyEtFtAtBtFtDtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SzyzztB1Rzy1StC1RtGyD1T1R1OtGyEzyyE1StG1SyDyEtCtG1StAzz1R1O1PtD1OyDyC1PyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1PtCtCtD1Q1TyE1OtG1QyD1TzytGyEyDzzzytG1T1R1PyEtGzzyCyCtC1Q1OtDtC1S1PzytC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1Rzu%26cr%3D1880929845%26a%3Dhdr_s_18_48_jny_soverj_00_00%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_48_jny_soverj_00_00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCzytAyCyEzyyBtA0DzytN0D0TzutN1L2XzuyEtFtAtBtFtDtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SzyzztB1Rzy1StC1RtGyD1T1R1OtGyEzyyE1StG1SyDyEtCtG1StAzz1R1O1PtD1OyDyC1PyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1PtCtCtD1Q1TyE1OtG1QyD1TzytGyEyDzzzytG1T1R1PyEtGzzyCyCtC1Q1OtDtC1S1PzytC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1Rzu%26cr%3D1880929845%26a%3Dhdr_s_18_48_jny_soverj_00_00%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1240574917-4017837923-3502844823-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxps://go.mail.ru/distib/ep/?q={searchTerms}&fr=ntg&product_id=%7BAC15466C-1447-43E6-B138-D6FF8C1A84BB%7D&gp=811610
SearchScopes: HKU\S-1-5-21-1240574917-4017837923-3502844823-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=elm&hsimp=yhs-001&type=hdr_s_18_48_jny_soverj_00_00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dus%26pa%3Dhodor%26cd%3D2XzuyEtN2Y1L1Qzu0D0CtD0E0AtCtCzytAyCyEzyyBtA0DzytN0D0TzutN1L2XzuyEtFtAtBtFtDtFtAtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SzyzztB1Rzy1StC1RtGyD1T1R1OtGyEzyyE1StG1SyDyEtCtG1StAzz1R1O1PtD1OyDyC1PyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1PtCtCtD1Q1TyE1OtG1QyD1TzytGyEyDzzzytG1T1R1PyEtGzzyCyCtC1Q1OtDtC1S1PzytC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1Rzu%26cr%3D1880929845%26a%3Dhdr_s_18_48_jny_soverj_00_00%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1240574917-4017837923-3502844823-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1240574917-4017837923-3502844823-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxps://go.mail.ru/distib/ep/?q={searchTerms}&fr=ntg&product_id=%7BAC15466C-1447-43E6-B138-D6FF8C1A84BB%7D&gp=811610
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Search@Mail.Ru -> {8E8F97CD-60B5-456F-A201-73065652D099} -> C:\Users\Borris\AppData\Local\Mail.Ru\Sputnik\ie_addon_dll.dll [2019-05-11] (LLC Mail.Ru -> Mail.Ru)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation -> Microsoft Corporation.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default [2019-05-15]
FF Homepage: Mozilla\Firefox\Profiles\53odc93c.default -> hxxp://www.greatdexchange.com/jump/next.php?r=2087215%7Chxxps://www.bet365.com/en/?forcelp=1&affiliate=365_860353%7Chxxps://1xbet.cm/fr/?tag=d_43156m_2896c_[]MS[]null[]null[]659317:adexchange-659317.com:2600801%7Chxxps://syndication.exdynsrv.com/splash.php?idzone=2600801&sub=1343178&type=8&p=http%3A%2F%2Fvexacion.com%2Fafu.php%3Fzoneid%3D1343178%26var%3D1343178%26rid%3DwfxzsvAkbQDjdtH2xjZy_Q%253D%253D&tested=1&check=8144a866769dc11da8e791b599e555e4&screen_resolution=1366x768&container_resolution=1366x654&iframe=0
FF HomepageOverride: Mozilla\Firefox\Profiles\53odc93c.default -> Enabled: homepage@mail.ru
FF NewTabOverride: Mozilla\Firefox\Profiles\53odc93c.default -> Enabled: {a38384b3-2d1d-4f36-bc22-0f7ae402bcd7}
FF NewTabOverride: Mozilla\Firefox\Profiles\53odc93c.default -> Enabled: search@mail.ru
FF Extension: (System Table) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\Extensions\470116@modext.tech.xpi [2018-08-22] [UpdateUrl:hxxps://amazon-space.ru/mupd/updates.json]
FF Extension: (Домашняя страница Mail.Ru) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\Extensions\homepage@mail.ru.xpi [2019-05-11] [UpdateUrl:hxxps://crxmailru.cdnmail.ru/go_ffhp_update.json]
FF Extension: (hotfix-update-xpi-intermediate) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-13]
