Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23-02-2017
Exécuté par philippe.heit (administrateur) sur PC-ACCUEIL (23-02-2017 15:57:59)
Exécuté depuis \\SRVSOLASTRA\RedirectedFolders\philippe.heit\Desktop
Profils chargés: philippe.heit (Profils disponibles: philippe.heit & emergency)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\NTRTScan.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmListen.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\PccNTMon.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Farbar) \\srvsolastra\redirectedfolders\philippe.heit\desktop\frst64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12661352 2011-08-01] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [OfficeScanNT Monitor] => C:\Program Files (x86)\Trend Micro\Security Agent\pccntmon.exe [1863072 2016-04-27] (Trend Micro Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [711616 2016-04-19] (Autodesk, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8891608 2016-07-13] (Piriform Ltd)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [Google Update] => C:\Users\philippe.heit\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-19] (Google Inc.)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\RunOnce: [Uninstall C:\Users\philippe.heit\AppData\Local\Microsoft\OneDrive\17.3.4604.0120] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\philippe.heit\AppData\Local\Microsoft\OneDrive\17.3.4604.0120"
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\MountPoints2: {175ebebd-0531-11e6-849f-001999d1e177} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Start.exe
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\MountPoints2: {3a09c731-6e7f-11e6-bc0d-001999d1e177} - K:\SETUP.EXE
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
Startup: C:\Users\administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2012-10-26]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2012-05-31]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2012-05-31]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{5B7B5582-AB34-4A9C-9FE0-B752F60528D5}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{CE432CB0-E509-4830-9293-4069A37C0464}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{E067D858-6908-45BB-AD2D-392C31A6797A}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1222139310-837356833-1376051784-1169 -> DefaultScope {E6B744B2-12AF-4A4E-B84C-8FD75AFA8C2A} URL =
SearchScopes: HKU\S-1-5-21-1222139310-837356833-1376051784-1169 -> {E6B744B2-12AF-4A4E-B84C-8FD75AFA8C2A} URL =
BHO: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-25] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2017-01-25] (Microsoft Corporation)
BHO: Trend Micro IE Protection -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\TmBpIe64.dll [2016-03-04] (Trend Micro Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-25] (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-01-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-25] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2017-01-25] (Microsoft Corporation)
BHO-x32: Trend Micro IE Protection -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\IE32\TmBpIe32.dll [2016-03-04] (Trend Micro Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-01-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-25] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {00134F72-5284-44F7-95A8-52A619F70752} hxxps://srvsolastra.solastra-sa.local:4343/officescan/console/ClientInstall/WinNTChk.cab?ver=19,0,0,1428
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\TmBpIe64.dll [2016-03-04] (Trend Micro Inc.)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\IE32\TmBpIe32.dll [2016-03-04] (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
FireFox:
========
FF ProfilePath: C:\Users\philippe.heit\AppData\Roaming\TomTom\HOME\Profiles\s16jnvhy.default [2014-10-01]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default [2017-02-23]
FF Extension: (Firebug) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\firebug@software.joehewitt.com.xpi [2016-10-14]
FF Extension: (FlashFirebug) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\flashfirebug@o-minds.com [2016-04-18]
FF Extension: (FireShot) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2016-09-05]
FF Extension: (ReloadEvery) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-04-21]
FF Extension: (Video DownloadHelper) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-03]
FF Extension: (Adblock Plus) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-28]
FF Extension: (Open With Photoshop) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}.xpi [2016-12-01]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\features\{b900848f-ad70-403b-b8f1-5dc3e6a52f09}\disableSHA1rollout@mozilla.org.xpi [2017-02-22]
FF HKLM\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF Extension: (Trend Micro NSC Firefox Extension) - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension [2017-02-23]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-03-19] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-15] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-25] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-01-25] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-15] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-01-25] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-06-27] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1222139310-837356833-1376051784-1169: @tools.google.com/Google Update;version=3 -> C:\Users\philippe.heit\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-1222139310-837356833-1376051784-1169: @tools.google.com/Google Update;version=9 -> C:\Users\philippe.heit\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default [2017-02-23]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-09]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-09]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-21]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-21]
CHR Extension: (Adobe Acrobat) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-23]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-09]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-18]
CHR Extension: (Arabic) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-17]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-10-01]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2016-11-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-01]
CHR Extension: (Chrome Media Router) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKU\S-1-5-21-1222139310-837356833-1376051784-1169\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-05-11]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1262096 2016-04-19] (Autodesk Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2776664 2015-08-16] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [Fichier non signé]
R2 ntrtscan; C:\Program Files (x86)\Trend Micro\Security Agent\ntrtscan.exe [4343184 2016-04-27] (Trend Micro Inc.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [Fichier non signé]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
R3 TMBMServer; C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe [592952 2016-01-26] (Trend Micro Inc.)
R3 TmCCSF; C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe [864096 2016-04-27] (Trend Micro Inc.)
R2 tmlisten; C:\Program Files (x86)\Trend Micro\Security Agent\tmlisten.exe [4249904 2016-05-17] (Trend Micro Inc.)
R3 TmProxy; C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe [930816 2015-07-29] (Trend Micro Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [25600 2015-01-23] (BlackBerry Limited) [Fichier non signé]
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-08-30] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-08-30] (Disc Soft Ltd)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251848 2017-02-23] (Malwarebytes)
S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [18432 2015-05-26] (BlackBerry Limited) [Fichier non signé]
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [129360 2015-12-03] (Trend Micro Inc.)
R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [324408 2015-12-03] (Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [87888 2015-12-03] (Trend Micro Inc.)
R2 TmFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmXPFlt.sys [393952 2016-08-22] (Trend Micro Inc.)
R2 TmPreFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmPreFlt.sys [66784 2016-08-22] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [109080 2013-01-09] (Trend Micro Inc.)
R1 tmumh; C:\Windows\System32\DRIVERS\TMUMH.sys [103768 2016-02-26] (Trend Micro Inc.)
R2 VSApiNt; C:\Program Files (x86)\Trend Micro\Security Agent\VSApiNt.sys [2578656 2016-08-22] (Trend Micro Inc.)
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
U3 wampapache; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-23 15:57 - 2017-02-23 15:57 - 00000000 ____D C:\FRST
2017-02-23 14:21 - 2017-02-23 14:21 - 04015056 _____ C:\Users\philippe.heit\Downloads\adwcleaner_6.043 (1).exe
