needhelp51
Posts: 368 +0
Hello,
My computer wifi is acting weird. I am currently using an external usb wifi because my wifi card died (I deactivated it). Intermittently, I get cut off from my usb wifi with strange message in my browsers
like 'DNS changed' or 'Detected change of network'. When this happens, I lose the connection. I have to reconnect. Sometimes it works. Sometimes I have to reboot the computer for it to work. The usb device worksfine on other computers in the house. So my home connection, router or usb device seem not to be the cuplrit. I suspected malware but Broni said my scan look ok on that side and advised me to post a thread here. Something in the event viewer seems to point to WLAN problems. Please help.
Here is the FRST logs. let me know if you need Addition.txt also.
FRST:
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2017
Exécuté par USER (administrateur) sur TOSHIBA (05-08-2017 11:03:12)
Exécuté depuis C:\Users\USER\Desktop
Profils chargés: USER (Profils disponibles: USER)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool:
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
( ) C:\Windows\System32\lxdxcoms.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
(Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Wondershare) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe
(TODO: <Company name>) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [179288 2014-01-04] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-10-08] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296008 2013-10-21] (TOSHIBA Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3249384 2015-05-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [914648 2014-03-05] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830104 2014-01-14] (Conexant Systems, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-23] (AVAST Software)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-02-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1421736 2017-03-28] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2088832 2016-12-22] (Sony)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1421736 2017-03-28] (Garmin Ltd. or its subsidiaries)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-02-04]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare)
Startup: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2016-08-08]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0B4C5874-80F0-4B7C-8486-17CDA628398E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4A0A451B-6198-4D5D-9FBF-AE2FBBC85052}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{50DF5579-E176-48A2-9370-9422E9E0575C}: [DhcpNameServer] 192.168.44.1
Tcpip\..\Interfaces\{D332F385-12BF-4B5C-A372-3D807ADE6D5E}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba13.msn.com/?pc=TNJB
hxxp://www.toshiba.ca/welcome/?w=23
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-06-30] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-07-04] (AVAST Software)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-06-24] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-04] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-24] (Oracle Corporation)
Handler-x32: intu-ir2014 - {980B949F-E16E-4459-88E8-580392AEF9AE} - C:\Program Files (x86)\ImpotRapide 2014\ic2014pp.dll [2015-02-13] (Intuit Canada, a general partnership/une société en nom collectif.)
Handler-x32: intu-ir2015 - {6BEE4271-88EB-43B7-BEE1-54B77DC65F9C} - C:\Program Files (x86)\ImpotRapide 2015\ic2015pp.dll [2015-11-23] (Intuit Canada, a general partnership/une société en nom collectif.)
Handler-x32: intu-ir2016 - {1A650DE5-FC3E-4C0A-AF76-311BB850DDC2} - C:\Program Files (x86)\ImpotRapide 2016\ic2016pp.dll [2016-11-23] (Intuit Canada, a general partnership/une société en nom collectif.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509 [2017-08-04]
FF Homepage: Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509 -> hxxps://www.google.ca
FF Extension: (Avast SafePrice) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\sp@avast.com.xpi [2017-06-02]
FF Extension: (Google Translator for Firefox) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\translator@zoli.bod.xpi [2017-02-11]
FF Extension: (Avast Online Security) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\wrc@avast.com.xpi [2017-06-02]
FF Extension: (WOT) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2017-05-10]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-07-04] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-07-04] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-26] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-07-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://ca.search.yahoo.com/?type=926458&fr=yo-yhp-ch
CHR StartupUrls: Default -> "hxxp://www.google.ca/"
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default [2017-08-05]
CHR Extension: (Google Slides) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-13]
CHR Extension: (Google Docs) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-13]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (Adguard AdBlocker) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-07-14]
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2017-07-26]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Recherche Google) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-07-26]
CHR Extension: (Google Sheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-18]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvé(e)>
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-23] (AVAST Software s.r.o.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-03-19] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-23] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4412104 2017-07-18] (Microsoft Corporation)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [21840 2014-03-21] ()
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [147688 2015-05-19] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: <Company name>) [Fichier non signé]
R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1099280 2017-03-28] (Garmin Ltd. or its subsidiaries)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-06] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-03-06] (Intel Corporation)
R2 lxdx_device; C:\Windows\system32\lxdxcoms.exe [1039872 2009-10-16] ( )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe [437392 2016-10-10] (Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Wondershare TunesGo (Win) - iOS Devices\DriverInstall.exe [118496 2017-03-22] (Wondershare)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2205568 2016-12-22] (Sony)
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-07-23] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-07-23] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-07-23] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-07-23] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-07-04] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41800 2017-07-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146696 2017-07-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-07-04] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-07-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015848 2017-07-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-07-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-07-04] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-07-04] (AVAST Software)
S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-03-06] (Intel Corporation)
S3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3607520 2013-10-14] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [293592 2014-02-11] (Realtek Semiconductor Corp.)