FF Extension: (Поиск Mail.Ru) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\Extensions\search@mail.ru.xpi [2019-05-11] [UpdateUrl:hxxps://crxmailru.cdnmail.ru/searchff/update.json]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\Extensions\sp@avast.com.xpi [2019-05-12]
FF Extension: (Avast Online Security) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\Extensions\wrc@avast.com.xpi [2019-03-27] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json]
FF Extension: (Визуальные закладки) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\Extensions\{a38384b3-2d1d-4f36-bc22-0f7ae402bcd7}.xpi [2019-05-11] [UpdateUrl:hxxps://crxmailru.cdnmail.ru/ff_pult/update.json]
FF Extension: (Baidu Search Update) - C:\Users\Borris\AppData\Roaming\Mozilla\Firefox\Profiles\53odc93c.default\features\{b20d3d7e-f7cc-4f0e-9a11-60cc1546f060}\baidu-code-update@mozillaonline.com.xpi [2019-05-13]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2018-10-10] [Legacy]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2018-09-19] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> inline.go.mail.ru
CHR StartupUrls: Default -> "hxxp://www.delta-search.com/?affID=119531&babsrc=HP_ss&mntrId=3E66001E101FA622","hxxps://mail.ru/cnt/10445?gp=811610"
CHR Profile: C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default [2019-05-15]
CHR Extension: (Slides) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-03]
CHR Extension: (Docs) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-03]
CHR Extension: (Google Drive) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-03]
CHR Extension: (YouTube) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-03]
CHR Extension: (Mendeley Importer) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\dagcmkpagjlhakfdhnbomgmjdpkdklff [2018-09-04]
CHR Extension: (Yahoo Extension) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\eihhgekonheiliaidomffpplfhecmkag [2018-10-30]
CHR Extension: (Avast Passwords) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2019-05-11]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-20]
CHR Extension: (Sheets) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-05]
CHR Extension: (Avast Online Security) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-05-06]
CHR Extension: (Mail.Ru) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\iepoegkaoeljnbhagabakjodgpfniimo [2019-05-11]
CHR Extension: (Grammarly for Chrome) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2019-05-14]
CHR Extension: (Twoo Notifications) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggafhpkgkfebnjfbiefbbbicikgchlf [2018-10-30]
CHR Extension: (G DATA Password Manager) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkidblhffbojmicdjcgjfgeejnchmcff [2018-10-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-03]
CHR Extension: (Gmail) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-06]
CHR Extension: (Chrome Media Router) - C:\Users\Borris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-11]
CHR HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hjdkfkdkokphfploiiddakjokndinfgb] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1240574917-4017837923-3502844823-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [iepoegkaoeljnbhagabakjodgpfniimo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-03-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-10] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-10-10] (AVAST Software s.r.o. -> AVAST Software)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [5389040 2018-06-15] (G DATA Software AG -> G DATA Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\AntiVirus\AVK\AVKWCtlx64.exe [3749016 2018-06-05] (G DATA Software AG -> G Data Software AG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11084584 2019-04-19] (Microsoft Corporation -> Microsoft Corporation)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [1361304 2018-06-05] (G DATA Software AG -> G DATA Software AG)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [Fichier non signé]