2017-02-23 11:37 - 2017-02-23 14:25 - 00251848 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00176584 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00110536 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00081696 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-02-23 11:36 - 2017-02-23 11:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-23 11:36 - 2017-02-23 11:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-23 11:36 - 2017-02-23 11:36 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-23 11:36 - 2017-01-20 07:47 - 00077416 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-23 10:50 - 2017-02-23 14:31 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\ZHP
2017-02-23 10:48 - 2017-02-23 10:48 - 02699264 _____ C:\Users\philippe.heit\Downloads\ZHPDiag3.exe
2017-02-23 10:30 - 2017-02-23 10:30 - 03803595 _____ (SOSVirus) C:\Users\philippe.heit\Downloads\UsbFix_9.028.exe
2017-02-23 10:30 - 2017-02-23 10:30 - 00000000 ____D C:\UsbFix
2017-02-23 10:03 - 2017-02-23 10:06 - 00031090 _____ C:\Windows\ntbtlog.txt
2017-02-22 15:37 - 2017-02-22 15:37 - 00000000 ____D C:\Users\philippe.heit\Downloads\avada
2017-02-22 15:33 - 2017-02-22 15:33 - 00612076 _____ C:\Users\philippe.heit\Downloads\bebcb8a1fd6fbbfae104b005016aeb8d_prddesc.pdf
2017-02-22 15:31 - 2017-02-22 15:36 - 245851753 _____ C:\Users\philippe.heit\Downloads\themeforest-2833226-avada-responsive-multipurpose-theme.zip
2017-02-22 15:16 - 2017-02-22 15:16 - 00000000 ____D C:\Users\philippe.heit\Downloads\wordpress-4.7.2-fr_FR
2017-02-22 15:15 - 2017-02-22 15:16 - 09223407 _____ C:\Users\philippe.heit\Downloads\wordpress-4.7.2-fr_FR.zip
2017-02-22 15:13 - 2017-02-22 15:13 - 00016721 _____ C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH.html
2017-02-22 15:13 - 2017-02-22 15:13 - 00001088 _____ C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH
2017-02-22 15:03 - 2017-02-22 15:13 - 59438648 _____ C:\Users\philippe.heit\AppData\Roaming\1450223
2017-02-22 12:00 - 2017-02-22 12:00 - 00234478 _____ C:\Users\philippe.heit\Downloads\suissnord.zip
2017-02-22 09:29 - 2017-02-22 14:59 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\FileZilla
2017-02-20 09:53 - 2017-02-20 09:53 - 00011593 _____ C:\Users\philippe.heit\Downloads\ACCUEIL.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00116694 _____ C:\Users\philippe.heit\Downloads\Devis_FRG017-0216-002_JUSTE-PRIX.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00116505 _____ C:\Users\philippe.heit\Downloads\Devis_FRG017-0216-002_ADÉQUATION-BUDGET.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00041332 _____ C:\Users\philippe.heit\Downloads\Detail_Prestation_Devis_FRG017-0216-002.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00035859 _____ C:\Users\philippe.heit\Downloads\FRG01702OPC-002.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00009975 _____ C:\Users\philippe.heit\Downloads\ARBORESCENCE.pdf
2017-02-20 09:47 - 2017-02-20 09:47 - 00081986 _____ C:\Users\philippe.heit\Downloads\28171973-slider-revolution-responsive-wordpress-plugin-license.pdf
2017-02-17 11:35 - 2017-02-17 11:35 - 00009434 _____ C:\Users\philippe.heit\Downloads\pour danval.xlsb
2017-02-16 16:15 - 2017-02-16 16:17 - 00000000 ____D C:\Users\philippe.heit\Downloads\FireShot
2017-02-16 15:37 - 2017-02-16 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quoter Plan
2017-02-16 15:37 - 2017-02-16 15:37 - 00000000 ____D C:\Program Files (x86)\Quoter Plan
2017-02-16 15:35 - 2017-02-16 15:36 - 00000000 ____D C:\Users\philippe.heit\Downloads\Quoter Plan 2.0.8
2017-02-16 15:35 - 2017-02-16 15:35 - 00042308 _____ C:\Users\philippe.heit\Downloads\Quoter Plan 2.0.8.torrent
2017-02-16 14:34 - 2017-02-16 14:34 - 00045578 _____ C:\Users\philippe.heit\Downloads\Aide affiliation multiple_v2.xlsm
2017-02-15 16:19 - 2017-02-15 16:19 - 00382325 _____ C:\Users\philippe.heit\Downloads\ligne_vide v1.xlsm
2017-02-15 12:06 - 2017-02-15 12:06 - 00000000 ____D C:\Users\philippe.heit\Downloads\business_cards_speckyboy
2017-02-15 12:04 - 2017-02-15 12:05 - 70606031 _____ C:\Users\philippe.heit\Downloads\business_cards_speckyboy.zip
2017-02-15 12:02 - 2017-02-15 12:02 - 00000000 ____D C:\Users\philippe.heit\Downloads\CP00010-PSD
2017-02-15 12:01 - 2017-02-15 12:02 - 00655483 _____ C:\Users\philippe.heit\Downloads\CP00010-PSD.zip
2017-02-14 17:25 - 2017-02-14 17:25 - 00450560 _____ C:\Users\philippe.heit\Downloads\test (ListBox)-3.xls
2017-02-14 17:11 - 2017-02-14 17:11 - 00023835 _____ C:\Users\philippe.heit\Downloads\patatedouce_apprentissage_userform.xlsm
2017-02-14 16:56 - 2017-02-14 16:56 - 00200704 _____ C:\Users\philippe.heit\Downloads\Stéphane57 ListBox Recherche V001.xls
2017-02-14 16:50 - 2017-02-14 16:50 - 00028944 _____ C:\Users\philippe.heit\Downloads\Classeur1 filtre 1.xlsm
2017-02-14 16:47 - 2017-02-14 16:47 - 00039466 _____ C:\Users\philippe.heit\Downloads\MARK_TK Filtre ListBox V001.xlsm
2017-02-14 14:42 - 2017-02-14 14:42 - 00038730 _____ C:\Users\philippe.heit\Downloads\yohann.Gestion Base de données V001.xlsm
2017-02-14 14:18 - 2017-02-14 14:18 - 00081985 _____ C:\Users\philippe.heit\Downloads\Example Excel - Drugs.xlsm
2017-02-14 14:02 - 2017-02-14 14:02 - 00052736 _____ C:\Users\philippe.heit\Downloads\onobyone ListBox V001.xls
2017-02-14 11:02 - 2017-02-14 11:02 - 00030493 _____ C:\Users\philippe.heit\Downloads\damntest1_v1.xlsm
2017-02-14 11:00 - 2017-02-14 11:00 - 00026145 _____ C:\Users\philippe.heit\Downloads\damntest1_v1.zip
2017-02-14 11:00 - 2017-02-14 11:00 - 00000000 ____D C:\Users\philippe.heit\Downloads\damntest1_v1
2017-02-13 10:50 - 2017-02-13 10:50 - 00265576 _____ C:\Users\philippe.heit\Downloads\FR_FR_01_803955590_details_conso_carburant.html
2017-02-13 10:50 - 2017-02-13 10:50 - 00265576 _____ C:\Users\philippe.heit\Downloads\FR_FR_01_803955590_details_conso_carburant(1).html
2017-02-10 11:05 - 2017-02-10 11:05 - 00153600 _____ C:\Users\philippe.heit\Downloads\Copie de Calculpoids2-1.xls
2017-02-09 16:18 - 2017-02-09 16:19 - 48551292 _____ C:\Users\philippe.heit\Downloads\ABM_68_20170110W2_02.zip
2017-02-09 16:17 - 2017-02-09 16:18 - 48550932 _____ C:\Users\philippe.heit\Downloads\PiecesCommunes (1).zip
2017-02-09 16:16 - 2017-02-09 16:17 - 48550932 _____ C:\Users\philippe.heit\Downloads\PiecesCommunes.zip
2017-02-09 11:55 - 2017-02-09 11:55 - 00093539 _____ C:\Users\philippe.heit\Downloads\Projet VBA v2.xlsm
2017-02-09 11:50 - 2017-02-09 11:50 - 00034622 _____ C:\Users\philippe.heit\Downloads\Patatedouce pompé sur ThauTheme.xlsm
2017-02-09 11:04 - 2017-02-09 11:57 - 00048640 _____ C:\Users\philippe.heit\Downloads\CHhsf6H3q4k_suivi.xls
2017-02-09 10:53 - 2017-02-09 10:53 - 00062976 _____ C:\Users\philippe.heit\Downloads\CHhkZfk3C7P_suivi.xls
2017-02-09 10:53 - 2017-02-09 10:53 - 00053760 _____ C:\Users\philippe.heit\Downloads\CHhk0lEFp8a_commande.xls
2017-02-09 10:27 - 2017-02-09 10:28 - 00041984 _____ C:\Users\philippe.heit\Downloads\Exemple.xls
2017-02-08 11:19 - 2017-02-09 11:57 - 00036030 _____ C:\Users\philippe.heit\Downloads\FDwkAUCQ1rE_RechMulti.xlsm
2017-02-08 08:54 - 2017-02-08 08:54 - 00229518 _____ C:\Users\philippe.heit\Downloads\Assurance habitation et attestation - Schiltigheim - 03.02.17.pdf
2017-02-03 12:12 - 2017-02-03 12:12 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2017-02-03 11:04 - 2017-02-03 11:04 - 00226456 _____ C:\Users\philippe.heit\Downloads\cartedidentité.pdf
2017-02-02 15:47 - 2017-02-02 15:47 - 00066048 _____ C:\Users\philippe.heit\Downloads\MouseWheelHookV2a.xls
2017-02-01 15:20 - 2017-02-01 15:20 - 00044032 _____ C:\Users\philippe.heit\Downloads\ProgressBar.xls
2017-02-01 12:00 - 2017-02-01 12:00 - 00002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-02-01 10:33 - 2017-02-01 10:33 - 00091136 _____ C:\Users\philippe.heit\Downloads\Recherche Nom 3.xls
2017-02-01 10:33 - 2017-02-01 10:33 - 00083456 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM (1).xls
2017-02-01 10:32 - 2017-02-01 10:32 - 00101376 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM.xls
2017-02-01 10:26 - 2017-02-01 10:26 - 00096768 _____ C:\Users\philippe.heit\Downloads\Recherche Nom Retour1 (1).xls
2017-02-01 10:17 - 2017-02-01 10:17 - 00047656 _____ C:\Users\philippe.heit\Downloads\MPo32 Userform V002.xlsm
2017-02-01 09:49 - 2017-02-01 09:49 - 00097792 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM_1 (1).xls
2017-02-01 09:48 - 2017-02-01 09:48 - 00076800 _____ C:\Users\philippe.heit\Downloads\Recherche Nom 5.xls
2017-02-01 09:46 - 2017-02-01 09:46 - 00097792 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM_1.xls
2017-02-01 09:44 - 2017-02-01 09:45 - 00096768 _____ C:\Users\philippe.heit\Downloads\Recherche Nom Retour1.xls
2017-01-31 17:45 - 2017-01-31 17:45 - 00022399 _____ C:\Users\philippe.heit\Downloads\Test pourcent -3.xlsm
2017-01-31 17:25 - 2017-01-31 17:25 - 00195479 _____ C:\Users\philippe.heit\Downloads\Damien91 Format TextBox V001 (1).xlsm
2017-01-31 17:13 - 2017-01-31 17:13 - 00195479 _____ C:\Users\philippe.heit\Downloads\Damien91 Format TextBox V001.xlsm
2017-01-31 12:14 - 2017-01-31 12:14 - 00025055 _____ C:\Users\philippe.heit\Downloads\Tableau suivi dépenses développement v1.xlsm
2017-01-31 12:11 - 2017-01-31 12:12 - 00606208 _____ C:\Users\philippe.heit\Downloads\USFModifAddBD.xls
2017-01-30 17:52 - 2017-02-23 15:25 - 00000629 _____ C:\Users\philippe.heit\mm.cfg
