Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01
Exécuté par helene (administrateur) sur HELENE-6E5AA082 (10-04-2016 15:35:12)
Exécuté depuis E:\Perso\Telechargements
Profils chargés: helene (Profils disponibles: helene)
Platform: Microsoft Windows XP Édition familiale Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: "C:\Program Files\Avant Browser\avant.exe" "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Piriform Ltd) C:\Program Files\CCleaner\ccleaner.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Ventis Media Inc.) C:\Program Files\MediaMonkey\MediaMonkey (non-skinned).exe
(Avant Force) C:\Program Files\Avant Browser\avant.exe
(Avant Force) C:\Program Files\Avant Browser\avantvw.exe
(Mozilla Corporation) C:\Program Files\Avant Browser\gecko\firefox.exe
(Mozilla Corporation) C:\Program Files\Avant Browser\gecko\plugin-container.exe
() C:\Program Files\Avant Browser\adownloader.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-24] (AVAST Software)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2014-03-01] (RealNetworks, Inc.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-08-29] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18084864 2009-01-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2008-12-01] (ATI Technologies Inc.)
HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\Run: [ccleaner] => C:\Program Files\CCleaner\ccleaner.exe [6667992 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\ccleaner.exe [6667992 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\MountPoints2: {ce6b6208-3c1b-11e4-ae60-a973115f48e6} - D:\iLinker.exe
HKU\S-1-5-21-790525478-1979792683-725345543-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\COUREG~1.SCR [37050249 2009-10-29] (ACD Systems Ltd.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-02-11] (AVAST Software)
ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.exe.lnk [2014-03-01]
ShortcutTarget: Adobe Gamma Loader.exe.lnk -> C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7834A156-E552-4B3D-8C88-6EE74C9465FC}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-790525478-1979792683-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-790525478-1979792683-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://fr.yahoo.com?fr=hp-avast&type=avastbcl
URLSearchHook: [S-1-5-21-790525478-1979792683-725345543-1004] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-11] (AVAST Software)
Toolbar: HKU\S-1-5-21-790525478-1979792683-725345543-1004 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-790525478-1979792683-725345543-1004 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1393587950234
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-09] ()
FF Extension: Adblock Plus Pop-up Addon - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\extensions\adblockpopups@jessehakanen.net.xpi [2015-09-12]
FF Extension: NoScript - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-07]
FF Extension: Stop Ads - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\@stopads.xpi [2016-04-09]
FF Extension: Ghostery - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\firefox@ghostery.com.xpi [2016-04-03]
FF Extension: EPUBReader - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}(2) [2016-02-23] [non signé]
FF Extension: Adblock Plus - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-17]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => non trouvé(e)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-02-23]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => non trouvé(e)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-11]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2008-12-01] () [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-11] (AVAST Software)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2014-07-30] (Cisco Systems, Inc.) [Fichier non signé]
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R2 ASPI32; C:\WINDOWS\system32\Drivers\ASPI32.sys [23936 1997-12-23] (Adaptec)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-02-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-03-23] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-03-10] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-02-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-02-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [816304 2016-03-10] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [447848 2016-02-24] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [171608 2016-02-11] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [67088 2016-02-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [221240 2016-02-11] (AVAST Software)
S3 gdrv; C:\WINDOWS\gdrv.sys [16608 2014-02-27] (Windows (R) 2000 DDK provider)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [24040 2013-09-04] (ThreatTrack Security)
R3 RTHDMIAzAudService; C:\WINDOWS\System32\drivers\RtKHDMI.sys [3721664 2008-12-25] (Realtek Semiconductor Corp.)
R3 scsiscan; C:\WINDOWS\System32\DRIVERS\scsiscan.sys [11520 2008-04-13] (Microsoft Corporation)
S4 IntelIde; pas de ImagePath
U0 Scisscan; pas de ImagePath
U1 WS2IFSL; pas de ImagePath
========================== MD5 Pilotes =======================
C:\WINDOWS\System32\DRIVERS\ACPI.sys E5E6DBFC41EA8AAD005CB9A57A96B43B
C:\WINDOWS\system32\Drivers\ACPIEC.sys E4ABC1212B70BB03D35E60681C447210
C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\WINDOWS\System32\DRIVERS\AegisP.sys 023867B6606FBABCDD52E089C4A507DA
C:\WINDOWS\System32\drivers\afd.sys D80ED631D3AFD47C27311B0614AFA89F
C:\WINDOWS\System32\DRIVERS\aic78xx.sys B7FE594A7468AA0132DEB03FB8E34326
C:\WINDOWS\System32\DRIVERS\AmdPPM.sys 033448D435E65C4BD72E70521FD05C76
C:\WINDOWS\system32\Drivers\ASPI32.sys 20D04091EBA710F6988F710507D85868
C:\WINDOWS\system32\drivers\aswHwid.sys C3F5C4413DFE6DF0A6439D18C3345418
C:\WINDOWS\system32\drivers\aswKbd.sys EC8DD4B019B4F0DD71828F10EEFC172F
C:\WINDOWS\system32\drivers\aswMonFlt.sys 63B94A84CE640D6334E242590D0F9CDD
C:\WINDOWS\system32\drivers\aswRdr.sys 1FC67745A457BF62DEA46CF0D4FD821B
C:\WINDOWS\system32\Drivers\aswRvrt.sys 303A4C67F046564508F82F515CB0A322
C:\WINDOWS\system32\drivers\aswSnx.sys 5B2551565B64B9E49B1BA8BE4E5749D9
C:\WINDOWS\system32\drivers\aswSP.sys 283E7A77DE807A998AFE745355876A5B
C:\WINDOWS\system32\drivers\aswStmXP.sys 56FCF9F1086B80B0CEE022BFB7FF7B25
C:\WINDOWS\system32\drivers\aswTdi.sys C0C9D9E50C9B52D885FBA22CE9DF0B49
C:\WINDOWS\system32\Drivers\aswVmm.sys 43646E5D17727D4F2E1F8FFA06F1472C
C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\WINDOWS\System32\DRIVERS\ati2mtag.sys 15B2FE76E2ECEB98C49ED52311A6F26F
C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\WINDOWS\System32\drivers\dmboot.sys F5DEADD42335FB33EDCA74ECB2F36CBA
C:\WINDOWS\System32\drivers\dmio.sys 5A7C47C9B3F9FB92A66410A7509F0C71
C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\WINDOWS\system32\Drivers\Fastfat.sys B2336BF17761662133F7646B503E3BE0
C:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\WINDOWS\system32\Drivers\Fips.sys 31F923EB2170FC172C81ABDA0045D18C
C:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\WINDOWS\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\WINDOWS\System32\DRIVERS\ftdisk.sys A86859B77B908C18C2657F284AA29FE3
C:\WINDOWS\gdrv.sys C6E3105B8C68C35CC1EB26A00FD1A8C6
C:\WINDOWS\System32\drivers\gfiutil.sys 3EAEB9143A5DBC1082785BBBE8D8CFEA
C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\WINDOWS\System32\DRIVERS\HDAudBus.sys 573C7D0A32852B48F3058CFD8026F511
C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\WINDOWS\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38
C:\WINDOWS\System32\DRIVERS\i8042prt.sys A09BDC4ED10E3B2E0EC27BB94AF32516
C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\WINDOWS\System32\drivers\RtkHDAud.sys 2FEB5BF0312E1CB76CD2CAA875CBAA5D
C:\WINDOWS\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\WINDOWS\System32\DRIVERS\isapnp.sys 355836975A67B6554BCA60328CD6CB74
C:\WINDOWS\System32\DRIVERS\kbdclass.sys 16813155807C6881F4BFBF6657424659
C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\WINDOWS\system32\Drivers\KSecDD.sys F37A4B1F159578A554A9CE66E5BD5194
C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\WINDOWS\system32\Drivers\Modem.sys 510ADE9327FE84C10254E1902697E25F
C:\WINDOWS\System32\DRIVERS\mouclass.sys 027C01BD7EF3349AAEBC883D8A799EFB
C:\WINDOWS\System32\DRIVERS\mouhid.sys 124D6846040C79B9C997F78EF4B2A4E5
C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\WINDOWS\System32\DRIVERS\mrxdav.sys 2422046D8020D743778D4089A92264FA
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0
C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\WINDOWS\system32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5
C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22
C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\WINDOWS\system32\Drivers\NDProxy.sys 2F597BB467E05B1FE3830EABD821B8E0
C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\WINDOWS\System32\DRIVERS\parport.sys 8FD0BDBEA875D06CCF6C945CA9ABAF75
C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\WINDOWS\system32\Drivers\ParVdm.sys 9575C5630DB8FB804649A6959737154C
C:\WINDOWS\System32\DRIVERS\pci.sys 043410877BDA580C528F45165F7125BC
C:\WINDOWS\System32\DRIVERS\pciide.sys F4BFDE7209C14A07AAA61E4D6AE69EAC
C:\WINDOWS\system32\Drivers\Pcmcia.sys F0406CBC60BDB0394A0E17FFB04CDD3D
C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\WINDOWS\System32\DRIVERS\processr.sys E19C9632AC828F6F214391E2BDDA11CB
C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\WINDOWS\System32\Drivers\PxHelp20.sys D86B4A68565E444D76457F14172C875A
C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\WINDOWS\system32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7
C:\WINDOWS\System32\DRIVERS\redbook.sys D8EB2A7904DB6C916EB5361878DDCBAE
C:\WINDOWS\System32\Drivers\RootMdm.sys D8B0B4ADE32574B2D9C5CC34DC0DBBE7
C:\WINDOWS\System32\drivers\RtKHDMI.sys A5A9F4B77D7FF2B02633999FF71A7E9B
C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys 839141088AD7EE90F5B441B2D1AFD22C
C:\WINDOWS\System32\DRIVERS\scsiscan.sys 089870DAB7AA277585C475AE09EE4C63
C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> Le MD5 est légitime
C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
C:\WINDOWS\System32\DRIVERS\serial.sys 93D313C31F7AD9EA2B75F26075413C7C
C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\WINDOWS\System32\DRIVERS\sr.sys 39626E6DC1FB39434EC40C42722B660A
C:\WINDOWS\System32\DRIVERS\srv.sys DC9A6DCF6CBB2BF50CD5967C3C584454
C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\WINDOWS\System32\DRIVERS\tcpip.sys 52151D558097554AF316BC526D4AAB29
C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\WINDOWS\System32\DRIVERS\usbccgp.sys 1B611611C28D2DF25BC057D79C6F13FC
C:\WINDOWS\System32\DRIVERS\usbehci.sys 4BAC8DF07F1D8434FC640E677A62204E
C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\WINDOWS\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS 910AD4C00776F61F69965118B863C909
C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\WINDOWS\system32\Drivers\VolSnap.sys 46DE1126684369BACE4849E4FC8C43CA
C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647
C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\WINDOWS\System32\DRIVERS\wpdusb.sys CF4DEF1BF66F06964DC0D91844239104
C:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311
C:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-04-10 15:33 - 2016-04-10 15:35 - 00000000 ____D C:\FRST
2016-04-10 15:31 - 2016-04-10 15:31 - 00000564 _____ C:\Documents and Settings\helene\Bureau\Raccourci vers FRST.lnk
2016-04-09 19:32 - 2016-04-09 20:01 - 00001580 _____ C:\Documents and Settings\All Users\Menu Démarrer\Avant Browser.lnk
2016-04-09 19:32 - 2016-04-09 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avant Browser
2016-04-09 19:17 - 2016-04-09 22:23 - 00000000 ____D C:\Program Files\Avant Browser
2016-04-09 17:44 - 2016-04-09 17:44 - 00003096 _____ C:\Documents and Settings\helene\Bureau\MBAM.txt
2016-04-09 17:15 - 2016-04-09 17:15 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Malwarebytes
2016-04-09 17:14 - 2016-04-09 17:14 - 22851472 _____ (Malwarebytes ) C:\Documents and Settings\helene\Bureau\mbam-setup-2.2.1.1043.exe
2016-04-09 16:18 - 2016-04-09 16:18 - 00004421 _____ C:\Documents and Settings\helene\Bureau\AdwCleaner[S1].txt
2016-04-09 16:16 - 2016-04-09 16:16 - 03119168 _____ C:\Documents and Settings\helene\Bureau\adwcleaner_5.109.exe
2016-04-09 16:07 - 2016-04-09 16:07 - 00009492 _____ C:\Documents and Settings\helene\Bureau\ZHPCleaner.txt
2016-04-09 15:58 - 2016-04-09 15:58 - 00000812 _____ C:\Documents and Settings\helene\Bureau\ZHPCleaner.lnk
2016-04-09 14:53 - 2016-04-09 14:53 - 00002650 _____ C:\Documents and Settings\helene\Bureau\ZHPFixReport.txt
2016-04-09 14:14 - 2016-04-09 14:15 - 00000000 ____D C:\ZHP
2016-04-09 14:10 - 2016-04-09 14:14 - 00000000 ____D C:\Program Files\ZHPFix
2016-04-09 14:10 - 2016-04-09 14:10 - 00001512 _____ C:\Documents and Settings\All Users\Bureau\ZHPFix.lnk
2016-04-09 14:10 - 2016-04-09 14:10 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2016-04-09 14:05 - 2016-04-09 14:05 - 03521617 _____ (Nicolas Coolman ) C:\Documents and Settings\helene\Bureau\ZHPFix.exe
2016-04-09 14:05 - 2016-04-09 14:05 - 00002556 _____ C:\Documents and Settings\helene\Bureau\ScriptZHPFix.txt
2016-04-08 08:42 - 2016-04-08 08:42 - 00081392 _____ C:\Documents and Settings\helene\Bureau\ZHPDiag.txt
2016-04-08 08:37 - 2016-04-08 08:39 - 00000802 _____ C:\Documents and Settings\helene\Bureau\ZHPDiag.lnk
2016-04-07 20:17 - 2016-04-07 20:18 - 00000000 ____D C:\Documents and Settings\helene\Application Data\SumatraPDF
2016-04-07 20:16 - 2016-04-07 20:16 - 00001586 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SumatraPDF.lnk
2016-04-07 20:16 - 2016-04-07 20:16 - 00000000 ____D C:\Program Files\SumatraPDF
2016-04-07 18:22 - 2016-04-07 18:22 - 00000000 _____ C:\WINDOWS\system32\SBRC.dat