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242264 2015-09-23] (Huawei Technologies Co.,Ltd. -> )
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R3 TSNxGService; C:\Program Files (x86)\G DATA\AntiVirus\TSNxG\TSNxGService.exe [262560 2017-12-07] (G DATA Software AG -> G DATA Software)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 AvastSecureBrowserElevationService; "C:\Program Files (x86)\AVAST Software\Browser\Application\73.0.1270.87\elevation_service.exe" [X]
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
S2 localNETService; C:\ProgramData\localNETService\localNETService.exe [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\Windows\system32\DRIVERS\athwnx.sys [3680256 2013-06-18] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2018-09-02] (DT Soft Ltd -> DT Soft Ltd)
S0 GDElam; C:\Windows\System32\DRIVERS\GDElam.sys [166912 2018-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> G DATA Software AG)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [47664 2018-10-30] (G DATA Software AG -> G DATA Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [38984 2018-10-30] (G DATA Software AG -> G DATA Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [422936 2018-10-30] (G DATA Software AG -> G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [198680 2018-10-30] (G DATA Software AG -> G Data Software AG)
R3 GRD; C:\Windows\system32\drivers\GRD.sys [125640 2019-05-14] (G DATA Software AG -> G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [207896 2018-10-30] (G DATA Software AG -> G Data Software AG)
R0 TS4NT; C:\Windows\System32\Drivers\TS4nt.sys [109128 2018-10-30] (G DATA Software AG -> G DATA Software AG)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-05-15 05:00 - 2019-05-15 05:02 - 000044527 _____ C:\Users\Borris\Downloads\FRST.txt
2019-05-15 04:55 - 2019-05-15 05:00 - 000000000 ____D C:\FRST
2019-05-15 04:54 - 2019-05-15 04:54 - 002434048 _____ (Farbar) C:\Users\Borris\Downloads\FRST64.exe
2019-05-14 11:58 - 2019-05-14 11:58 - 000000218 _____ C:\Users\Borris\AppData\Local\recently-used.xbel
2019-05-14 11:55 - 2019-05-14 11:55 - 000000765 _____ C:\Users\Borris\AppData\Local\psppirerc
2019-05-13 13:09 - 2019-05-14 11:55 - 000000000 ____D C:\Users\Borris\.dbus-keyrings
2019-05-13 13:09 - 2019-05-13 13:51 - 000000648 _____ C:\Users\Borris\pspp.jnl
2019-05-13 13:08 - 2019-05-13 13:09 - 000000000 ____D C:\Program Files\PSPP
2019-05-13 13:08 - 2019-05-13 13:08 - 000001763 _____ C:\Users\Public\Desktop\PSPP.lnk
2019-05-13 13:08 - 2019-05-13 13:08 - 000001092 _____ C:\Users\Public\Desktop\PSPP Manual.lnk
2019-05-13 13:08 - 2019-05-13 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPP
2019-05-13 13:07 - 2019-05-13 13:07 - 002015178 _____ C:\Users\Borris\Downloads\Non confirmé 673337.crdownload
2019-05-13 13:06 - 2019-05-13 13:07 - 042952897 _____ C:\Users\Borris\Downloads\pspp-20181109-daily-64bits-setup.exe
2019-05-13 12:29 - 2019-05-13 12:29 - 012822122 _____ C:\Users\Borris\Downloads\Non confirmé 317366.crdownload
2019-05-13 10:38 - 2019-05-13 10:38 - 002131280 _____ ( ) C:\Users\Borris\Downloads\setup_2544843582.exe
2019-05-13 10:36 - 2019-05-13 10:36 - 002131280 _____ ( ) C:\Users\Borris\Downloads\setup_3830105099.exe
2019-05-13 10:26 - 2019-05-13 10:29 - 078378346 _____ C:\Users\Borris\Downloads\SPW_WebInstall.zip
2019-05-13 10:11 - 2019-05-13 10:11 - 000001238 _____ C:\Users\Public\Desktop\GraphPad Prism 7.lnk
2019-05-13 10:11 - 2019-05-13 10:11 - 000000000 ____D C:\Program Files (x86)\GraphPad
2019-05-13 10:06 - 2019-05-13 10:06 - 017788488 _____ (GraphPad Software) C:\Users\Borris\Downloads\InstallPrism7 (3).exe
2019-05-13 09:53 - 2019-05-13 09:54 - 017788488 _____ (GraphPad Software) C:\Users\Borris\Downloads\InstallPrism7 (2).exe
2019-05-11 20:16 - 2019-05-11 20:16 - 000000000 ____D C:\Windows\system32\appmgmt