2017-01-30 16:41 - 2017-01-30 16:42 - 00000000 ____D C:\Users\philippe.heit\Downloads\dce-v1
2017-01-30 15:30 - 2017-01-30 17:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-30 15:03 - 2017-01-30 15:03 - 00000000 ____D C:\Program Files\Hewlett-Packard
2017-01-30 15:01 - 2016-08-26 09:42 - 00604584 _____ (HP Inc.) C:\Windows\SysWOW64\hpcdmc32.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00484776 _____ (HP Inc.) C:\Windows\system32\hpcpn190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00453544 _____ (HP Inc.) C:\Windows\SysWOW64\hpcc3190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00310512 _____ (HP Inc.) C:\Windows\system32\hpmlm190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00264944 _____ (HP Inc.) C:\Windows\system32\hpmml190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00241904 _____ (HP Inc.) C:\Windows\system32\hpmja190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00229800 _____ (HP Inc.) C:\Windows\system32\hpmpm081.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00204200 _____ (HP Inc.) C:\Windows\system32\hpmtp190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00178088 _____ (HP Inc.) C:\Windows\system32\hpcjpm.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00127912 _____ (HP Inc.) C:\Windows\system32\hpmpw081.dll
2017-01-30 14:58 - 2017-01-30 14:58 - 20345696 _____ C:\Users\philippe.heit\Downloads\upd-pcl6-x64-6.3.0.21178.exe
2017-01-30 14:58 - 2017-01-30 14:58 - 00000000 ____D C:\HP Universal Print Driver
2017-01-27 11:39 - 2015-12-20 19:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-01-27 11:39 - 2015-12-20 19:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-27 11:39 - 2015-12-20 15:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-01-27 11:39 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-01-27 11:39 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2017-01-27 11:39 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2017-01-27 11:39 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-01-27 11:39 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2017-01-27 11:39 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-01-27 11:39 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-01-27 11:39 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-01-27 11:29 - 2017-01-27 11:29 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-01-27 11:29 - 2017-01-27 11:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-01-27 11:26 - 2017-01-27 11:37 - 564744309 _____ C:\Users\philippe.heit\Downloads\Windows6.1-KB947821-v34-x64.msu
2017-01-27 11:25 - 2017-01-27 11:25 - 13165792 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_x64 (1).exe
2017-01-27 10:06 - 2017-02-23 14:30 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\Skype
2017-01-27 10:06 - 2017-01-27 10:06 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-01-27 10:06 - 2017-01-27 10:06 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\Skype
2017-01-27 10:06 - 2017-01-27 10:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-01-27 10:05 - 2017-01-27 10:06 - 00000000 ____D C:\ProgramData\Skype
2017-01-27 10:05 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2017-01-27 10:05 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-27 10:05 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-27 10:05 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2017-01-27 10:05 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2017-01-27 10:05 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-27 10:05 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2017-01-27 10:05 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2017-01-27 10:05 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-01-27 10:05 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-01-27 10:04 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2017-01-27 10:04 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2017-01-27 10:04 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2017-01-27 10:04 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2017-01-27 10:00 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2017-01-27 10:00 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2017-01-27 10:00 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2017-01-27 10:00 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2017-01-27 10:00 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2017-01-27 10:00 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2017-01-27 10:00 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-01-27 10:00 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-01-27 09:50 - 2013-04-26 09:53 - 00438560 _____ (Hewlett-Packard Corporation) C:\Windows\system32\hpcpn145.dll
2017-01-27 09:50 - 2013-04-26 09:49 - 00436512 _____ C:\Windows\SysWOW64\hpcc3145.dll
2017-01-27 09:47 - 2017-01-27 09:47 - 00000000 ____D C:\Users\philippe.heit\Downloads\Windows-Update-MiniTool
2017-01-27 09:32 - 2017-01-27 09:33 - 04518077 _____ C:\Users\philippe.heit\Downloads\Windows-Update-MiniTool.zip
2017-01-27 09:24 - 2017-01-27 09:24 - 00313366 _____ C:\Users\philippe.heit\Downloads\WindowsUpdate.diagcab
2017-01-27 09:21 - 2017-01-27 09:22 - 00000000 ____D C:\2d57eaa5126d6f726b4dfd04ecdd
2017-01-26 17:01 - 2017-01-26 17:02 - 00000000 ____D C:\f1e959d929f680d25c72
2017-01-26 16:46 - 2017-01-26 16:47 - 09973791 _____ C:\Users\philippe.heit\Downloads\Typical+Warehouse.skp
2017-01-26 16:46 - 2017-01-26 16:46 - 02518650 _____ C:\Users\philippe.heit\Downloads\Red+Building+-+warehouse.skp
2017-01-26 16:39 - 2017-01-26 16:39 - 00341567 _____ C:\Users\philippe.heit\Downloads\3D+model.skp
2017-01-26 16:36 - 2017-01-26 16:36 - 07355490 _____ C:\Users\philippe.heit\Downloads\7-4-15+Container+Cross.skp
2017-01-26 16:36 - 2017-01-26 16:36 - 01677942 _____ C:\Users\philippe.heit\Downloads\anw.skp
2017-01-26 16:28 - 2017-01-26 16:29 - 36859334 _____ C:\Users\philippe.heit\Downloads\Giant+ATX+690-D+2012+No+Material.skp
2017-01-26 16:24 - 2017-01-26 16:24 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\Trimble Connect for SketchUp
2017-01-26 16:10 - 2017-01-26 16:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2017
2017-01-26 15:51 - 2017-01-26 16:02 - 159476504 _____ (Trimble, Inc.) C:\Users\philippe.heit\Downloads\SketchUpMake-fr-x64.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 17950496 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_Developer_x64.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 15097394 _____ C:\Users\philippe.heit\Downloads\Silverlight.dmg
2017-01-26 15:48 - 2017-01-26 15:49 - 13165792 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_x64.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 09432352 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_Developer.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 07029984 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight.exe
2017-01-26 15:39 - 2017-01-26 15:50 - 84403776 _____ (Trimble, Inc.) C:\Users\philippe.heit\Downloads\Non confirmé 388946.crdownload
2017-01-26 15:05 - 2017-01-26 15:05 - 00231028 _____ C:\Users\philippe.heit\Downloads\tt_solid_inspector-2.4.7.rbz
2017-01-26 15:05 - 2017-01-26 15:05 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\LIBFREDO6_DATA_Dir
2017-01-26 15:04 - 2017-01-26 15:04 - 05125757 _____ C:\Users\philippe.heit\Downloads\Fredo6_!LibFredo6 - v7.4c - 16 Jan 17.rbz
2017-01-26 15:01 - 2017-01-26 15:01 - 00147453 _____ C:\Users\philippe.heit\Downloads\sketchup-stl-2.1.6.rbz
2017-01-26 14:58 - 2017-01-26 14:59 - 03039323 _____ C:\Users\philippe.heit\Downloads\AutoSave_AutoSave_Ink+Trolley_1.skp
2017-01-26 14:57 - 2017-01-26 14:57 - 00118319 _____ C:\Users\philippe.heit\Downloads\Untitled.skp
2017-01-26 14:56 - 2017-01-26 14:56 - 00755700 _____ C:\Users\philippe.heit\Downloads\Sto-Eimer.skp
2017-01-26 11:52 - 2017-01-26 11:53 - 01062450 _____ C:\Users\philippe.heit\Downloads\nd2358.pdf
2017-01-26 08:49 - 2017-01-26 14:20 - 00000000 ____D C:\Users\philippe.heit\Downloads\CD7339_GABARITS
2017-01-26 08:48 - 2017-01-26 08:49 - 02366695 _____ C:\Users\philippe.heit\Downloads\CD7339_GABARITS.zip
2017-01-25 14:02 - 2017-01-25 14:02 - 00107741 _____ C:\Users\philippe.heit\Downloads\ticket.pdf
2017-01-25 11:42 - 2017-02-01 12:06 - 00002192 _____ C:\Users\philippe.heit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-01-25 11:42 - 2017-01-25 11:42 - 00002110 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-01-25 11:42 - 2017-01-25 11:42 - 00002110 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-01-25 11:41 - 2017-01-25 11:41 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-01-25 11:35 - 2017-01-25 11:35 - 00002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00002386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00002374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
2017-01-25 11:32 - 2017-01-25 11:32 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-01-25 10:01 - 2017-01-25 10:07 - 329702152 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\accessruntime_4288-1001_x64_fr-fr.exe
2017-01-25 09:46 - 2017-01-25 09:47 - 26742696 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\AccessDatabaseEngine.exe
2017-01-25 09:44 - 2017-01-26 09:15 - 00000000 ____D C:\Users\philippe.heit\Downloads\3D