R3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [3860224 2015-08-05] (Realtek Semiconductor Corporation )
S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [13824 2008-04-03] (Atola) [Fichier non signé]
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-02-21] (Synaptics Incorporated)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [33168 2013-10-10] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-05 11:03 - 2017-08-05 11:04 - 000024460 _____ C:\Users\USER\Desktop\FRST.txt
2017-08-05 11:02 - 2017-08-05 11:03 - 000000000 ____D C:\FRST
2017-08-05 11:01 - 2017-08-05 11:01 - 002381312 _____ (Farbar) C:\Users\USER\Desktop\FRST64.exe
2017-08-04 18:05 - 2017-08-04 18:05 - 000001626 _____ C:\Users\USER\AppData\Local\recently-used.xbel
2017-08-02 18:04 - 2017-08-02 18:04 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-07-25 06:04 - 2017-07-25 06:04 - 000003168 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2253113614-2940369490-2009371491-1001
2017-07-23 18:36 - 2017-07-23 18:36 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-07-23 12:07 - 2017-07-24 20:25 - 000000000 ____D C:\Users\USER\Desktop\2017-07-22 Voivod BSP
2017-07-16 08:41 - 2017-07-16 08:41 - 000077731 _____ C:\Users\USER\Downloads\appointment details.pdf
2017-07-16 08:40 - 2017-07-16 08:40 - 000083968 _____ C:\Users\USER\Downloads\Listing_Permits_GLOBAL.xls
2017-07-12 18:48 - 2017-07-12 18:55 - 000000000 ____D C:\Users\USER\Desktop\Photos
2017-07-12 08:25 - 2017-05-03 19:11 - 000103600 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-07-12 08:25 - 2017-05-03 09:43 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 001206272 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000620544 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000535552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-07-12 08:15 - 2017-07-06 04:52 - 000119296 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2017-07-12 08:15 - 2017-06-29 02:27 - 025734656 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-07-12 08:15 - 2017-06-29 02:02 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-07-12 08:15 - 2017-06-29 01:50 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-07-12 08:15 - 2017-06-29 01:44 - 005975552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-07-12 08:15 - 2017-06-29 01:23 - 020270592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-07-12 08:15 - 2017-06-29 01:23 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-07-12 08:15 - 2017-06-29 01:17 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-07-12 08:15 - 2017-06-29 01:13 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-07-12 08:15 - 2017-06-29 01:09 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-07-12 08:15 - 2017-06-29 00:58 - 015253504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-07-12 08:15 - 2017-06-29 00:53 - 003240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-07-12 08:15 - 2017-06-29 00:52 - 004549632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-07-12 08:15 - 2017-06-29 00:51 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-07-12 08:15 - 2017-06-29 00:47 - 000693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-07-12 08:15 - 2017-06-29 00:43 - 013663744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-07-12 08:15 - 2017-06-29 00:41 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-07-12 08:15 - 2017-06-29 00:29 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-07-12 08:15 - 2017-06-29 00:28 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-07-12 08:15 - 2017-06-29 00:24 - 001314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-07-12 08:15 - 2017-06-29 00:23 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-07-12 08:15 - 2017-06-27 10:29 - 007796736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-07-12 08:15 - 2017-06-27 10:29 - 007077376 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2017-07-12 08:15 - 2017-06-27 10:26 - 005274112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2017-07-12 08:15 - 2017-06-27 10:26 - 005268992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 08:15 - 2017-06-22 10:22 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-07-12 08:15 - 2017-06-17 12:45 - 003631616 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-07-12 08:15 - 2017-06-17 12:34 - 002749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-07-12 08:15 - 2017-06-17 12:11 - 002551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-07-12 08:15 - 2017-06-17 12:05 - 001920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-07-12 08:15 - 2017-06-15 18:02 - 000990040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-07-12 08:15 - 2017-06-15 09:45 - 007440728 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-07-12 08:15 - 2017-06-15 09:45 - 001674520 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-07-12 08:15 - 2017-06-15 09:45 - 001534064 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-07-12 08:15 - 2017-06-15 09:45 - 001499920 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-07-12 08:15 - 2017-06-15 09:45 - 001370320 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-07-12 08:15 - 2017-06-15 09:45 - 000086360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2017-07-12 08:15 - 2017-06-11 20:06 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-07-12 08:15 - 2017-06-11 18:21 - 000590848 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2017-07-12 08:15 - 2017-06-11 17:43 - 000371200 