2019-05-11 20:07 - 2019-05-11 20:07 - 000002543 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000002430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000002392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-05-11 20:07 - 2019-05-11 20:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2019-05-11 20:06 - 2019-05-14 09:25 - 000000012 _____ C:\ProgramData\irw.atsd
2019-05-11 20:06 - 2019-05-14 09:24 - 000000004 _____ C:\ProgramData\lock.dat
2019-05-11 20:06 - 2019-05-11 20:06 - 000000008 _____ C:\ProgramData\ts.dat
2019-05-11 20:05 - 2019-05-14 11:46 - 000000000 ____D C:\ProgramData\localNETService
2019-05-11 19:58 - 2019-05-11 19:58 - 000722944 _____ C:\Users\Borris\AppData\Local\sha.db
2019-05-11 19:58 - 2019-05-11 19:58 - 000140800 _____ C:\Users\Borris\AppData\Local\installer.dat
2019-05-11 19:58 - 2019-05-11 19:58 - 000011568 _____ C:\Users\Borris\AppData\Local\InstallationConfiguration.xml
2019-05-11 19:57 - 2019-05-11 19:57 - 000000000 ____D C:\Users\Borris\Documents\TigerTrade
2019-05-11 19:57 - 2019-05-11 19:57 - 000000000 ____D C:\Users\Borris\AppData\Roaming\TigerTrade
2019-05-11 19:56 - 2019-05-11 19:56 - 000000000 ____D C:\Program Files (x86)\Multitimer
2019-05-11 19:55 - 2019-05-14 11:26 - 000000000 ____D C:\Program Files (x86)\BNHGB
2019-05-11 19:55 - 2019-05-14 10:18 - 000000000 ____D C:\Users\Borris\AppData\Local\Mail.Ru
2019-05-11 19:55 - 2019-05-14 10:18 - 000000000 ____D C:\Program Files (x86)\Mail.Ru
2019-05-11 19:55 - 2019-05-14 09:26 - 000000000 ____D C:\ProgramData\Mail.Ru
2019-05-11 19:55 - 2019-05-11 19:55 - 000000000 ____D C:\Users\Borris\AppData\Roaming\Smart Application Controller
2019-05-11 19:54 - 2019-05-14 11:24 - 000000000 ____D C:\Users\Borris\AppData\Roaming\WidModule
2019-05-11 19:21 - 2019-05-11 19:22 - 017787712 _____ (GraphPad Software) C:\Users\Borris\Downloads\installprism7 (1).exe
2019-05-11 19:20 - 2019-05-11 19:26 - 000000000 ____D C:\Users\Borris\Downloads\Setup_6744
2019-05-11 19:15 - 2019-05-11 19:15 - 000863569 _____ C:\Users\Borris\Downloads\Setup_6744.zip
2019-05-11 08:43 - 2019-05-11 08:46 - 000000000 ____D C:\Program Files (x86)\AIMP Classic
2019-05-11 08:43 - 2019-05-11 08:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP Classic
2019-05-11 08:28 - 2019-05-11 20:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-05-11 08:25 - 2019-05-11 19:55 - 000000000 ____D C:\ProgramData\fb
2019-05-06 23:33 - 2019-05-06 23:33 - 004736700 _____ C:\Users\Borris\Downloads\Images traitées titrées
2019-04-27 08:03 - 2019-04-27 08:04 - 003080287 _____ C:\Users\Borris\Downloads\OPEM-D-19-00053 (1).pdf
2019-04-24 11:15 - 2019-04-24 11:16 - 000263593 _____ C:\Users\Borris\Downloads\corrige rattrapage de biochime 2017.pdf
2019-04-20 11:49 - 2019-04-20 11:49 - 000114915 _____ C:\Users\Borris\Desktop\Orange Money Payment.pdf
2019-04-20 09:33 - 2019-04-20 09:33 - 004735563 _____ C:\Users\Borris\Downloads\Images Esaie.pptx
2019-04-17 17:38 - 2019-04-17 17:38 - 000003732 _____ C:\Windows\System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2019-04-17 17:38 - 2019-04-17 17:38 - 000003150 _____ C:\Windows\System32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2019-04-17 16:15 - 2019-04-17 16:15 - 000824969 _____ C:\Users\Borris\Downloads\Developing a multisectoral National Action Plan for Health Security.pdf
2019-04-17 15:56 - 2019-04-17 15:56 - 000760257 _____ C:\Users\Borris\Downloads\JEE.pdf
2019-04-17 15:49 - 2019-04-17 15:50 - 000924460 _____ C:\Users\Borris\Downloads\SSM.2014.JLCoffin (1).pdf
2019-04-17 15:44 - 2019-04-17 15:44 - 000924460 _____ C:\Users\Borris\Downloads\SSM.2014.JLCoffin.pdf
2019-04-17 09:06 - 2019-04-17 09:07 - 000000000 ____D C:\ProgramData\MobileBrServ
2019-04-16 04:13 - 2019-04-16 04:13 - 001530996 _____ C:\Users\Borris\Downloads\10.1371_journal.pntd.0002950.g002.TIF
2019-04-16 04:05 - 2019-04-16 04:57 - 000210944 _____ C:\Users\Borris\Downloads\journal.pntd.0002950.g002.ppt