2017-01-25 09:27 - 2017-01-25 09:28 - 28799696 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\AccessDatabaseEngine_X64.exe
2017-01-24 17:57 - 2017-01-24 17:57 - 01479457 _____ C:\Users\philippe.heit\Downloads\fr_brochure_sikafloor_esd.pdf
2017-01-24 17:35 - 2017-01-24 17:35 - 07784226 _____ C:\Users\philippe.heit\Downloads\bro-sika-sols-et-coatings-fr.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-23 15:25 - 2016-11-22 15:39 - 00000000 ____D C:\Users\philippe.heit\AppData\LocalLow\Mozilla
2017-02-23 15:25 - 2014-01-31 09:09 - 00000000 ____D C:\Users\philippe.heit
2017-02-23 15:01 - 2013-07-09 08:31 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-23 14:37 - 2009-07-14 05:45 - 00027568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-23 14:37 - 2009-07-14 05:45 - 00027568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-23 14:32 - 2014-10-22 13:53 - 00012461 _____ C:\Windows\cfgall.ini
2017-02-23 14:30 - 2015-07-29 08:53 - 00000000 ___RD C:\Users\philippe.heit\Google Drive
2017-02-23 14:24 - 2012-06-04 08:20 - 00000144 _____ C:\Windows\system32\config\netlogon.ftl
2017-02-23 14:24 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-23 14:23 - 2016-07-20 08:53 - 00000000 ____D C:\AdwCleaner
2017-02-23 14:15 - 2016-10-04 08:25 - 00000000 ____D C:\Users\philippe.heit\Downloads\MTK2.6B5
2017-02-23 14:15 - 2013-10-08 09:46 - 00000000 ____D C:\Users\solastra1\AppData\Local\Akamai
2017-02-23 11:39 - 2016-01-25 16:58 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\CrashDumps
2017-02-23 10:57 - 2016-08-31 13:53 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-23 10:02 - 2013-12-17 09:08 - 00000000 ____D C:\Windows\system32\MRT
2017-02-23 09:58 - 2012-05-31 11:47 - 138020592 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-02-23 09:47 - 2015-02-04 15:36 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\uTorrent
2017-02-23 09:47 - 2014-10-22 13:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Worry-Free Business Security Agent
2017-02-23 09:47 - 2013-10-08 09:49 - 00000000 ____D C:\ProgramData\Autodesk
2017-02-23 09:47 - 2012-10-25 09:11 - 00000000 ____D C:\Users\administrateur
2017-02-23 09:47 - 2012-06-04 08:22 - 00000000 ____D C:\Users\solastra1
2017-02-23 09:47 - 2012-05-31 10:04 - 00000000 ____D C:\Users\emergency
2017-02-23 09:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2017-02-22 16:59 - 2014-10-02 08:21 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\FileZilla
2017-02-22 12:04 - 2014-02-05 16:08 - 00000132 _____ C:\Users\philippe.heit\AppData\Roaming\Adobe PNG Format CS5 Prefs
2017-02-22 11:46 - 2016-07-25 15:36 - 00000034 _____ C:\Users\philippe.heit\AppData\Roaming\AdobeWLCMCache.dat
2017-02-22 09:29 - 2014-10-02 08:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-02-22 09:29 - 2014-10-02 08:21 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2017-02-15 11:02 - 2013-07-09 08:31 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-02-15 11:02 - 2012-05-31 11:08 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-02-15 11:02 - 2012-05-31 11:08 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-15 11:02 - 2012-05-31 11:08 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-15 11:02 - 2012-05-31 11:08 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-09 16:09 - 2011-02-11 15:52 - 00780990 _____ C:\Windows\system32\perfh00C.dat
2017-02-09 16:09 - 2011-02-11 15:52 - 00162634 _____ C:\Windows\system32\perfc00C.dat
2017-02-09 16:09 - 2009-07-14 06:13 - 01763306 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-09 16:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-09 08:41 - 2009-07-14 06:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-02-07 09:04 - 2015-03-09 14:38 - 00002159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-07 08:53 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2017-02-01 12:06 - 2017-01-23 10:49 - 00000000 ___RD C:\Users\philippe.heit\OneDrive
2017-02-01 12:00 - 2016-08-31 13:27 - 00000000 ____D C:\Program Files\Microsoft Office
2017-01-31 08:43 - 2012-06-12 15:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-30 12:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-27 11:50 - 2009-07-14 05:45 - 05552416 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-27 11:44 - 2011-12-23 19:55 - 01737438 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-01-27 11:30 - 2013-03-13 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-01-27 10:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-01-27 09:30 - 2014-02-11 15:49 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\ElevatedDiagnostics
2017-01-26 16:24 - 2014-05-21 12:45 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\Autodesk
2017-01-26 16:11 - 2016-09-07 11:03 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\SketchUp
2017-01-26 16:10 - 2016-09-07 10:55 - 00000000 ____D C:\ProgramData\Reprise
2017-01-26 16:09 - 2016-09-07 10:54 - 00000000 ____D C:\ProgramData\SketchUp
2017-01-26 16:09 - 2016-09-07 10:54 - 00000000 ____D C:\Program Files\SketchUp
2017-01-26 16:08 - 2014-09-04 09:36 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-25 16:42 - 2014-10-30 15:24 - 00000132 _____ C:\Users\philippe.heit\AppData\Roaming\Adobe GIF Format CS5 Prefs
2017-01-25 11:42 - 2017-01-23 10:49 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2017-01-25 11:41 - 2016-08-30 14:22 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-25 11:41 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-01-25 11:28 - 2016-08-31 13:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
==================== Fichiers à la racine de certains dossiers =======
2017-02-22 15:03 - 2017-02-22 15:13 - 59438648 _____ () C:\Users\philippe.heit\AppData\Roaming\1450223
2014-10-30 15:24 - 2017-01-25 16:42 - 0000132 _____ () C:\Users\philippe.heit\AppData\Roaming\Adobe GIF Format CS5 Prefs
2014-02-05 16:08 - 2017-02-22 12:04 - 0000132 _____ () C:\Users\philippe.heit\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-07-25 15:36 - 2017-02-22 11:46 - 0000034 _____ () C:\Users\philippe.heit\AppData\Roaming\AdobeWLCMCache.dat
2017-02-22 15:13 - 2017-02-22 15:13 - 0001088 _____ () C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH
2017-02-22 15:13 - 2017-02-22 15:13 - 0016721 _____ () C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH.html
2016-04-18 16:54 - 2016-04-18 16:54 - 0038524 _____ () C:\Users\philippe.heit\AppData\Roaming\Valeurs séparées par une virgule (Windows).ADR
2014-04-08 15:23 - 2016-02-04 16:48 - 0001456 _____ () C:\Users\philippe.heit\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2016-07-25 15:41 - 2016-09-09 09:56 - 0002813 _____ () C:\Users\philippe.heit\AppData\Local\Cracklock.settings
2013-10-08 10:16 - 2013-10-08 10:16 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Certains fichiers dans TEMP:
====================
2011-06-22 20:00 - 2011-06-22 20:00 - 8165432 _____ (Google Inc.) C:\Users\emergency\AppData\Local\Temp\GoogleToolbarStandaloneSetup_7_1_1821_1806.exe
2012-05-31 10:06 - 2004-07-28 16:29 - 0020480 _____ () C:\Users\emergency\AppData\Local\Temp\readini32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-22 12:36
==================== Fin de FRST.txt ============================
Exécuté par philippe.heit (administrateur) sur PC-ACCUEIL (23-02-2017 15:57:59)
Exécuté depuis \\SRVSOLASTRA\RedirectedFolders\philippe.heit\Desktop
Profils chargés: philippe.heit (Profils disponibles: philippe.heit & emergency)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\NTRTScan.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmListen.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\PccNTMon.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Farbar) \\srvsolastra\redirectedfolders\philippe.heit\desktop\frst64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12661352 2011-08-01] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [OfficeScanNT Monitor] => C:\Program Files (x86)\Trend Micro\Security Agent\pccntmon.exe [1863072 2016-04-27] (Trend Micro Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [711616 2016-04-19] (Autodesk, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8891608 2016-07-13] (Piriform Ltd)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-08-29] (Disc Soft Ltd)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [Google Update] => C:\Users\philippe.heit\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-19] (Google Inc.)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\RunOnce: [Uninstall C:\Users\philippe.heit\AppData\Local\Microsoft\OneDrive\17.3.4604.0120] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\philippe.heit\AppData\Local\Microsoft\OneDrive\17.3.4604.0120"
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\MountPoints2: {175ebebd-0531-11e6-849f-001999d1e177} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Start.exe
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\...\MountPoints2: {3a09c731-6e7f-11e6-bc0d-001999d1e177} - K:\SETUP.EXE
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-06-13] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\philippe.heit\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-07-05] (Dropbox, Inc.)