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2017-07-12 08:15 - 2017-06-11 17:25 - 000478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2017-07-12 08:15 - 2017-06-11 17:15 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2017-07-12 08:15 - 2017-06-11 17:08 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-07-12 08:15 - 2017-06-11 17:07 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2017-07-12 08:15 - 2017-06-11 17:00 - 000962560 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-07-12 08:15 - 2017-06-11 16:58 - 000334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2017-07-12 08:15 - 2017-06-11 16:40 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2017-07-12 08:15 - 2017-06-11 16:35 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-07-12 08:15 - 2017-06-11 16:31 - 000781312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-07-12 08:15 - 2017-06-11 11:15 - 002013528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-07-12 08:15 - 2017-06-06 16:52 - 003120640 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-07-12 08:15 - 2017-06-06 16:42 - 000925696 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2017-07-12 08:15 - 2017-06-06 16:38 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\cnvfat.dll
2017-07-12 08:15 - 2017-06-06 16:36 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\uudf.dll
2017-07-12 08:15 - 2017-06-06 16:36 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\convert.exe
2017-07-12 08:15 - 2017-06-06 16:35 - 000517120 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2017-07-12 08:15 - 2017-06-06 15:13 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000557568 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\ufat.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\uexfat.dll
2017-07-12 08:15 - 2017-06-06 15:08 - 002712576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-07-12 08:15 - 2017-06-06 15:03 - 000837632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2017-07-12 08:15 - 2017-06-06 14:59 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cnvfat.dll
2017-07-12 08:15 - 2017-06-06 14:57 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uudf.dll
2017-07-12 08:15 - 2017-06-06 14:56 - 000375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2017-07-12 08:15 - 2017-06-06 14:03 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ulib.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ufat.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uexfat.dll
2017-07-12 08:15 - 2017-06-03 12:27 - 002346496 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-07-12 08:15 - 2017-06-03 12:03 - 001549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-07-12 08:15 - 2017-05-31 17:20 - 000470360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-07-12 08:15 - 2017-05-15 18:09 - 000057688 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2017-07-12 08:15 - 2017-05-15 16:03 - 000379744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-07-12 08:15 - 2017-05-09 10:37 - 000658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2017-07-12 08:15 - 2017-05-09 10:35 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2017-07-12 08:15 - 2017-05-09 10:29 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll
2017-07-12 08:15 - 2017-05-09 10:29 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe
2017-07-12 08:15 - 2017-05-09 10:28 - 000193024 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2017-07-12 08:15 - 2017-05-09 10:28 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2017-07-12 08:15 - 2017-05-09 10:12 - 000448576 _____ C:\Windows\system32\ApnDatabase.xml
2017-07-12 08:15 - 2017-05-06 12:45 - 001114624 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-07-12 08:15 - 2017-05-06 12:41 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2017-07-12 08:15 - 2017-05-02 16:09 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-07-12 08:15 - 2017-05-02 16:08 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-07-12 08:15 - 2017-05-02 16:08 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-07-12 08:15 - 2017-05-02 14:41 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2017-07-12 08:15 - 2017-05-02 14:31 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-07-12 08:15 - 2017-05-02 14:31 - 000207360 _____ (Microsoft Corporation) C:\Windows\system32\smbwmiv2.dll
2017-07-12 08:15 - 2017-05-02 13:35 - 000031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2017-07-12 08:15 - 2017-04-30 12:48 - 000080078 _____ C:\Windows\system32\normidna.nls
2017-07-12 08:15 - 2017-04-27 21:13 - 001292288 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-07-12 08:15 - 2017-04-27 21:11 - 001060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-07-09 20:12 - 2017-07-09 20:12 - 000536360 _____ C:\Users\USER\Downloads\FIG_cropper (2).swf
2017-07-09 20:11 - 2017-07-09 20:11 - 000536360 _____ C:\Users\USER\Downloads\FIG_cropper.swf
2017-07-09 20:11 - 2017-07-09 20:11 - 000536360 _____ C:\Users\USER\Downloads\FIG_cropper (1).swf
2017-07-07 20:15 - 2017-07-07 20:15 - 000000000 ____D C:\Users\USER\AppData\LocalLow\Google
2017-07-07 20:14 - 2017-07-07 20:14 - 000002175 _____ C:\Users\Public\Desktop\Google Earth.lnk
2017-07-07 20:14 - 2017-07-07 20:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2017-07-07 20:09 - 2017-07-07 20:10 - 001130328 _____ (Google Inc.) C:\Users\USER\Downloads\GoogleEarthSetup.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-05 10:49 - 2015-01-20 21:44 - 000003928 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E23F4E4B-10C1-4082-AB07-CBCEC93CA7B5}