2016-04-07 18:20 - 2013-09-04 14:57 - 00024040 _____ (ThreatTrack Security) C:\WINDOWS\system32\Drivers\gfiutil.sys
2016-04-07 18:05 - 2016-04-07 18:07 - 00000000 __HDC C:\WINDOWS\ie8
2016-04-07 18:00 - 2016-02-10 22:42 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-07 11:42 - 2016-04-07 11:42 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
2016-04-06 08:17 - 2016-02-10 22:42 - 00423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-04-06 08:17 - 2016-02-10 22:42 - 00387584 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-04-06 08:17 - 2016-02-10 22:42 - 00043520 ____N (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2016-04-05 10:12 - 2016-04-05 22:09 - 00065536 _____ C:\WINDOWS\system32\config\Reason.evt
2016-04-05 09:38 - 2016-04-05 09:38 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\pdfforge
2016-03-31 19:27 - 2016-04-03 15:30 - 00000000 ____D C:\Documents and Settings\helene\Application Data\PDF Architect 4
2016-03-31 19:25 - 2016-04-03 15:30 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PDF Architect 4
2016-03-30 19:28 - 2016-04-10 13:55 - 00026624 _____ C:\Documents and Settings\helene\Mes documents\Tableau devis dents implants Le gall 30.03.2016.xls
2016-03-23 08:45 - 2016-03-23 08:45 - 00035096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-03-17 19:11 - 2016-03-17 19:11 - 00000730 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk
2016-03-17 19:11 - 2016-03-17 19:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-03-17 19:11 - 2016-03-17 19:11 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-16 19:16 - 2016-03-16 19:16 - 00000542 _____ C:\Documents and Settings\helene\Bureau\Raccourci vers Menage 2014.lnk
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140709$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140410$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139940$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139914$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139852$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139398$
2016-03-09 14:19 - 2016-03-09 14:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140735$
2016-03-09 14:14 - 2016-02-10 22:42 - 01469440 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-03-09 14:14 - 2016-02-10 22:42 - 00630784 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll
2016-03-09 14:14 - 2016-02-10 22:42 - 00236544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\webcheck.dll
2016-03-09 14:14 - 2016-02-09 16:01 - 00638632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2016-03-09 14:14 - 2016-01-29 21:11 - 00026496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbstor.sys
2016-02-23 11:32 - 2016-02-11 23:19 - 00334280 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-02-22 11:29 - 2016-02-22 19:07 - 00000000 ____D C:\Documents and Settings\helene\Application Data\Foxit Software
2016-02-16 23:14 - 2016-02-16 23:14 - 00006277 _____ C:\Documents and Settings\helene\Mes documents\free_av_11.1.2253_2016-2-16_22-14-21.avastconfig
2016-02-13 14:45 - 2016-02-13 14:45 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Application Data\Temp
2016-02-13 10:05 - 2016-02-13 10:05 - 00000020 ___SH C:\Documents and Settings\TEMP.AUTORITE NT.000\ntuser.ini
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.001
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.000
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 ____D C:\Documents and Settings\TEMP.AUTORITE NT.001\Local Settings\Temp
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 ____D C:\Documents and Settings\TEMP.AUTORITE NT.000\Local Settings\Temp
2016-02-13 10:05 - 2014-02-27 18:25 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.001\Local Settings\Historique
2016-02-13 10:05 - 2014-02-27 18:25 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.000\Local Settings\Historique
2016-02-11 23:19 - 2016-02-11 23:19 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-02-11 17:33 - 2016-04-03 22:48 - 00020992 _____ C:\Documents and Settings\helene\Mes documents\Montants annuels des retraites CCP 01.01.2016.xls
2016-02-10 12:43 - 2016-02-10 12:43 - 00920064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll
2016-02-10 11:07 - 2016-02-10 12:07 - 08817344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-02-10 10:15 - 2016-02-10 10:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3134146$
2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3134214$
2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126593$
2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124280$
2016-02-10 10:13 - 2016-02-10 10:13 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126587$
2016-02-10 10:12 - 2016-02-10 10:12 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126041$
2016-02-10 09:24 - 2016-02-10 22:42 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-02-10 09:24 - 2016-02-10 22:42 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2016-02-10 09:24 - 2016-02-10 22:42 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 06013952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124001$
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124000$
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3121918$
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3109560$
==================== Trois mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-04-10 15:35 - 2014-12-12 09:27 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Temp
2016-04-10 15:34 - 2014-02-27 23:37 - 00000000 ____D C:\Documents and Settings\helene\Application Data\MediaMonkey
2016-04-10 15:31 - 2014-02-27 17:41 - 00000000 ____D C:\Documents and Settings\helene\Bureau
2016-04-10 15:07 - 2016-01-04 15:30 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-04-10 13:55 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents
2016-04-10 10:33 - 2014-02-27 19:33 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2016-04-10 07:40 - 2014-03-12 09:04 - 00000224 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2016-04-10 07:40 - 2014-03-01 13:20 - 00000280 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-790525478-1979792683-725345543-1004.job
2016-04-10 07:40 - 2014-02-27 17:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-09 22:29 - 2014-02-27 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2016-04-09 22:29 - 2014-02-27 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2016-04-09 22:27 - 2014-02-27 17:41 - 00000000 __SHD C:\Documents and Settings\helene\Local Settings\Historique
2016-04-09 20:44 - 2014-02-27 17:41 - 00000000 ____D C:\Documents and Settings\helene
2016-04-09 20:43 - 2014-02-27 17:51 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2016-04-09 20:42 - 2008-04-14 14:00 - 00013028 _____ C:\WINDOWS\system32\wpa.dbl
2016-04-09 20:40 - 2014-02-27 17:41 - 00000184 ___SH C:\Documents and Settings\helene\ntuser.ini
2016-04-09 20:40 - 2014-02-27 17:40 - 00032436 _____ C:\WINDOWS\SchedLgU.Txt
2016-04-09 19:44 - 2014-03-03 19:59 - 00000000 ____D C:\Documents and Settings\helene\Mes documents\Téléchargements