Startup: C:\Users\administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2012-10-26]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2012-05-31]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2012-05-31]
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{5B7B5582-AB34-4A9C-9FE0-B752F60528D5}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{CE432CB0-E509-4830-9293-4069A37C0464}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{E067D858-6908-45BB-AD2D-392C31A6797A}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1222139310-837356833-1376051784-1169\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1222139310-837356833-1376051784-1169 -> DefaultScope {E6B744B2-12AF-4A4E-B84C-8FD75AFA8C2A} URL =
SearchScopes: HKU\S-1-5-21-1222139310-837356833-1376051784-1169 -> {E6B744B2-12AF-4A4E-B84C-8FD75AFA8C2A} URL =
BHO: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-25] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2017-01-25] (Microsoft Corporation)
BHO: Trend Micro IE Protection -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\TmBpIe64.dll [2016-03-04] (Trend Micro Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-25] (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2017-01-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-25] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2017-01-25] (Microsoft Corporation)
BHO-x32: Trend Micro IE Protection -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\IE32\TmBpIe32.dll [2016-03-04] (Trend Micro Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2017-01-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-25] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
DPF: HKLM-x32 {00134F72-5284-44F7-95A8-52A619F70752} hxxps://srvsolastra.solastra-sa.local:4343/officescan/console/ClientInstall/WinNTChk.cab?ver=19,0,0,1428
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2017-01-25] (Microsoft Corporation)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\TmBpIe64.dll [2016-03-04] (Trend Micro Inc.)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\module\BES\IE32\TmBpIe32.dll [2016-03-04] (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
FireFox:
========
FF ProfilePath: C:\Users\philippe.heit\AppData\Roaming\TomTom\HOME\Profiles\s16jnvhy.default [2014-10-01]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default [2017-02-23]
FF Extension: (Firebug) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\firebug@software.joehewitt.com.xpi [2016-10-14]
FF Extension: (FlashFirebug) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\flashfirebug@o-minds.com [2016-04-18]
FF Extension: (FireShot) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2016-09-05]
FF Extension: (ReloadEvery) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2016-04-21]
FF Extension: (Video DownloadHelper) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-03]
FF Extension: (Adblock Plus) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-28]
FF Extension: (Open With Photoshop) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\Extensions\{f3f219f9-cbce-467e-b8fe-6e076d29665c}.xpi [2016-12-01]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\philippe.heit\AppData\Roaming\Mozilla\Firefox\Profiles\ky2wpwd7.default\features\{b900848f-ad70-403b-b8f1-5dc3e6a52f09}\disableSHA1rollout@mozilla.org.xpi [2017-02-22]
FF HKLM\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF Extension: (Trend Micro NSC Firefox Extension) - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension [2017-02-23]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-03-19] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-15] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-25] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-01-25] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-02] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-15] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [Pas de fichier]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-01-25] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-06-27] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-02] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1222139310-837356833-1376051784-1169: @tools.google.com/Google Update;version=3 -> C:\Users\philippe.heit\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-1222139310-837356833-1376051784-1169: @tools.google.com/Google Update;version=9 -> C:\Users\philippe.heit\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default [2017-02-23]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-09]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-09]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-21]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-21]
CHR Extension: (Adobe Acrobat) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-23]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-09]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-18]
CHR Extension: (Arabic) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-17]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-10-01]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2016-11-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Pas de nom) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-01]
CHR Extension: (Chrome Media Router) - C:\Users\philippe.heit\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08]
CHR HKU\S-1-5-21-1222139310-837356833-1376051784-1169\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-05-11]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1262096 2016-04-19] (Autodesk Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Fichier non signé]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2776664 2015-08-16] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2016-06-15] (HP Inc.) [Fichier non signé]
R2 ntrtscan; C:\Program Files (x86)\Trend Micro\Security Agent\ntrtscan.exe [4343184 2016-04-27] (Trend Micro Inc.)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2016-06-15] (HP Inc.) [Fichier non signé]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
R3 TMBMServer; C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe [592952 2016-01-26] (Trend Micro Inc.)
R3 TmCCSF; C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe [864096 2016-04-27] (Trend Micro Inc.)
R2 tmlisten; C:\Program Files (x86)\Trend Micro\Security Agent\tmlisten.exe [4249904 2016-05-17] (Trend Micro Inc.)
R3 TmProxy; C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe [930816 2015-07-29] (Trend Micro Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [25600 2015-01-23] (BlackBerry Limited) [Fichier non signé]
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-08-30] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-08-30] (Disc Soft Ltd)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251848 2017-02-23] (Malwarebytes)
S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [18432 2015-05-26] (BlackBerry Limited) [Fichier non signé]
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [129360 2015-12-03] (Trend Micro Inc.)
R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [324408 2015-12-03] (Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [87888 2015-12-03] (Trend Micro Inc.)
R2 TmFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmXPFlt.sys [393952 2016-08-22] (Trend Micro Inc.)
R2 TmPreFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmPreFlt.sys [66784 2016-08-22] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [109080 2013-01-09] (Trend Micro Inc.)
R1 tmumh; C:\Windows\System32\DRIVERS\TMUMH.sys [103768 2016-02-26] (Trend Micro Inc.)
R2 VSApiNt; C:\Program Files (x86)\Trend Micro\Security Agent\VSApiNt.sys [2578656 2016-08-22] (Trend Micro Inc.)