2017-08-05 10:43 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\system32\NDF
2017-08-04 18:33 - 2017-02-08 08:33 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-08-04 18:27 - 2015-02-17 07:10 - 000000000 ____D C:\Users\USER\AppData\Local\CrashDumps
2017-08-04 18:24 - 2013-08-22 10:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-04 18:18 - 2013-08-22 09:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2017-08-04 18:11 - 2016-12-10 15:08 - 000000000 ____D C:\Users\USER\AppData\LocalLow\Mozilla
2017-08-04 18:05 - 2016-07-24 10:36 - 000000000 ____D C:\Users\USER\.gimp-2.8
2017-08-04 18:01 - 2017-05-01 06:46 - 000033463 _____ C:\Users\USER\Desktop\roster.txt
2017-08-04 17:58 - 2013-08-22 09:36 - 000000000 ____D C:\Windows\Inf
2017-08-03 22:25 - 2014-10-28 20:15 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2253113614-2940369490-2009371491-1001
2017-08-03 17:23 - 2015-01-21 21:28 - 000000000 ____D C:\ProgramData\Skype
2017-08-02 18:05 - 2015-01-20 23:42 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-02 18:05 - 2015-01-20 23:42 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-07-31 21:53 - 2014-10-28 17:33 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-07-26 18:59 - 2013-08-22 11:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-07-25 19:21 - 2014-04-10 22:11 - 001826754 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-25 19:21 - 2013-08-28 21:28 - 000813248 _____ C:\Windows\system32\perfh00C.dat
2017-07-25 19:21 - 2013-08-28 21:28 - 000159750 _____ C:\Windows\system32\perfc00C.dat
2017-07-25 06:04 - 2016-05-31 13:05 - 000002354 _____ C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2017-07-25 06:04 - 2016-05-30 08:23 - 000003176 _____ C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2253113614-2940369490-2009371491-1001
2017-07-23 18:43 - 2017-02-11 23:18 - 000003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458770513
2017-07-23 18:43 - 2016-03-23 18:02 - 000001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-07-23 18:37 - 2015-01-20 23:51 - 000146696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2017-07-23 18:36 - 2015-01-20 23:51 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150084944442103
2017-07-23 18:35 - 2017-02-08 08:33 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-07-23 18:35 - 2017-02-08 08:33 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-07-23 18:35 - 2017-02-08 08:33 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-07-23 18:35 - 2017-02-08 08:33 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-07-23 12:13 - 2016-07-24 10:45 - 000000000 ____D C:\Users\USER\AppData\Local\gtk-2.0
2017-07-22 13:29 - 2015-08-11 19:10 - 000000000 ____D C:\ProgramData\lx_Cats
2017-07-20 09:04 - 2013-08-22 11:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-07-20 09:04 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\AppReadiness
2017-07-16 11:02 - 2015-01-27 20:22 - 000000000 ____D C:\Users\USER\AppData\Local\Adobe
2017-07-16 10:49 - 2017-05-14 22:46 - 000004642 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-07-16 10:49 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\system32\Macromed
2017-07-16 10:48 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-07-15 19:23 - 2015-03-10 18:05 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-07-15 12:00 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\rescache
2017-07-14 17:37 - 2013-08-22 10:44 - 000506896 _____ C:\Windows\system32\FNTCACHE.DAT
2017-07-14 17:33 - 2017-05-13 17:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-07-14 17:33 - 2015-01-20 23:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-14 17:27 - 2015-01-20 23:32 - 000000000 ____D C:\Windows\system32\appraiser
2017-07-12 09:01 - 2015-01-20 22:44 - 000000000 ____D C:\Windows\system32\MRT
2017-07-12 08:57 - 2015-01-20 22:43 - 135225752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-07-12 08:57 - 2013-08-22 11:20 - 000000000 ____D C:\Windows\CbsTemp
2017-07-09 20:22 - 2017-06-30 13:18 - 000000000 ____D C:\Users\USER\Desktop\Nouveau dossier (2)
2017-07-07 20:14 - 2015-01-20 23:40 - 000000000 ____D C:\Program Files (x86)\Google
==================== Fichiers à la racine de certains dossiers =======
2017-08-04 18:05 - 2017-08-04 18:05 - 000001626 _____ () C:\Users\USER\AppData\Local\recently-used.xbel
Certains fichiers dans TEMP:
====================
2017-06-24 09:57 - 2017-06-24 09:57 - 000739904 _____ (Oracle Corporation) C:\Users\USER\AppData\Local\Temp\jre-8u131-windows-au.exe
2017-05-29 21:59 - 2017-05-29 21:59 - 030950664 _____ () C:\Users\USER\AppData\Local\Temp\vlc-2.2.6-win32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-26 18:49
My computer wifi is acting weird. I am currently using an external usb wifi because my wifi card died (I deactivated it). Intermittently, I get cut off from my usb wifi with strange message in my browsers
like 'DNS changed' or 'Detected change of network'. When this happens, I lose the connection. I have to reconnect. Sometimes it works. Sometimes I have to reboot the computer for it to work. The usb device worksfine on other computers in the house. So my home connection, router or usb device seem not to be the cuplrit. I suspected malware but Broni said my scan look ok on that side and advised me to post a thread here. Something in the event viewer seems to point to WLAN problems. Please help.