2016-04-09 19:32 - 2014-02-27 18:25 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer
2016-04-09 19:32 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Menu Démarrer\Programmes
2016-04-09 19:32 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Menu Démarrer
2016-04-09 19:26 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Network Diagnostic
2016-04-09 17:40 - 2014-03-01 13:20 - 00000288 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-790525478-1979792683-725345543-1004.job
2016-04-09 17:39 - 2015-11-12 09:08 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3081320$
2016-04-09 17:09 - 2015-04-05 19:57 - 00000000 ____D C:\AdwCleaner
2016-04-09 16:11 - 2015-09-06 20:10 - 00000000 ____D C:\Documents and Settings\helene\Application Data\ZHP
2016-04-09 16:06 - 2015-01-15 10:21 - 00000000 ____D C:\Documents and Settings\helene\Application Data\Lavasoft
2016-04-09 16:06 - 2015-01-15 10:19 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Lavasoft
2016-04-09 15:51 - 2014-02-27 23:25 - 00797376 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-04-09 15:51 - 2014-02-27 23:25 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-04-09 09:33 - 2014-07-11 17:46 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Application Data\Adobe
2016-04-08 16:56 - 2015-12-25 17:18 - 00329728 _____ C:\Documents and Settings\helene\Mes documents\Menage 2016.xls
2016-04-08 15:00 - 2014-03-12 09:04 - 00000218 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2016-04-08 13:19 - 2014-09-30 20:17 - 00000000 __SHD C:\Documents and Settings\helene\Application Data\.#
2016-04-07 19:22 - 2014-03-05 18:07 - 00000788 _____ C:\Documents and Settings\helene\Menu Démarrer\Programmes\Windows Media Player.lnk
2016-04-07 18:25 - 2014-11-12 11:02 - 00001355 _____ C:\WINDOWS\imsins.BAK
2016-04-07 18:25 - 2014-02-27 18:18 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-04-07 18:25 - 2014-02-27 18:18 - 00000000 ___HD C:\WINDOWS\inf
2016-04-07 18:20 - 2014-03-26 16:46 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PC1Data
2016-04-07 18:09 - 2014-02-27 17:41 - 00000803 _____ C:\Documents and Settings\helene\Menu Démarrer\Programmes\Internet Explorer.lnk
2016-04-07 18:09 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents\Mes images
2016-04-07 18:09 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents\Ma musique
2016-04-07 18:08 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Help
2016-04-07 18:06 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Media
2016-04-07 18:01 - 2014-02-27 19:51 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-07 17:42 - 2014-02-27 19:53 - 00000000 ____D C:\WINDOWS\ie8updates
2016-04-07 11:44 - 2014-03-01 13:03 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Adobe
2016-04-06 08:16 - 2015-07-21 09:38 - 01098675 _____ C:\WINDOWS\setupapi.log.0.old
2016-04-05 10:08 - 2014-02-27 18:25 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
2016-04-05 09:39 - 2014-02-27 18:25 - 00000000 ____D C:\Program Files\Fichiers communs
2016-04-05 09:27 - 2014-02-28 09:59 - 00000000 ____D C:\TEMP
2016-04-04 08:01 - 2014-02-27 18:24 - 00000000 ____D C:\Documents and Settings
2016-04-04 08:00 - 2014-02-27 17:40 - 00000000 __SHD C:\Documents and Settings\LocalService
2016-04-04 08:00 - 2014-02-27 17:38 - 00000000 __SHD C:\Documents and Settings\NetworkService
2016-04-04 08:00 - 2014-02-27 17:33 - 00000000 ____D C:\WINDOWS\Registration
2016-04-03 15:39 - 2014-08-16 17:47 - 00000000 ____D C:\Program Files\Google
2016-04-03 15:39 - 2014-02-27 21:24 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Application Data\Google
2016-04-03 15:33 - 2014-10-28 21:15 - 00000682 _____ C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2016-03-31 19:31 - 2014-04-28 11:50 - 00364681 ____C C:\Documents and Settings\helene\Local Settings\Application Data\census.cache
2016-03-31 19:31 - 2014-04-28 11:49 - 00166535 ____C C:\Documents and Settings\helene\Local Settings\Application Data\ars.cache
2016-03-30 19:31 - 2014-09-15 19:31 - 00000680 ____C C:\WINDOWS\AUTOLNCH.REG
2016-03-29 19:29 - 2014-05-29 11:07 - 00019456 _____ C:\Documents and Settings\helene\Mes documents\Courbe poids.xls
2016-03-27 08:31 - 2014-02-27 18:25 - 01293192 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-27 08:31 - 2008-04-14 14:00 - 00576786 _____ C:\WINDOWS\system32\perfh00C.dat
2016-03-27 08:31 - 2008-04-14 14:00 - 00106096 _____ C:\WINDOWS\system32\perfc00C.dat
2016-03-23 08:45 - 2014-02-27 19:32 - 00000000 ____D C:\Program Files\AVAST Software
2016-03-23 08:45 - 2014-02-27 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\AVAST Software
2016-03-17 19:27 - 2014-02-27 18:24 - 00000000 ____D C:\Documents and Settings\All Users
==================== Fichiers à la racine de certains dossiers =======
2015-04-04 14:11 - 2015-04-04 14:31 - 0000115 ____C () C:\Documents and Settings\helene\Application Data\LogFile.txt
2014-04-28 11:49 - 2016-03-31 19:31 - 0166535 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\ars.cache
2014-04-28 11:50 - 2016-03-31 19:31 - 0364681 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\census.cache
2014-04-01 16:59 - 2015-02-27 09:33 - 0010240 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-02 09:22 - 2014-03-02 09:22 - 0000129 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\fusioncache.dat
2014-04-28 11:37 - 2014-04-28 11:37 - 0000036 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\housecall.guid.cache
Certains fichiers dans TEMP:
====================
C:\Documents and Settings\helene\Local Settings\Temp\$avantbrowser$.update.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
==================== Fin de FRST.txt ============================
Exécuté par helene (administrateur) sur HELENE-6E5AA082 (10-04-2016 15:35:12)
Exécuté depuis E:\Perso\Telechargements
Profils chargés: helene (Profils disponibles: helene)
Platform: Microsoft Windows XP Édition familiale Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: "C:\Program Files\Avant Browser\avant.exe" "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Piriform Ltd) C:\Program Files\CCleaner\ccleaner.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Ventis Media Inc.) C:\Program Files\MediaMonkey\MediaMonkey (non-skinned).exe
(Avant Force) C:\Program Files\Avant Browser\avant.exe
(Avant Force) C:\Program Files\Avant Browser\avantvw.exe
(Mozilla Corporation) C:\Program Files\Avant Browser\gecko\firefox.exe
(Mozilla Corporation) C:\Program Files\Avant Browser\gecko\plugin-container.exe
() C:\Program Files\Avant Browser\adownloader.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-24] (AVAST Software)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2014-03-01] (RealNetworks, Inc.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-08-29] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18084864 2009-01-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2008-12-01] (ATI Technologies Inc.)
HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\Run: [ccleaner] => C:\Program Files\CCleaner\ccleaner.exe [6667992 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\ccleaner.exe [6667992 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\MountPoints2: {ce6b6208-3c1b-11e4-ae60-a973115f48e6} - D:\iLinker.exe
HKU\S-1-5-21-790525478-1979792683-725345543-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\COUREG~1.SCR [37050249 2009-10-29] (ACD Systems Ltd.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-02-11] (AVAST Software)
ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.exe.lnk [2014-03-01]
ShortcutTarget: Adobe Gamma Loader.exe.lnk -> C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7834A156-E552-4B3D-8C88-6EE74C9465FC}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-790525478-1979792683-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-790525478-1979792683-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://fr.yahoo.com?fr=hp-avast&type=avastbcl
URLSearchHook: [S-1-5-21-790525478-1979792683-725345543-1004] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-11] (AVAST Software)
Toolbar: HKU\S-1-5-21-790525478-1979792683-725345543-1004 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-790525478-1979792683-725345543-1004 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1393587950234
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-09] ()
FF Extension: Adblock Plus Pop-up Addon - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\extensions\adblockpopups@jessehakanen.net.xpi [2015-09-12]
FF Extension: NoScript - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-07]
FF Extension: Stop Ads - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\@stopads.xpi [2016-04-09]
FF Extension: Ghostery - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\firefox@ghostery.com.xpi [2016-04-03]
FF Extension: EPUBReader - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}(2) [2016-02-23] [non signé]
FF Extension: Adblock Plus - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-17]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => non trouvé(e)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-02-23]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => non trouvé(e)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-11]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2008-12-01] () [Fichier non signé]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-11] (AVAST Software)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2014-07-30] (Cisco Systems, Inc.) [Fichier non signé]
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R2 ASPI32; C:\WINDOWS\system32\Drivers\ASPI32.sys [23936 1997-12-23] (Adaptec)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-02-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-03-23] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-03-10] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-02-11] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-02-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [816304 2016-03-10] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [447848 2016-02-24] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [171608 2016-02-11] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [67088 2016-02-11] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [221240 2016-02-11] (AVAST Software)
S3 gdrv; C:\WINDOWS\gdrv.sys [16608 2014-02-27] (Windows (R) 2000 DDK provider)
S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [24040 2013-09-04] (ThreatTrack Security)
R3 RTHDMIAzAudService; C:\WINDOWS\System32\drivers\RtKHDMI.sys [3721664 2008-12-25] (Realtek Semiconductor Corp.)
R3 scsiscan; C:\WINDOWS\System32\DRIVERS\scsiscan.sys [11520 2008-04-13] (Microsoft Corporation)
S4 IntelIde; pas de ImagePath
U0 Scisscan; pas de ImagePath
U1 WS2IFSL; pas de ImagePath
========================== MD5 Pilotes =======================
C:\WINDOWS\System32\DRIVERS\ACPI.sys E5E6DBFC41EA8AAD005CB9A57A96B43B
C:\WINDOWS\system32\Drivers\ACPIEC.sys E4ABC1212B70BB03D35E60681C447210
C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\WINDOWS\System32\DRIVERS\AegisP.sys 023867B6606FBABCDD52E089C4A507DA
C:\WINDOWS\System32\drivers\afd.sys D80ED631D3AFD47C27311B0614AFA89F
C:\WINDOWS\System32\DRIVERS\aic78xx.sys B7FE594A7468AA0132DEB03FB8E34326
C:\WINDOWS\System32\DRIVERS\AmdPPM.sys 033448D435E65C4BD72E70521FD05C76
C:\WINDOWS\system32\Drivers\ASPI32.sys 20D04091EBA710F6988F710507D85868
C:\WINDOWS\system32\drivers\aswHwid.sys C3F5C4413DFE6DF0A6439D18C3345418
C:\WINDOWS\system32\drivers\aswKbd.sys EC8DD4B019B4F0DD71828F10EEFC172F
C:\WINDOWS\system32\drivers\aswMonFlt.sys 63B94A84CE640D6334E242590D0F9CDD
C:\WINDOWS\system32\drivers\aswRdr.sys 1FC67745A457BF62DEA46CF0D4FD821B
C:\WINDOWS\system32\Drivers\aswRvrt.sys 303A4C67F046564508F82F515CB0A322
C:\WINDOWS\system32\drivers\aswSnx.sys 5B2551565B64B9E49B1BA8BE4E5749D9
C:\WINDOWS\system32\drivers\aswSP.sys 283E7A77DE807A998AFE745355876A5B
C:\WINDOWS\system32\drivers\aswStmXP.sys 56FCF9F1086B80B0CEE022BFB7FF7B25
C:\WINDOWS\system32\drivers\aswTdi.sys C0C9D9E50C9B52D885FBA22CE9DF0B49
C:\WINDOWS\system32\Drivers\aswVmm.sys 43646E5D17727D4F2E1F8FFA06F1472C
C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\WINDOWS\System32\DRIVERS\ati2mtag.sys 15B2FE76E2ECEB98C49ED52311A6F26F
C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\WINDOWS\System32\drivers\dmboot.sys F5DEADD42335FB33EDCA74ECB2F36CBA
C:\WINDOWS\System32\drivers\dmio.sys 5A7C47C9B3F9FB92A66410A7509F0C71
C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\WINDOWS\system32\Drivers\Fastfat.sys B2336BF17761662133F7646B503E3BE0
C:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\WINDOWS\system32\Drivers\Fips.sys 31F923EB2170FC172C81ABDA0045D18C
C:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\WINDOWS\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\WINDOWS\System32\DRIVERS\ftdisk.sys A86859B77B908C18C2657F284AA29FE3
C:\WINDOWS\gdrv.sys C6E3105B8C68C35CC1EB26A00FD1A8C6
C:\WINDOWS\System32\drivers\gfiutil.sys 3EAEB9143A5DBC1082785BBBE8D8CFEA
C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\WINDOWS\System32\DRIVERS\HDAudBus.sys 573C7D0A32852B48F3058CFD8026F511
C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\WINDOWS\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38
C:\WINDOWS\System32\DRIVERS\i8042prt.sys A09BDC4ED10E3B2E0EC27BB94AF32516