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-05-15 04:56 - 2018-12-01 10:56 - 000000288 _____ C:\Windows\Tasks\{00924158-76A1-FCD8-421E-4E701D5D6C92}.job
2019-05-15 04:53 - 2018-11-19 12:50 - 000000000 ____D C:\Users\Borris\AppData\LocalLow\Mozilla
2019-05-15 04:53 - 2018-09-03 18:11 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-05-15 04:51 - 2018-09-02 15:52 - 000003932 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7E122180-04D0-45DC-A239-B437711A8D6F}
2019-05-14 13:02 - 2018-09-25 12:19 - 001737218 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-14 13:02 - 2014-11-20 19:46 - 000776828 _____ C:\Windows\system32\perfh00C.dat
2019-05-14 13:02 - 2014-11-20 19:46 - 000151970 _____ C:\Windows\system32\perfc00C.dat
2019-05-14 13:02 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2019-05-14 12:26 - 2018-09-02 14:26 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1240574917-4017837923-3502844823-1001
2019-05-14 12:22 - 2018-10-30 18:27 - 000125640 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2019-05-14 12:17 - 2018-09-05 07:16 - 000000000 ____D C:\ProgramData\NVIDIA
2019-05-14 12:17 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-14 12:16 - 2018-09-02 14:20 - 000000000 ____D C:\Users\Borris
2019-05-14 11:45 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2019-05-14 10:59 - 2018-09-30 21:53 - 000000000 ____D C:\Users\Borris\AppData\Local\CrashDumps
2019-05-14 09:50 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\ELAM
2019-05-14 09:31 - 2019-02-07 20:24 - 000000000 ____D C:\Users\Borris\Downloads\opera autoupdate
2019-05-13 11:47 - 2018-09-03 10:59 - 000003172 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1240574917-4017837923-3502844823-1001
2019-05-13 11:47 - 2018-09-03 10:58 - 000002355 _____ C:\Users\Borris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2019-05-13 10:11 - 2018-11-19 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GraphPad Software
2019-05-11 20:25 - 2018-09-02 16:33 - 000000000 ____D C:\ProgramData\Mozilla
2019-05-11 20:08 - 2018-09-02 16:33 - 000001187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-05-11 20:08 - 2013-08-22 16:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-11 20:05 - 2018-09-02 15:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-05-11 19:56 - 2018-09-02 14:18 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2019-05-11 19:56 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-05-11 18:52 - 2018-09-02 14:20 - 000000000 ____D C:\Users\Borris\AppData\Local\VirtualStore
2019-05-11 08:32 - 2018-11-19 12:34 - 000000000 ____D C:\Users\Borris\AppData\Roaming\GraphPad Software
2019-05-11 08:13 - 2018-10-10 07:09 - 000000291 _____ C:\Users\Borris\AppData\Roaming\WB.CFG
2019-05-07 00:49 - 2018-09-03 18:35 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-07 00:49 - 2018-09-03 18:35 - 000002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-06 23:38 - 2018-09-02 14:20 - 000000000 ____D C:\Users\Borris\AppData\Local\Packages
2019-05-02 19:59 - 2019-03-12 10:54 - 000000000 ____D C:\Users\Borris\Desktop\Doc CBS 2018
2019-04-30 09:16 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2019-04-23 08:41 - 2018-09-30 21:42 - 000004080 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1538340113
2019-04-23 08:41 - 2018-09-30 21:41 - 000001381 _____ C:\Users\Borris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2019-04-18 11:17 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2019-04-18 11:03 - 2019-03-05 10:38 - 131129288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-04-18 11:03 - 2019-03-05 10:38 - 000000000 ____D C:\Windows\system32\MRT
2019-04-18 09:17 - 2019-03-27 13:12 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-04-18 08:56 - 2013-08-22 15:44 - 000492088 _____ C:\Windows\system32\FNTCACHE.DAT
2019-04-18 08:51 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData
2019-04-17 17:38 - 2018-10-10 15:21 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-04-15 12:11 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppCompat

==================== Fichiers à la racine de certains dossiers =======

2019-05-11 20:06 - 2019-05-14 09:24 - 000000004 _____ () C:\ProgramData\lock.dat
2019-05-11 20:06 - 2019-05-11 20:06 - 000000008 _____ () C:\ProgramData\ts.dat
2018-10-30 09:17 - 2018-10-30 11:21 - 000001558 _____ () C:\Users\Borris\AppData\Roaming\gdscan.log
2019-02-06 08:16 - 2019-02-06 07:10 - 000549376 ____N () C:\Users\Borris\AppData\Roaming\tres32.exe
2018-10-10 07:09 - 2019-05-11 08:13 - 000000291 _____ () C:\Users\Borris\AppData\Roaming\WB.CFG
2018-10-11 18:04 - 2018-10-11 18:04 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT14E5.tmp
2019-02-02 13:35 - 2019-02-02 13:35 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT1ADD.tmp
2019-02-02 13:35 - 2019-02-02 13:35 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT1B1D.tmp
2019-02-02 13:35 - 2019-02-02 13:35 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT21E6.tmp
2018-11-11 15:25 - 2018-11-11 15:25 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT22BD.tmp
2018-11-23 02:14 - 2018-11-23 02:14 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT2D83.tmp
2018-10-24 10:21 - 2018-10-24 10:21 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT402D.tmp
2018-10-24 10:21 - 2018-10-24 10:21 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT407C.tmp
2018-11-20 23:04 - 2018-11-20 23:04 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT462F.tmp
2019-03-28 07:22 - 2019-03-28 07:22 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT4BD3.tmp
2019-03-14 11:07 - 2019-03-14 11:07 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT5721.tmp
2019-03-21 11:27 - 2019-03-21 11:27 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT59EF.tmp
2018-10-14 06:56 - 2018-10-14 06:56 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT68AE.tmp
2019-03-20 11:19 - 2019-03-20 11:19 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT77AA.tmp
2019-03-24 13:33 - 2019-03-24 13:33 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT7F69.tmp
2019-03-17 20:24 - 2019-03-17 20:24 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT881C.tmp
2019-03-17 20:24 - 2019-03-17 20:24 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT885B.tmp
2019-03-17 20:24 - 2019-03-17 20:24 - 000000000 _____ () C:\Users\Borris\AppData\Local\BIT8A14.tmp
2018-12-21 20:57 - 2018-12-21 20:57 - 000000000 _____ () C:\Users\Borris\AppData\Local\BITCD7C.tmp
2019-02-05 11:20 - 2019-02-05 11:20 - 000000000 _____ () C:\Users\Borris\AppData\Local\BITCEAF.tmp
2019-03-07 10:24 - 2019-03-07 10:24 - 000000000 _____ () C:\Users\Borris\AppData\Local\BITD30B.tmp
2018-10-14 06:55 - 2018-10-14 06:55 - 000000000 _____ () C:\Users\Borris\AppData\Local\BITD7B.tmp
2019-01-14 19:10 - 2019-01-14 19:10 - 000000000 _____ () C:\Users\Borris\AppData\Local\BITFEB1.tmp
2018-12-27 07:08 - 2018-12-27 07:08 - 000004608 _____ () C:\Users\Borris\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-05-11 19:58 - 2019-05-11 19:58 - 000011568 _____ () C:\Users\Borris\AppData\Local\InstallationConfiguration.xml
2019-05-11 19:58 - 2019-05-11 19:58 - 000140800 _____ () C:\Users\Borris\AppData\Local\installer.dat
2018-09-30 21:41 - 2018-09-30 21:41 - 000000000 _____ () C:\Users\Borris\AppData\Local\oobelibMkey.log
2019-05-14 11:55 - 2019-05-14 11:55 - 000000765 _____ () C:\Users\Borris\AppData\Local\psppirerc
2019-05-14 11:58 - 2019-05-14 11:58 - 000000218 _____ () C:\Users\Borris\AppData\Local\recently-used.xbel
2019-05-11 19:58 - 2019-05-11 19:58 - 000722944 _____ () C:\Users\Borris\AppData\Local\sha.db
2018-11-12 19:07 - 2018-11-12 19:07 - 000000153 _____ () C:\Users\Borris\AppData\Local\{013E2505-6332-4C8B-9269-84E6E7311867}

==================== SigCheck ===============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2019-05-11 10:09
==================== Fin de FRST.txt ============================