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
U3 wampapache; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-23 15:57 - 2017-02-23 15:57 - 00000000 ____D C:\FRST
2017-02-23 14:21 - 2017-02-23 14:21 - 04015056 _____ C:\Users\philippe.heit\Downloads\adwcleaner_6.043 (1).exe
2017-02-23 11:37 - 2017-02-23 14:25 - 00251848 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00176584 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00110536 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00081696 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-02-23 11:37 - 2017-02-23 11:37 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-02-23 11:36 - 2017-02-23 11:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-23 11:36 - 2017-02-23 11:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-23 11:36 - 2017-02-23 11:36 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-23 11:36 - 2017-01-20 07:47 - 00077416 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-23 10:50 - 2017-02-23 14:31 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\ZHP
2017-02-23 10:48 - 2017-02-23 10:48 - 02699264 _____ C:\Users\philippe.heit\Downloads\ZHPDiag3.exe
2017-02-23 10:30 - 2017-02-23 10:30 - 03803595 _____ (SOSVirus) C:\Users\philippe.heit\Downloads\UsbFix_9.028.exe
2017-02-23 10:30 - 2017-02-23 10:30 - 00000000 ____D C:\UsbFix
2017-02-23 10:03 - 2017-02-23 10:06 - 00031090 _____ C:\Windows\ntbtlog.txt
2017-02-22 15:37 - 2017-02-22 15:37 - 00000000 ____D C:\Users\philippe.heit\Downloads\avada
2017-02-22 15:33 - 2017-02-22 15:33 - 00612076 _____ C:\Users\philippe.heit\Downloads\bebcb8a1fd6fbbfae104b005016aeb8d_prddesc.pdf
2017-02-22 15:31 - 2017-02-22 15:36 - 245851753 _____ C:\Users\philippe.heit\Downloads\themeforest-2833226-avada-responsive-multipurpose-theme.zip
2017-02-22 15:16 - 2017-02-22 15:16 - 00000000 ____D C:\Users\philippe.heit\Downloads\wordpress-4.7.2-fr_FR
2017-02-22 15:15 - 2017-02-22 15:16 - 09223407 _____ C:\Users\philippe.heit\Downloads\wordpress-4.7.2-fr_FR.zip
2017-02-22 15:13 - 2017-02-22 15:13 - 00016721 _____ C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH.html
2017-02-22 15:13 - 2017-02-22 15:13 - 00001088 _____ C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH
2017-02-22 15:03 - 2017-02-22 15:13 - 59438648 _____ C:\Users\philippe.heit\AppData\Roaming\1450223
2017-02-22 12:00 - 2017-02-22 12:00 - 00234478 _____ C:\Users\philippe.heit\Downloads\suissnord.zip
2017-02-22 09:29 - 2017-02-22 14:59 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\FileZilla
2017-02-20 09:53 - 2017-02-20 09:53 - 00011593 _____ C:\Users\philippe.heit\Downloads\ACCUEIL.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00116694 _____ C:\Users\philippe.heit\Downloads\Devis_FRG017-0216-002_JUSTE-PRIX.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00116505 _____ C:\Users\philippe.heit\Downloads\Devis_FRG017-0216-002_ADÉQUATION-BUDGET.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00041332 _____ C:\Users\philippe.heit\Downloads\Detail_Prestation_Devis_FRG017-0216-002.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00035859 _____ C:\Users\philippe.heit\Downloads\FRG01702OPC-002.pdf
2017-02-20 09:52 - 2017-02-20 09:52 - 00009975 _____ C:\Users\philippe.heit\Downloads\ARBORESCENCE.pdf
2017-02-20 09:47 - 2017-02-20 09:47 - 00081986 _____ C:\Users\philippe.heit\Downloads\28171973-slider-revolution-responsive-wordpress-plugin-license.pdf
2017-02-17 11:35 - 2017-02-17 11:35 - 00009434 _____ C:\Users\philippe.heit\Downloads\pour danval.xlsb
2017-02-16 16:15 - 2017-02-16 16:17 - 00000000 ____D C:\Users\philippe.heit\Downloads\FireShot
2017-02-16 15:37 - 2017-02-16 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Quoter Plan
2017-02-16 15:37 - 2017-02-16 15:37 - 00000000 ____D C:\Program Files (x86)\Quoter Plan
2017-02-16 15:35 - 2017-02-16 15:36 - 00000000 ____D C:\Users\philippe.heit\Downloads\Quoter Plan 2.0.8
2017-02-16 15:35 - 2017-02-16 15:35 - 00042308 _____ C:\Users\philippe.heit\Downloads\Quoter Plan 2.0.8.torrent
2017-02-16 14:34 - 2017-02-16 14:34 - 00045578 _____ C:\Users\philippe.heit\Downloads\Aide affiliation multiple_v2.xlsm
2017-02-15 16:19 - 2017-02-15 16:19 - 00382325 _____ C:\Users\philippe.heit\Downloads\ligne_vide v1.xlsm
2017-02-15 12:06 - 2017-02-15 12:06 - 00000000 ____D C:\Users\philippe.heit\Downloads\business_cards_speckyboy
2017-02-15 12:04 - 2017-02-15 12:05 - 70606031 _____ C:\Users\philippe.heit\Downloads\business_cards_speckyboy.zip
2017-02-15 12:02 - 2017-02-15 12:02 - 00000000 ____D C:\Users\philippe.heit\Downloads\CP00010-PSD
2017-02-15 12:01 - 2017-02-15 12:02 - 00655483 _____ C:\Users\philippe.heit\Downloads\CP00010-PSD.zip
2017-02-14 17:25 - 2017-02-14 17:25 - 00450560 _____ C:\Users\philippe.heit\Downloads\test (ListBox)-3.xls
2017-02-14 17:11 - 2017-02-14 17:11 - 00023835 _____ C:\Users\philippe.heit\Downloads\patatedouce_apprentissage_userform.xlsm
2017-02-14 16:56 - 2017-02-14 16:56 - 00200704 _____ C:\Users\philippe.heit\Downloads\Stéphane57 ListBox Recherche V001.xls
2017-02-14 16:50 - 2017-02-14 16:50 - 00028944 _____ C:\Users\philippe.heit\Downloads\Classeur1 filtre 1.xlsm
2017-02-14 16:47 - 2017-02-14 16:47 - 00039466 _____ C:\Users\philippe.heit\Downloads\MARK_TK Filtre ListBox V001.xlsm
2017-02-14 14:42 - 2017-02-14 14:42 - 00038730 _____ C:\Users\philippe.heit\Downloads\yohann.Gestion Base de données V001.xlsm
2017-02-14 14:18 - 2017-02-14 14:18 - 00081985 _____ C:\Users\philippe.heit\Downloads\Example Excel - Drugs.xlsm
2017-02-14 14:02 - 2017-02-14 14:02 - 00052736 _____ C:\Users\philippe.heit\Downloads\onobyone ListBox V001.xls
2017-02-14 11:02 - 2017-02-14 11:02 - 00030493 _____ C:\Users\philippe.heit\Downloads\damntest1_v1.xlsm
2017-02-14 11:00 - 2017-02-14 11:00 - 00026145 _____ C:\Users\philippe.heit\Downloads\damntest1_v1.zip
2017-02-14 11:00 - 2017-02-14 11:00 - 00000000 ____D C:\Users\philippe.heit\Downloads\damntest1_v1
2017-02-13 10:50 - 2017-02-13 10:50 - 00265576 _____ C:\Users\philippe.heit\Downloads\FR_FR_01_803955590_details_conso_carburant.html
2017-02-13 10:50 - 2017-02-13 10:50 - 00265576 _____ C:\Users\philippe.heit\Downloads\FR_FR_01_803955590_details_conso_carburant(1).html
2017-02-10 11:05 - 2017-02-10 11:05 - 00153600 _____ C:\Users\philippe.heit\Downloads\Copie de Calculpoids2-1.xls
2017-02-09 16:18 - 2017-02-09 16:19 - 48551292 _____ C:\Users\philippe.heit\Downloads\ABM_68_20170110W2_02.zip
2017-02-09 16:17 - 2017-02-09 16:18 - 48550932 _____ C:\Users\philippe.heit\Downloads\PiecesCommunes (1).zip
2017-02-09 16:16 - 2017-02-09 16:17 - 48550932 _____ C:\Users\philippe.heit\Downloads\PiecesCommunes.zip
2017-02-09 11:55 - 2017-02-09 11:55 - 00093539 _____ C:\Users\philippe.heit\Downloads\Projet VBA v2.xlsm
2017-02-09 11:50 - 2017-02-09 11:50 - 00034622 _____ C:\Users\philippe.heit\Downloads\Patatedouce pompé sur ThauTheme.xlsm
2017-02-09 11:04 - 2017-02-09 11:57 - 00048640 _____ C:\Users\philippe.heit\Downloads\CHhsf6H3q4k_suivi.xls
2017-02-09 10:53 - 2017-02-09 10:53 - 00062976 _____ C:\Users\philippe.heit\Downloads\CHhkZfk3C7P_suivi.xls
2017-02-09 10:53 - 2017-02-09 10:53 - 00053760 _____ C:\Users\philippe.heit\Downloads\CHhk0lEFp8a_commande.xls
2017-02-09 10:27 - 2017-02-09 10:28 - 00041984 _____ C:\Users\philippe.heit\Downloads\Exemple.xls
2017-02-08 11:19 - 2017-02-09 11:57 - 00036030 _____ C:\Users\philippe.heit\Downloads\FDwkAUCQ1rE_RechMulti.xlsm
2017-02-08 08:54 - 2017-02-08 08:54 - 00229518 _____ C:\Users\philippe.heit\Downloads\Assurance habitation et attestation - Schiltigheim - 03.02.17.pdf
2017-02-03 12:12 - 2017-02-03 12:12 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2017-02-03 11:04 - 2017-02-03 11:04 - 00226456 _____ C:\Users\philippe.heit\Downloads\cartedidentité.pdf
2017-02-02 15:47 - 2017-02-02 15:47 - 00066048 _____ C:\Users\philippe.heit\Downloads\MouseWheelHookV2a.xls
2017-02-01 15:20 - 2017-02-01 15:20 - 00044032 _____ C:\Users\philippe.heit\Downloads\ProgressBar.xls
2017-02-01 12:00 - 2017-02-01 12:00 - 00002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-02-01 10:33 - 2017-02-01 10:33 - 00091136 _____ C:\Users\philippe.heit\Downloads\Recherche Nom 3.xls
2017-02-01 10:33 - 2017-02-01 10:33 - 00083456 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM (1).xls
2017-02-01 10:32 - 2017-02-01 10:32 - 00101376 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM.xls
2017-02-01 10:26 - 2017-02-01 10:26 - 00096768 _____ C:\Users\philippe.heit\Downloads\Recherche Nom Retour1 (1).xls