Here is the FRST logs. let me know if you need Addition.txt also.
FRST:
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 31-07-2017
Exécuté par USER (administrateur) sur TOSHIBA (05-08-2017 11:03:12)
Exécuté depuis C:\Users\USER\Desktop
Profils chargés: USER (Profils disponibles: USER)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool:
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
( ) C:\Windows\System32\lxdxcoms.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
(Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Wondershare) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe
(TODO: <Company name>) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [179288 2014-01-04] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-10-08] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296008 2013-10-21] (TOSHIBA Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3249384 2015-05-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [914648 2014-03-05] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830104 2014-01-14] (Conexant Systems, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-23] (AVAST Software)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-02-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1421736 2017-03-28] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2088832 2016-12-22] (Sony)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1421736 2017-03-28] (Garmin Ltd. or its subsidiaries)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-02-04]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare)
Startup: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2016-08-08]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0B4C5874-80F0-4B7C-8486-17CDA628398E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4A0A451B-6198-4D5D-9FBF-AE2FBBC85052}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{50DF5579-E176-48A2-9370-9422E9E0575C}: [DhcpNameServer] 192.168.44.1
Tcpip\..\Interfaces\{D332F385-12BF-4B5C-A372-3D807ADE6D5E}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-2253113614-2940369490-2009371491-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba13.msn.com/?pc=TNJB
hxxp://www.toshiba.ca/welcome/?w=23
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-06-30] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-07-04] (AVAST Software)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-06-24] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-04] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-24] (Oracle Corporation)
Handler-x32: intu-ir2014 - {980B949F-E16E-4459-88E8-580392AEF9AE} - C:\Program Files (x86)\ImpotRapide 2014\ic2014pp.dll [2015-02-13] (Intuit Canada, a general partnership/une société en nom collectif.)
Handler-x32: intu-ir2015 - {6BEE4271-88EB-43B7-BEE1-54B77DC65F9C} - C:\Program Files (x86)\ImpotRapide 2015\ic2015pp.dll [2015-11-23] (Intuit Canada, a general partnership/une société en nom collectif.)
Handler-x32: intu-ir2016 - {1A650DE5-FC3E-4C0A-AF76-311BB850DDC2} - C:\Program Files (x86)\ImpotRapide 2016\ic2016pp.dll [2016-11-23] (Intuit Canada, a general partnership/une société en nom collectif.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-30] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509 [2017-08-04]
FF Homepage: Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509 -> hxxps://www.google.ca
FF Extension: (Avast SafePrice) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\sp@avast.com.xpi [2017-06-02]
FF Extension: (Google Translator for Firefox) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\translator@zoli.bod.xpi [2017-02-11]
FF Extension: (Avast Online Security) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\wrc@avast.com.xpi [2017-06-02]
FF Extension: (WOT) - C:\Users\USER\AppData\Roaming\Mozilla\Firefox\Profiles\b3rwmyxm.default-1444782379509\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2017-05-10]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-07-04] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-07-04] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-26] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-07-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://ca.search.yahoo.com/?type=926458&fr=yo-yhp-ch
CHR StartupUrls: Default -> "hxxp://www.google.ca/"
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default [2017-08-05]
CHR Extension: (Google Slides) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-13]
CHR Extension: (Google Docs) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-13]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (Adguard AdBlocker) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-07-14]
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2017-07-26]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Recherche Google) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-07-26]
CHR Extension: (Google Sheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-18]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-28]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <non trouvé(e)>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvé(e)>
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-23] (AVAST Software s.r.o.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-03-19] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-23] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4412104 2017-07-18] (Microsoft Corporation)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [21840 2014-03-21] ()
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [147688 2015-05-19] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: <Company name>) [Fichier non signé]
R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1099280 2017-03-28] (Garmin Ltd. or its subsidiaries)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-06] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-03-06] (Intel Corporation)
R2 lxdx_device; C:\Windows\system32\lxdxcoms.exe [1039872 2009-10-16] ( )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe [437392 2016-10-10] (Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Wondershare TunesGo (Win) - iOS Devices\DriverInstall.exe [118496 2017-03-22] (Wondershare)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2205568 2016-12-22] (Sony)
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-07-23] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-07-23] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-07-23] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-07-23] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-07-04] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41800 2017-07-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146696 2017-07-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-07-04] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-07-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015848 2017-07-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-07-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-07-04] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-07-04] (AVAST Software)
S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-03-06] (Intel Corporation)
S3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3607520 2013-10-14] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [293592 2014-02-11] (Realtek Semiconductor Corp.)