C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\WINDOWS\System32\drivers\RtkHDAud.sys 2FEB5BF0312E1CB76CD2CAA875CBAA5D
C:\WINDOWS\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\WINDOWS\System32\DRIVERS\isapnp.sys 355836975A67B6554BCA60328CD6CB74
C:\WINDOWS\System32\DRIVERS\kbdclass.sys 16813155807C6881F4BFBF6657424659
C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\WINDOWS\system32\Drivers\KSecDD.sys F37A4B1F159578A554A9CE66E5BD5194
C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\WINDOWS\system32\Drivers\Modem.sys 510ADE9327FE84C10254E1902697E25F
C:\WINDOWS\System32\DRIVERS\mouclass.sys 027C01BD7EF3349AAEBC883D8A799EFB
C:\WINDOWS\System32\DRIVERS\mouhid.sys 124D6846040C79B9C997F78EF4B2A4E5
C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\WINDOWS\System32\DRIVERS\mrxdav.sys 2422046D8020D743778D4089A92264FA
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0
C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\WINDOWS\system32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5
C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22
C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\WINDOWS\system32\Drivers\NDProxy.sys 2F597BB467E05B1FE3830EABD821B8E0
C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\WINDOWS\System32\DRIVERS\parport.sys 8FD0BDBEA875D06CCF6C945CA9ABAF75
C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\WINDOWS\system32\Drivers\ParVdm.sys 9575C5630DB8FB804649A6959737154C
C:\WINDOWS\System32\DRIVERS\pci.sys 043410877BDA580C528F45165F7125BC
C:\WINDOWS\System32\DRIVERS\pciide.sys F4BFDE7209C14A07AAA61E4D6AE69EAC
C:\WINDOWS\system32\Drivers\Pcmcia.sys F0406CBC60BDB0394A0E17FFB04CDD3D
C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\WINDOWS\System32\DRIVERS\processr.sys E19C9632AC828F6F214391E2BDDA11CB
C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\WINDOWS\System32\Drivers\PxHelp20.sys D86B4A68565E444D76457F14172C875A
C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\WINDOWS\system32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7
C:\WINDOWS\System32\DRIVERS\redbook.sys D8EB2A7904DB6C916EB5361878DDCBAE
C:\WINDOWS\System32\Drivers\RootMdm.sys D8B0B4ADE32574B2D9C5CC34DC0DBBE7
C:\WINDOWS\System32\drivers\RtKHDMI.sys A5A9F4B77D7FF2B02633999FF71A7E9B
C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys 839141088AD7EE90F5B441B2D1AFD22C
C:\WINDOWS\System32\DRIVERS\scsiscan.sys 089870DAB7AA277585C475AE09EE4C63
C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> Le MD5 est légitime
C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
C:\WINDOWS\System32\DRIVERS\serial.sys 93D313C31F7AD9EA2B75F26075413C7C
C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\WINDOWS\System32\DRIVERS\sr.sys 39626E6DC1FB39434EC40C42722B660A
C:\WINDOWS\System32\DRIVERS\srv.sys DC9A6DCF6CBB2BF50CD5967C3C584454
C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\WINDOWS\System32\DRIVERS\tcpip.sys 52151D558097554AF316BC526D4AAB29
C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\WINDOWS\System32\DRIVERS\usbccgp.sys 1B611611C28D2DF25BC057D79C6F13FC
C:\WINDOWS\System32\DRIVERS\usbehci.sys 4BAC8DF07F1D8434FC640E677A62204E
C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\WINDOWS\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS 910AD4C00776F61F69965118B863C909
C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\WINDOWS\system32\Drivers\VolSnap.sys 46DE1126684369BACE4849E4FC8C43CA
C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647
C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\WINDOWS\System32\DRIVERS\wpdusb.sys CF4DEF1BF66F06964DC0D91844239104
C:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311
C:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-04-10 15:33 - 2016-04-10 15:35 - 00000000 ____D C:\FRST
2016-04-10 15:31 - 2016-04-10 15:31 - 00000564 _____ C:\Documents and Settings\helene\Bureau\Raccourci vers FRST.lnk
2016-04-09 19:32 - 2016-04-09 20:01 - 00001580 _____ C:\Documents and Settings\All Users\Menu Démarrer\Avant Browser.lnk
2016-04-09 19:32 - 2016-04-09 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avant Browser
2016-04-09 19:17 - 2016-04-09 22:23 - 00000000 ____D C:\Program Files\Avant Browser
2016-04-09 17:44 - 2016-04-09 17:44 - 00003096 _____ C:\Documents and Settings\helene\Bureau\MBAM.txt
2016-04-09 17:15 - 2016-04-09 17:15 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Malwarebytes
2016-04-09 17:14 - 2016-04-09 17:14 - 22851472 _____ (Malwarebytes ) C:\Documents and Settings\helene\Bureau\mbam-setup-2.2.1.1043.exe
2016-04-09 16:18 - 2016-04-09 16:18 - 00004421 _____ C:\Documents and Settings\helene\Bureau\AdwCleaner[S1].txt
2016-04-09 16:16 - 2016-04-09 16:16 - 03119168 _____ C:\Documents and Settings\helene\Bureau\adwcleaner_5.109.exe
2016-04-09 16:07 - 2016-04-09 16:07 - 00009492 _____ C:\Documents and Settings\helene\Bureau\ZHPCleaner.txt
2016-04-09 15:58 - 2016-04-09 15:58 - 00000812 _____ C:\Documents and Settings\helene\Bureau\ZHPCleaner.lnk
2016-04-09 14:53 - 2016-04-09 14:53 - 00002650 _____ C:\Documents and Settings\helene\Bureau\ZHPFixReport.txt
2016-04-09 14:14 - 2016-04-09 14:15 - 00000000 ____D C:\ZHP
2016-04-09 14:10 - 2016-04-09 14:14 - 00000000 ____D C:\Program Files\ZHPFix
2016-04-09 14:10 - 2016-04-09 14:10 - 00001512 _____ C:\Documents and Settings\All Users\Bureau\ZHPFix.lnk
2016-04-09 14:10 - 2016-04-09 14:10 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2016-04-09 14:05 - 2016-04-09 14:05 - 03521617 _____ (Nicolas Coolman ) C:\Documents and Settings\helene\Bureau\ZHPFix.exe
2016-04-09 14:05 - 2016-04-09 14:05 - 00002556 _____ C:\Documents and Settings\helene\Bureau\ScriptZHPFix.txt
2016-04-08 08:42 - 2016-04-08 08:42 - 00081392 _____ C:\Documents and Settings\helene\Bureau\ZHPDiag.txt
2016-04-08 08:37 - 2016-04-08 08:39 - 00000802 _____ C:\Documents and Settings\helene\Bureau\ZHPDiag.lnk
2016-04-07 20:17 - 2016-04-07 20:18 - 00000000 ____D C:\Documents and Settings\helene\Application Data\SumatraPDF
2016-04-07 20:16 - 2016-04-07 20:16 - 00001586 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SumatraPDF.lnk
2016-04-07 20:16 - 2016-04-07 20:16 - 00000000 ____D C:\Program Files\SumatraPDF
2016-04-07 18:22 - 2016-04-07 18:22 - 00000000 _____ C:\WINDOWS\system32\SBRC.dat
2016-04-07 18:20 - 2013-09-04 14:57 - 00024040 _____ (ThreatTrack Security) C:\WINDOWS\system32\Drivers\gfiutil.sys