2017-02-01 10:17 - 2017-02-01 10:17 - 00047656 _____ C:\Users\philippe.heit\Downloads\MPo32 Userform V002.xlsm
2017-02-01 09:49 - 2017-02-01 09:49 - 00097792 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM_1 (1).xls
2017-02-01 09:48 - 2017-02-01 09:48 - 00076800 _____ C:\Users\philippe.heit\Downloads\Recherche Nom 5.xls
2017-02-01 09:46 - 2017-02-01 09:46 - 00097792 _____ C:\Users\philippe.heit\Downloads\création formulaire_JM_1.xls
2017-02-01 09:44 - 2017-02-01 09:45 - 00096768 _____ C:\Users\philippe.heit\Downloads\Recherche Nom Retour1.xls
2017-01-31 17:45 - 2017-01-31 17:45 - 00022399 _____ C:\Users\philippe.heit\Downloads\Test pourcent -3.xlsm
2017-01-31 17:25 - 2017-01-31 17:25 - 00195479 _____ C:\Users\philippe.heit\Downloads\Damien91 Format TextBox V001 (1).xlsm
2017-01-31 17:13 - 2017-01-31 17:13 - 00195479 _____ C:\Users\philippe.heit\Downloads\Damien91 Format TextBox V001.xlsm
2017-01-31 12:14 - 2017-01-31 12:14 - 00025055 _____ C:\Users\philippe.heit\Downloads\Tableau suivi dépenses développement v1.xlsm
2017-01-31 12:11 - 2017-01-31 12:12 - 00606208 _____ C:\Users\philippe.heit\Downloads\USFModifAddBD.xls
2017-01-30 17:52 - 2017-02-23 15:25 - 00000629 _____ C:\Users\philippe.heit\mm.cfg
2017-01-30 16:41 - 2017-01-30 16:42 - 00000000 ____D C:\Users\philippe.heit\Downloads\dce-v1
2017-01-30 15:30 - 2017-01-30 17:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-30 15:03 - 2017-01-30 15:03 - 00000000 ____D C:\Program Files\Hewlett-Packard
2017-01-30 15:01 - 2016-08-26 09:42 - 00604584 _____ (HP Inc.) C:\Windows\SysWOW64\hpcdmc32.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00484776 _____ (HP Inc.) C:\Windows\system32\hpcpn190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00453544 _____ (HP Inc.) C:\Windows\SysWOW64\hpcc3190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00310512 _____ (HP Inc.) C:\Windows\system32\hpmlm190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00264944 _____ (HP Inc.) C:\Windows\system32\hpmml190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00241904 _____ (HP Inc.) C:\Windows\system32\hpmja190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00229800 _____ (HP Inc.) C:\Windows\system32\hpmpm081.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00204200 _____ (HP Inc.) C:\Windows\system32\hpmtp190.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00178088 _____ (HP Inc.) C:\Windows\system32\hpcjpm.dll
2017-01-30 15:01 - 2016-08-26 09:42 - 00127912 _____ (HP Inc.) C:\Windows\system32\hpmpw081.dll
2017-01-30 14:58 - 2017-01-30 14:58 - 20345696 _____ C:\Users\philippe.heit\Downloads\upd-pcl6-x64-6.3.0.21178.exe
2017-01-30 14:58 - 2017-01-30 14:58 - 00000000 ____D C:\HP Universal Print Driver
2017-01-27 11:39 - 2015-12-20 19:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2017-01-27 11:39 - 2015-12-20 19:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-01-27 11:39 - 2015-12-20 15:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2017-01-27 11:39 - 2015-07-16 20:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-01-27 11:39 - 2015-07-16 20:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2017-01-27 11:39 - 2015-07-16 20:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2017-01-27 11:39 - 2015-07-16 20:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-01-27 11:39 - 2015-07-16 20:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2017-01-27 11:39 - 2015-07-16 20:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2017-01-27 11:39 - 2015-07-11 14:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2017-01-27 11:39 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2017-01-27 11:29 - 2017-01-27 11:29 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-01-27 11:29 - 2017-01-27 11:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-01-27 11:26 - 2017-01-27 11:37 - 564744309 _____ C:\Users\philippe.heit\Downloads\Windows6.1-KB947821-v34-x64.msu
2017-01-27 11:25 - 2017-01-27 11:25 - 13165792 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_x64 (1).exe
2017-01-27 10:06 - 2017-02-23 14:30 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\Skype
2017-01-27 10:06 - 2017-01-27 10:06 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-01-27 10:06 - 2017-01-27 10:06 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\Skype
2017-01-27 10:06 - 2017-01-27 10:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-01-27 10:05 - 2017-01-27 10:06 - 00000000 ____D C:\ProgramData\Skype
2017-01-27 10:05 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2017-01-27 10:05 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-01-27 10:05 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-01-27 10:05 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2017-01-27 10:05 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2017-01-27 10:05 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-01-27 10:05 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2017-01-27 10:05 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2017-01-27 10:05 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-01-27 10:05 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-01-27 10:04 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2017-01-27 10:04 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2017-01-27 10:04 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2017-01-27 10:04 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2017-01-27 10:00 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2017-01-27 10:00 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2017-01-27 10:00 - 2015-12-16 19:53 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2017-01-27 10:00 - 2015-12-16 19:48 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2017-01-27 10:00 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2017-01-27 10:00 - 2015-12-16 19:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2017-01-27 10:00 - 2015-08-05 18:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-01-27 10:00 - 2015-08-05 18:06 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-01-27 09:50 - 2013-04-26 09:53 - 00438560 _____ (Hewlett-Packard Corporation) C:\Windows\system32\hpcpn145.dll
2017-01-27 09:50 - 2013-04-26 09:49 - 00436512 _____ C:\Windows\SysWOW64\hpcc3145.dll
2017-01-27 09:47 - 2017-01-27 09:47 - 00000000 ____D C:\Users\philippe.heit\Downloads\Windows-Update-MiniTool
2017-01-27 09:32 - 2017-01-27 09:33 - 04518077 _____ C:\Users\philippe.heit\Downloads\Windows-Update-MiniTool.zip
2017-01-27 09:24 - 2017-01-27 09:24 - 00313366 _____ C:\Users\philippe.heit\Downloads\WindowsUpdate.diagcab
2017-01-27 09:21 - 2017-01-27 09:22 - 00000000 ____D C:\2d57eaa5126d6f726b4dfd04ecdd
2017-01-26 17:01 - 2017-01-26 17:02 - 00000000 ____D C:\f1e959d929f680d25c72
2017-01-26 16:46 - 2017-01-26 16:47 - 09973791 _____ C:\Users\philippe.heit\Downloads\Typical+Warehouse.skp
2017-01-26 16:46 - 2017-01-26 16:46 - 02518650 _____ C:\Users\philippe.heit\Downloads\Red+Building+-+warehouse.skp
2017-01-26 16:39 - 2017-01-26 16:39 - 00341567 _____ C:\Users\philippe.heit\Downloads\3D+model.skp
2017-01-26 16:36 - 2017-01-26 16:36 - 07355490 _____ C:\Users\philippe.heit\Downloads\7-4-15+Container+Cross.skp
2017-01-26 16:36 - 2017-01-26 16:36 - 01677942 _____ C:\Users\philippe.heit\Downloads\anw.skp
2017-01-26 16:28 - 2017-01-26 16:29 - 36859334 _____ C:\Users\philippe.heit\Downloads\Giant+ATX+690-D+2012+No+Material.skp
2017-01-26 16:24 - 2017-01-26 16:24 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\Trimble Connect for SketchUp
2017-01-26 16:10 - 2017-01-26 16:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2017
2017-01-26 15:51 - 2017-01-26 16:02 - 159476504 _____ (Trimble, Inc.) C:\Users\philippe.heit\Downloads\SketchUpMake-fr-x64.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 17950496 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_Developer_x64.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 15097394 _____ C:\Users\philippe.heit\Downloads\Silverlight.dmg
2017-01-26 15:48 - 2017-01-26 15:49 - 13165792 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_x64.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 09432352 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight_Developer.exe
2017-01-26 15:48 - 2017-01-26 15:49 - 07029984 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\Silverlight.exe
2017-01-26 15:39 - 2017-01-26 15:50 - 84403776 _____ (Trimble, Inc.) C:\Users\philippe.heit\Downloads\Non confirmé 388946.crdownload