R3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [3860224 2015-08-05] (Realtek Semiconductor Corporation )
S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [13824 2008-04-03] (Atola) [Fichier non signé]
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-02-21] (Synaptics Incorporated)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [33168 2013-10-10] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-05 11:03 - 2017-08-05 11:04 - 000024460 _____ C:\Users\USER\Desktop\FRST.txt
2017-08-05 11:02 - 2017-08-05 11:03 - 000000000 ____D C:\FRST
2017-08-05 11:01 - 2017-08-05 11:01 - 002381312 _____ (Farbar) C:\Users\USER\Desktop\FRST64.exe
2017-08-04 18:05 - 2017-08-04 18:05 - 000001626 _____ C:\Users\USER\AppData\Local\recently-used.xbel
2017-08-02 18:04 - 2017-08-02 18:04 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-07-25 06:04 - 2017-07-25 06:04 - 000003168 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2253113614-2940369490-2009371491-1001
2017-07-23 18:36 - 2017-07-23 18:36 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-07-23 12:07 - 2017-07-24 20:25 - 000000000 ____D C:\Users\USER\Desktop\2017-07-22 Voivod BSP
2017-07-16 08:41 - 2017-07-16 08:41 - 000077731 _____ C:\Users\USER\Downloads\appointment details.pdf
2017-07-16 08:40 - 2017-07-16 08:40 - 000083968 _____ C:\Users\USER\Downloads\Listing_Permits_GLOBAL.xls
2017-07-12 18:48 - 2017-07-12 18:55 - 000000000 ____D C:\Users\USER\Desktop\Photos
2017-07-12 08:25 - 2017-05-03 19:11 - 000103600 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-07-12 08:25 - 2017-05-03 09:43 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 001206272 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000620544 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000535552 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000311296 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-07-12 08:25 - 2017-05-03 09:43 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-07-12 08:15 - 2017-07-06 04:52 - 000119296 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2017-07-12 08:15 - 2017-06-29 02:27 - 025734656 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-07-12 08:15 - 2017-06-29 02:02 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-07-12 08:15 - 2017-06-29 01:50 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-07-12 08:15 - 2017-06-29 01:44 - 005975552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-07-12 08:15 - 2017-06-29 01:23 - 020270592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-07-12 08:15 - 2017-06-29 01:23 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-07-12 08:15 - 2017-06-29 01:17 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-07-12 08:15 - 2017-06-29 01:13 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-07-12 08:15 - 2017-06-29 01:09 - 000806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-07-12 08:15 - 2017-06-29 00:58 - 015253504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-07-12 08:15 - 2017-06-29 00:53 - 003240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-07-12 08:15 - 2017-06-29 00:52 - 004549632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-07-12 08:15 - 2017-06-29 00:51 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-07-12 08:15 - 2017-06-29 00:47 - 000693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-07-12 08:15 - 2017-06-29 00:43 - 013663744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-07-12 08:15 - 2017-06-29 00:41 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-07-12 08:15 - 2017-06-29 00:29 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-07-12 08:15 - 2017-06-29 00:28 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-07-12 08:15 - 2017-06-29 00:24 - 001314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-07-12 08:15 - 2017-06-29 00:23 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-07-12 08:15 - 2017-06-27 10:29 - 007796736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-07-12 08:15 - 2017-06-27 10:29 - 007077376 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2017-07-12 08:15 - 2017-06-27 10:26 - 005274112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2017-07-12 08:15 - 2017-06-27 10:26 - 005268992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-07-12 08:15 - 2017-06-22 10:22 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-07-12 08:15 - 2017-06-17 12:45 - 003631616 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-07-12 08:15 - 2017-06-17 12:34 - 002749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-07-12 08:15 - 2017-06-17 12:11 - 002551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-07-12 08:15 - 2017-06-17 12:05 - 001920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-07-12 08:15 - 2017-06-15 18:02 - 000990040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2017-07-12 08:15 - 2017-06-15 09:45 - 007440728 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-07-12 08:15 - 2017-06-15 09:45 - 001674520 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-07-12 08:15 - 2017-06-15 09:45 - 001534064 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-07-12 08:15 - 2017-06-15 09:45 - 001499920 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-07-12 08:15 - 2017-06-15 09:45 - 001370320 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-07-12 08:15 - 2017-06-15 09:45 - 