2016-04-07 18:05 - 2016-04-07 18:07 - 00000000 __HDC C:\WINDOWS\ie8
2016-04-07 18:00 - 2016-02-10 22:42 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-07 11:42 - 2016-04-07 11:42 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp
2016-04-06 08:17 - 2016-02-10 22:42 - 00423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-04-06 08:17 - 2016-02-10 22:42 - 00387584 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-04-06 08:17 - 2016-02-10 22:42 - 00043520 ____N (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2016-04-05 10:12 - 2016-04-05 22:09 - 00065536 _____ C:\WINDOWS\system32\config\Reason.evt
2016-04-05 09:38 - 2016-04-05 09:38 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\pdfforge
2016-03-31 19:27 - 2016-04-03 15:30 - 00000000 ____D C:\Documents and Settings\helene\Application Data\PDF Architect 4
2016-03-31 19:25 - 2016-04-03 15:30 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PDF Architect 4
2016-03-30 19:28 - 2016-04-10 13:55 - 00026624 _____ C:\Documents and Settings\helene\Mes documents\Tableau devis dents implants Le gall 30.03.2016.xls
2016-03-23 08:45 - 2016-03-23 08:45 - 00035096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-03-17 19:11 - 2016-03-17 19:11 - 00000730 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk
2016-03-17 19:11 - 2016-03-17 19:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-03-17 19:11 - 2016-03-17 19:11 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-16 19:16 - 2016-03-16 19:16 - 00000542 _____ C:\Documents and Settings\helene\Bureau\Raccourci vers Menage 2014.lnk
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140709$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140410$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139940$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139914$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139852$
2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139398$
2016-03-09 14:19 - 2016-03-09 14:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140735$
2016-03-09 14:14 - 2016-02-10 22:42 - 01469440 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-03-09 14:14 - 2016-02-10 22:42 - 00630784 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll
2016-03-09 14:14 - 2016-02-10 22:42 - 00236544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\webcheck.dll
2016-03-09 14:14 - 2016-02-09 16:01 - 00638632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2016-03-09 14:14 - 2016-01-29 21:11 - 00026496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbstor.sys
2016-02-23 11:32 - 2016-02-11 23:19 - 00334280 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-02-22 11:29 - 2016-02-22 19:07 - 00000000 ____D C:\Documents and Settings\helene\Application Data\Foxit Software
2016-02-16 23:14 - 2016-02-16 23:14 - 00006277 _____ C:\Documents and Settings\helene\Mes documents\free_av_11.1.2253_2016-2-16_22-14-21.avastconfig
2016-02-13 14:45 - 2016-02-13 14:45 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Application Data\Temp
2016-02-13 10:05 - 2016-02-13 10:05 - 00000020 ___SH C:\Documents and Settings\TEMP.AUTORITE NT.000\ntuser.ini
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.001
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.000
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 ____D C:\Documents and Settings\TEMP.AUTORITE NT.001\Local Settings\Temp
2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 ____D C:\Documents and Settings\TEMP.AUTORITE NT.000\Local Settings\Temp
2016-02-13 10:05 - 2014-02-27 18:25 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.001\Local Settings\Historique
2016-02-13 10:05 - 2014-02-27 18:25 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.000\Local Settings\Historique
2016-02-11 23:19 - 2016-02-11 23:19 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-02-11 17:33 - 2016-04-03 22:48 - 00020992 _____ C:\Documents and Settings\helene\Mes documents\Montants annuels des retraites CCP 01.01.2016.xls
2016-02-10 12:43 - 2016-02-10 12:43 - 00920064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll
2016-02-10 11:07 - 2016-02-10 12:07 - 08817344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-02-10 10:15 - 2016-02-10 10:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3134146$
2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3134214$
2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126593$
2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124280$
2016-02-10 10:13 - 2016-02-10 10:13 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126587$
2016-02-10 10:12 - 2016-02-10 10:12 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126041$
2016-02-10 09:24 - 2016-02-10 22:42 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-02-10 09:24 - 2016-02-10 22:42 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2016-02-10 09:24 - 2016-02-10 22:42 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 06013952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-01-14 09:53 - 2016-02-10 22:42 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124001$
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124000$
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3121918$
2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3109560$
==================== Trois mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-04-10 15:35 - 2014-12-12 09:27 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Temp
2016-04-10 15:34 - 2014-02-27 23:37 - 00000000 ____D C:\Documents and Settings\helene\Application Data\MediaMonkey
2016-04-10 15:31 - 2014-02-27 17:41 - 00000000 ____D C:\Documents and Settings\helene\Bureau
2016-04-10 15:07 - 2016-01-04 15:30 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-04-10 13:55 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents
2016-04-10 10:33 - 2014-02-27 19:33 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2016-04-10 07:40 - 2014-03-12 09:04 - 00000224 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2016-04-10 07:40 - 2014-03-01 13:20 - 00000280 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-790525478-1979792683-725345543-1004.job
2016-04-10 07:40 - 2014-02-27 17:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-09 22:29 - 2014-02-27 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2016-04-09 22:29 - 2014-02-27 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2016-04-09 22:27 - 2014-02-27 17:41 - 00000000 __SHD C:\Documents and Settings\helene\Local Settings\Historique