000086360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2017-07-12 08:15 - 2017-06-11 20:06 - 000376672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-07-12 08:15 - 2017-06-11 18:21 - 000590848 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2017-07-12 08:15 - 2017-06-11 17:43 - 000371200 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2017-07-12 08:15 - 2017-06-11 17:25 - 000478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2017-07-12 08:15 - 2017-06-11 17:15 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2017-07-12 08:15 - 2017-06-11 17:08 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-07-12 08:15 - 2017-06-11 17:07 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2017-07-12 08:15 - 2017-06-11 17:00 - 000962560 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-07-12 08:15 - 2017-06-11 16:58 - 000334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe
2017-07-12 08:15 - 2017-06-11 16:40 - 001323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2017-07-12 08:15 - 2017-06-11 16:35 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-07-12 08:15 - 2017-06-11 16:31 - 000781312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-07-12 08:15 - 2017-06-11 11:15 - 002013528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-07-12 08:15 - 2017-06-06 16:52 - 003120640 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-07-12 08:15 - 2017-06-06 16:42 - 000925696 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2017-07-12 08:15 - 2017-06-06 16:38 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\cnvfat.dll
2017-07-12 08:15 - 2017-06-06 16:36 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\uudf.dll
2017-07-12 08:15 - 2017-06-06 16:36 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\convert.exe
2017-07-12 08:15 - 2017-06-06 16:35 - 000517120 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2017-07-12 08:15 - 2017-06-06 15:13 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000557568 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\ufat.dll
2017-07-12 08:15 - 2017-06-06 15:11 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\uexfat.dll
2017-07-12 08:15 - 2017-06-06 15:08 - 002712576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-07-12 08:15 - 2017-06-06 15:03 - 000837632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2017-07-12 08:15 - 2017-06-06 14:59 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cnvfat.dll
2017-07-12 08:15 - 2017-06-06 14:57 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uudf.dll
2017-07-12 08:15 - 2017-06-06 14:56 - 000375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2017-07-12 08:15 - 2017-06-06 14:03 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ulib.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ufat.dll
2017-07-12 08:15 - 2017-06-06 14:02 - 000074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uexfat.dll
2017-07-12 08:15 - 2017-06-03 12:27 - 002346496 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-07-12 08:15 - 2017-06-03 12:03 - 001549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-07-12 08:15 - 2017-05-31 17:20 - 000470360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2017-07-12 08:15 - 2017-05-15 18:09 - 000057688 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2017-07-12 08:15 - 2017-05-15 16:03 - 000379744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-07-12 08:15 - 2017-05-09 10:37 - 000658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2017-07-12 08:15 - 2017-05-09 10:35 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2017-07-12 08:15 - 2017-05-09 10:29 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll
2017-07-12 08:15 - 2017-05-09 10:29 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe
2017-07-12 08:15 - 2017-05-09 10:28 - 000193024 _____ (Microsoft Corporation) C:\Windows\system32\DAFWSD.dll
2017-07-12 08:15 - 2017-05-09 10:28 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2017-07-12 08:15 - 2017-05-09 10:12 - 000448576 _____ C:\Windows\system32\ApnDatabase.xml
2017-07-12 08:15 - 2017-05-06 12:45 - 001114624 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2017-07-12 08:15 - 2017-05-06 12:41 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2017-07-12 08:15 - 2017-05-02 16:09 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-07-12 08:15 - 2017-05-02 16:08 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-07-12 08:15 - 2017-05-02 16:08 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-07-12 08:15 - 2017-05-02 14:41 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2017-07-12 08:15 - 2017-05-02 14:31 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-07-12 08:15 - 2017-05-02 14:31 - 000207360 _____ (Microsoft Corporation) C:\Windows\system32\smbwmiv2.dll
2017-07-12 08:15 - 2017-05-02 13:35 - 000031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2017-07-12 08:15 - 2017-04-30 12:48 - 000080078 _____ C:\Windows\system32\normidna.nls
2017-07-12 08:15 - 2017-04-27 21:13 - 001292288 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2017-07-12 08:15 - 2017-04-27 21:11 - 001060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2017-07-09 20:12 - 2017-07-09 20:12 - 000536360 _____ C:\Users\USER\Downloads\FIG_cropper (2).swf
2017-07-09 20:11 - 2017-07-09 20:11 - 000536360 _____ C:\Users\USER\Downloads\FIG_cropper.swf
2017-07-09 20:11 - 2017-07-09 20:11 - 000536360 _____ C:\Users\USER\Downloads\FIG_cropper (1).swf
2017-07-07 20:15 - 2017-07-07 20:15 - 000000000 ____D C:\Users\USER\AppData\LocalLow\Google
2017-07-07 20:14 - 2017-07-07 20:14 - 000002175 _____ C:\Users\Public\Desktop\Google Earth.lnk
2017-07-07 20:14 - 2017-07-07 20:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2017-07-07 20:09 - 2017-07-07 20:10 - 001130328 _____ (Google Inc.) C:\Users\USER\Downloads\GoogleEarthSetup.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-05 10:49 - 2015-01-20 21:44 - 000003928 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E23F4E4B-10C1-4082-AB07-CBCEC93CA7B5}
2017-08-05 10:43 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\system32\NDF
2017-08-04 18:33 - 2017-02-08 08:33 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-08-04 18:27 - 2015-02-17 07:10 - 000000000 ____D C:\Users\USER\AppData\Local\CrashDumps
2017-08-04 18:24 - 2013-08-22 10:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-04 18:18 - 2013-08-22 09:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2017-08-04 18:11 - 2016-12-10 15:08 - 000000000 ____D C:\Users\USER\AppData\LocalLow\Mozilla
2017-08-04 18:05 - 2016-07-24 10:36 - 000000000 ____D C:\Users\USER\.gimp-2.8
2017-08-04 18:01 - 2017-05-01 06:46 - 000033463 _____ C:\Users\USER\Desktop\roster.txt
2017-08-04 17:58 - 2013-08-22 09:36 - 000000000 ____D C:\Windows\Inf
2017-08-03 22:25 - 2014-10-28 20:15 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2253113614-2940369490-2009371491-1001
2017-08-03 17:23 - 2015-01-21 21:28 - 000000000 ____D C:\ProgramData\Skype
2017-08-02 18:05 - 2015-01-20 23:42 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-02 18:05 - 2015-01-20 23:42 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-07-31 21:53 - 2014-10-28 17:33 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-07-26 18:59 - 2013-08-22 11:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-07-25 19:21 - 2014-04-10 22:11 - 001826754 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-25 19:21 - 2013-08-28 21:28 - 000813248 _____ C:\Windows\system32\perfh00C.dat
2017-07-25 19:21 - 2013-08-28 21:28 - 000159750 _____ C:\Windows\system32\perfc00C.dat
2017-07-25 06:04 - 2016-05-31 13:05 - 000002354 _____ C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2017-07-25 06:04 - 2016-05-30 08:23 - 000003176 _____ C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2253113614-2940369490-2009371491-1001
2017-07-23 18:43 - 2017-02-11 23:18 - 000003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458770513
2017-07-23 18:43 - 2016-03-23 18:02 - 000001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-07-23 18:37 - 2015-01-20 23:51 - 000146696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2017-07-23 18:36 - 2015-01-20 23:51 - 000146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys.150084944442103
2017-07-23 18:35 - 2017-02-08 08:33 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-07-23 18:35 - 2017-02-08 08:33 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-07-23 18:35 - 2017-02-08 08:33 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-07-23 18:35 - 2017-02-08 08:33 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-07-23 12:13 - 2016-07-24 10:45 - 000000000 ____D C:\Users\USER\AppData\Local\gtk-2.0
2017-07-22 13:29 - 2015-08-11 19:10 - 000000000 ____D C:\ProgramData\lx_Cats
2017-07-20 09:04 - 2013-08-22 11:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-07-20 09:04 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\AppReadiness
2017-07-16 11:02 - 2015-01-27 20:22 - 000000000 ____D C:\Users\USER\AppData\Local\Adobe
2017-07-16 10:49 - 2017-05-14 22:46 - 000004642 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-07-16 10:49 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\system32\Macromed
2017-07-16 10:48 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-07-15 19:23 - 2015-03-10 18:05 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-07-15 12:00 - 2013-08-22 11:36 - 000000000 ____D C:\Windows\rescache
2017-07-14 17:37 - 2013-08-22 10:44 - 000506896 _____ C:\Windows\system32\FNTCACHE.DAT
2017-07-14 17:33 - 2017-05-13 17:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-07-14 17:33 - 2015-01-20 23:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-14 17:27 - 2015-01-20 23:32 - 000000000 ____D C:\Windows\system32\appraiser
2017-07-12 09:01 - 2015-01-20 22:44 - 000000000 ____D C:\Windows\system32\MRT
2017-07-12 08:57 - 2015-01-20 22:43 - 135225752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-07-12 08:57 - 2013-08-22 11:20 - 000000000 ____D C:\Windows\CbsTemp
2017-07-09 20:22 - 2017-06-30 13:18 - 000000000 ____D C:\Users\USER\Desktop\Nouveau dossier (2)
2017-07-07 20:14 - 2015-01-20 23:40 - 000000000 ____D C:\Program Files (x86)\Google
==================== Fichiers à la racine de certains dossiers =======
2017-08-04 18:05 - 2017-08-04 18:05 - 000001626 _____ () C:\Users\USER\AppData\Local\recently-used.xbel
Certains fichiers dans TEMP:
====================
2017-06-24 09:57 - 2017-06-24 09:57 - 000739904 _____ (Oracle Corporation) C:\Users\USER\AppData\Local\Temp\jre-8u131-windows-au.exe
2017-05-29 21:59 - 2017-05-29 21:59 - 030950664 _____ () C:\Users\USER\AppData\Local\Temp\vlc-2.2.6-win32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-07-26 18:49