2016-04-09 20:44 - 2014-02-27 17:41 - 00000000 ____D C:\Documents and Settings\helene
2016-04-09 20:43 - 2014-02-27 17:51 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2016-04-09 20:42 - 2008-04-14 14:00 - 00013028 _____ C:\WINDOWS\system32\wpa.dbl
2016-04-09 20:40 - 2014-02-27 17:41 - 00000184 ___SH C:\Documents and Settings\helene\ntuser.ini
2016-04-09 20:40 - 2014-02-27 17:40 - 00032436 _____ C:\WINDOWS\SchedLgU.Txt
2016-04-09 19:44 - 2014-03-03 19:59 - 00000000 ____D C:\Documents and Settings\helene\Mes documents\Téléchargements
2016-04-09 19:32 - 2014-02-27 18:25 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer
2016-04-09 19:32 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Menu Démarrer\Programmes
2016-04-09 19:32 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Menu Démarrer
2016-04-09 19:26 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Network Diagnostic
2016-04-09 17:40 - 2014-03-01 13:20 - 00000288 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-790525478-1979792683-725345543-1004.job
2016-04-09 17:39 - 2015-11-12 09:08 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3081320$
2016-04-09 17:09 - 2015-04-05 19:57 - 00000000 ____D C:\AdwCleaner
2016-04-09 16:11 - 2015-09-06 20:10 - 00000000 ____D C:\Documents and Settings\helene\Application Data\ZHP
2016-04-09 16:06 - 2015-01-15 10:21 - 00000000 ____D C:\Documents and Settings\helene\Application Data\Lavasoft
2016-04-09 16:06 - 2015-01-15 10:19 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Lavasoft
2016-04-09 15:51 - 2014-02-27 23:25 - 00797376 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-04-09 15:51 - 2014-02-27 23:25 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-04-09 09:33 - 2014-07-11 17:46 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Application Data\Adobe
2016-04-08 16:56 - 2015-12-25 17:18 - 00329728 _____ C:\Documents and Settings\helene\Mes documents\Menage 2016.xls
2016-04-08 15:00 - 2014-03-12 09:04 - 00000218 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2016-04-08 13:19 - 2014-09-30 20:17 - 00000000 __SHD C:\Documents and Settings\helene\Application Data\.#
2016-04-07 19:22 - 2014-03-05 18:07 - 00000788 _____ C:\Documents and Settings\helene\Menu Démarrer\Programmes\Windows Media Player.lnk
2016-04-07 18:25 - 2014-11-12 11:02 - 00001355 _____ C:\WINDOWS\imsins.BAK
2016-04-07 18:25 - 2014-02-27 18:18 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-04-07 18:25 - 2014-02-27 18:18 - 00000000 ___HD C:\WINDOWS\inf
2016-04-07 18:20 - 2014-03-26 16:46 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PC1Data
2016-04-07 18:09 - 2014-02-27 17:41 - 00000803 _____ C:\Documents and Settings\helene\Menu Démarrer\Programmes\Internet Explorer.lnk
2016-04-07 18:09 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents\Mes images
2016-04-07 18:09 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents\Ma musique
2016-04-07 18:08 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Help
2016-04-07 18:06 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Media
2016-04-07 18:01 - 2014-02-27 19:51 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-07 17:42 - 2014-02-27 19:53 - 00000000 ____D C:\WINDOWS\ie8updates
2016-04-07 11:44 - 2014-03-01 13:03 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Adobe
2016-04-06 08:16 - 2015-07-21 09:38 - 01098675 _____ C:\WINDOWS\setupapi.log.0.old
2016-04-05 10:08 - 2014-02-27 18:25 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
2016-04-05 09:39 - 2014-02-27 18:25 - 00000000 ____D C:\Program Files\Fichiers communs
2016-04-05 09:27 - 2014-02-28 09:59 - 00000000 ____D C:\TEMP
2016-04-04 08:01 - 2014-02-27 18:24 - 00000000 ____D C:\Documents and Settings
2016-04-04 08:00 - 2014-02-27 17:40 - 00000000 __SHD C:\Documents and Settings\LocalService
2016-04-04 08:00 - 2014-02-27 17:38 - 00000000 __SHD C:\Documents and Settings\NetworkService
2016-04-04 08:00 - 2014-02-27 17:33 - 00000000 ____D C:\WINDOWS\Registration
2016-04-03 15:39 - 2014-08-16 17:47 - 00000000 ____D C:\Program Files\Google
2016-04-03 15:39 - 2014-02-27 21:24 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Application Data\Google
2016-04-03 15:33 - 2014-10-28 21:15 - 00000682 _____ C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2016-03-31 19:31 - 2014-04-28 11:50 - 00364681 ____C C:\Documents and Settings\helene\Local Settings\Application Data\census.cache
2016-03-31 19:31 - 2014-04-28 11:49 - 00166535 ____C C:\Documents and Settings\helene\Local Settings\Application Data\ars.cache
2016-03-30 19:31 - 2014-09-15 19:31 - 00000680 ____C C:\WINDOWS\AUTOLNCH.REG
2016-03-29 19:29 - 2014-05-29 11:07 - 00019456 _____ C:\Documents and Settings\helene\Mes documents\Courbe poids.xls
2016-03-27 08:31 - 2014-02-27 18:25 - 01293192 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-27 08:31 - 2008-04-14 14:00 - 00576786 _____ C:\WINDOWS\system32\perfh00C.dat
2016-03-27 08:31 - 2008-04-14 14:00 - 00106096 _____ C:\WINDOWS\system32\perfc00C.dat
2016-03-23 08:45 - 2014-02-27 19:32 - 00000000 ____D C:\Program Files\AVAST Software
2016-03-23 08:45 - 2014-02-27 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\AVAST Software
2016-03-17 19:27 - 2014-02-27 18:24 - 00000000 ____D C:\Documents and Settings\All Users
==================== Fichiers à la racine de certains dossiers =======
2015-04-04 14:11 - 2015-04-04 14:31 - 0000115 ____C () C:\Documents and Settings\helene\Application Data\LogFile.txt
2014-04-28 11:49 - 2016-03-31 19:31 - 0166535 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\ars.cache
2014-04-28 11:50 - 2016-03-31 19:31 - 0364681 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\census.cache
2014-04-01 16:59 - 2015-02-27 09:33 - 0010240 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-02 09:22 - 2014-03-02 09:22 - 0000129 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\fusioncache.dat
2014-04-28 11:37 - 2014-04-28 11:37 - 0000036 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\housecall.guid.cache
Certains fichiers dans TEMP:
====================
C:\Documents and Settings\helene\Local Settings\Temp\$avantbrowser$.update.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
==================== Fin de FRST.txt ============================