2017-01-26 15:05 - 2017-01-26 15:05 - 00231028 _____ C:\Users\philippe.heit\Downloads\tt_solid_inspector-2.4.7.rbz
2017-01-26 15:05 - 2017-01-26 15:05 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\LIBFREDO6_DATA_Dir
2017-01-26 15:04 - 2017-01-26 15:04 - 05125757 _____ C:\Users\philippe.heit\Downloads\Fredo6_!LibFredo6 - v7.4c - 16 Jan 17.rbz
2017-01-26 15:01 - 2017-01-26 15:01 - 00147453 _____ C:\Users\philippe.heit\Downloads\sketchup-stl-2.1.6.rbz
2017-01-26 14:58 - 2017-01-26 14:59 - 03039323 _____ C:\Users\philippe.heit\Downloads\AutoSave_AutoSave_Ink+Trolley_1.skp
2017-01-26 14:57 - 2017-01-26 14:57 - 00118319 _____ C:\Users\philippe.heit\Downloads\Untitled.skp
2017-01-26 14:56 - 2017-01-26 14:56 - 00755700 _____ C:\Users\philippe.heit\Downloads\Sto-Eimer.skp
2017-01-26 11:52 - 2017-01-26 11:53 - 01062450 _____ C:\Users\philippe.heit\Downloads\nd2358.pdf
2017-01-26 08:49 - 2017-01-26 14:20 - 00000000 ____D C:\Users\philippe.heit\Downloads\CD7339_GABARITS
2017-01-26 08:48 - 2017-01-26 08:49 - 02366695 _____ C:\Users\philippe.heit\Downloads\CD7339_GABARITS.zip
2017-01-25 14:02 - 2017-01-25 14:02 - 00107741 _____ C:\Users\philippe.heit\Downloads\ticket.pdf
2017-01-25 11:42 - 2017-02-01 12:06 - 00002192 _____ C:\Users\philippe.heit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-01-25 11:42 - 2017-01-25 11:42 - 00002110 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-01-25 11:42 - 2017-01-25 11:42 - 00002110 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-01-25 11:41 - 2017-01-25 11:41 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-01-25 11:35 - 2017-01-25 11:35 - 00002401 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00002386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00002374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-01-25 11:35 - 2017-01-25 11:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
2017-01-25 11:32 - 2017-01-25 11:32 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-01-25 10:01 - 2017-01-25 10:07 - 329702152 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\accessruntime_4288-1001_x64_fr-fr.exe
2017-01-25 09:46 - 2017-01-25 09:47 - 26742696 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\AccessDatabaseEngine.exe
2017-01-25 09:44 - 2017-01-26 09:15 - 00000000 ____D C:\Users\philippe.heit\Downloads\3D
2017-01-25 09:27 - 2017-01-25 09:28 - 28799696 _____ (Microsoft Corporation) C:\Users\philippe.heit\Downloads\AccessDatabaseEngine_X64.exe
2017-01-24 17:57 - 2017-01-24 17:57 - 01479457 _____ C:\Users\philippe.heit\Downloads\fr_brochure_sikafloor_esd.pdf
2017-01-24 17:35 - 2017-01-24 17:35 - 07784226 _____ C:\Users\philippe.heit\Downloads\bro-sika-sols-et-coatings-fr.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-23 15:25 - 2016-11-22 15:39 - 00000000 ____D C:\Users\philippe.heit\AppData\LocalLow\Mozilla
2017-02-23 15:25 - 2014-01-31 09:09 - 00000000 ____D C:\Users\philippe.heit
2017-02-23 15:01 - 2013-07-09 08:31 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-23 14:37 - 2009-07-14 05:45 - 00027568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-23 14:37 - 2009-07-14 05:45 - 00027568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-23 14:32 - 2014-10-22 13:53 - 00012461 _____ C:\Windows\cfgall.ini
2017-02-23 14:30 - 2015-07-29 08:53 - 00000000 ___RD C:\Users\philippe.heit\Google Drive
2017-02-23 14:24 - 2012-06-04 08:20 - 00000144 _____ C:\Windows\system32\config\netlogon.ftl
2017-02-23 14:24 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-23 14:23 - 2016-07-20 08:53 - 00000000 ____D C:\AdwCleaner
2017-02-23 14:15 - 2016-10-04 08:25 - 00000000 ____D C:\Users\philippe.heit\Downloads\MTK2.6B5
2017-02-23 14:15 - 2013-10-08 09:46 - 00000000 ____D C:\Users\solastra1\AppData\Local\Akamai
2017-02-23 11:39 - 2016-01-25 16:58 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\CrashDumps
2017-02-23 10:57 - 2016-08-31 13:53 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-23 10:02 - 2013-12-17 09:08 - 00000000 ____D C:\Windows\system32\MRT
2017-02-23 09:58 - 2012-05-31 11:47 - 138020592 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-02-23 09:47 - 2015-02-04 15:36 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\uTorrent
2017-02-23 09:47 - 2014-10-22 13:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Worry-Free Business Security Agent
2017-02-23 09:47 - 2013-10-08 09:49 - 00000000 ____D C:\ProgramData\Autodesk
2017-02-23 09:47 - 2012-10-25 09:11 - 00000000 ____D C:\Users\administrateur
2017-02-23 09:47 - 2012-06-04 08:22 - 00000000 ____D C:\Users\solastra1
2017-02-23 09:47 - 2012-05-31 10:04 - 00000000 ____D C:\Users\emergency
2017-02-23 09:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2017-02-22 16:59 - 2014-10-02 08:21 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\FileZilla
2017-02-22 12:04 - 2014-02-05 16:08 - 00000132 _____ C:\Users\philippe.heit\AppData\Roaming\Adobe PNG Format CS5 Prefs
2017-02-22 11:46 - 2016-07-25 15:36 - 00000034 _____ C:\Users\philippe.heit\AppData\Roaming\AdobeWLCMCache.dat
2017-02-22 09:29 - 2014-10-02 08:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-02-22 09:29 - 2014-10-02 08:21 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2017-02-15 11:02 - 2013-07-09 08:31 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-02-15 11:02 - 2012-05-31 11:08 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-02-15 11:02 - 2012-05-31 11:08 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-15 11:02 - 2012-05-31 11:08 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-15 11:02 - 2012-05-31 11:08 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-09 16:09 - 2011-02-11 15:52 - 00780990 _____ C:\Windows\system32\perfh00C.dat
2017-02-09 16:09 - 2011-02-11 15:52 - 00162634 _____ C:\Windows\system32\perfc00C.dat
2017-02-09 16:09 - 2009-07-14 06:13 - 01763306 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-09 16:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-02-09 08:41 - 2009-07-14 06:08 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-02-07 09:04 - 2015-03-09 14:38 - 00002159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-07 08:53 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2017-02-01 12:06 - 2017-01-23 10:49 - 00000000 ___RD C:\Users\philippe.heit\OneDrive
2017-02-01 12:00 - 2016-08-31 13:27 - 00000000 ____D C:\Program Files\Microsoft Office
2017-01-31 08:43 - 2012-06-12 15:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-30 12:51 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2017-01-27 11:50 - 2009-07-14 05:45 - 05552416 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-27 11:44 - 2011-12-23 19:55 - 01737438 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-01-27 11:30 - 2013-03-13 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-01-27 10:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-01-27 09:30 - 2014-02-11 15:49 - 00000000 ____D C:\Users\philippe.heit\AppData\Local\ElevatedDiagnostics
2017-01-26 16:24 - 2014-05-21 12:45 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\Autodesk
2017-01-26 16:11 - 2016-09-07 11:03 - 00000000 ____D C:\Users\philippe.heit\AppData\Roaming\SketchUp
2017-01-26 16:10 - 2016-09-07 10:55 - 00000000 ____D C:\ProgramData\Reprise
2017-01-26 16:09 - 2016-09-07 10:54 - 00000000 ____D C:\ProgramData\SketchUp
2017-01-26 16:09 - 2016-09-07 10:54 - 00000000 ____D C:\Program Files\SketchUp
2017-01-26 16:08 - 2014-09-04 09:36 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-25 16:42 - 2014-10-30 15:24 - 00000132 _____ C:\Users\philippe.heit\AppData\Roaming\Adobe GIF Format CS5 Prefs
2017-01-25 11:42 - 2017-01-23 10:49 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2017-01-25 11:41 - 2016-08-30 14:22 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-25 11:41 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-01-25 11:28 - 2016-08-31 13:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
==================== Fichiers à la racine de certains dossiers =======
2017-02-22 15:03 - 2017-02-22 15:13 - 59438648 _____ () C:\Users\philippe.heit\AppData\Roaming\1450223
2014-10-30 15:24 - 2017-01-25 16:42 - 0000132 _____ () C:\Users\philippe.heit\AppData\Roaming\Adobe GIF Format CS5 Prefs
2014-02-05 16:08 - 2017-02-22 12:04 - 0000132 _____ () C:\Users\philippe.heit\AppData\Roaming\Adobe PNG Format CS5 Prefs
2016-07-25 15:36 - 2017-02-22 11:46 - 0000034 _____ () C:\Users\philippe.heit\AppData\Roaming\AdobeWLCMCache.dat
2017-02-22 15:13 - 2017-02-22 15:13 - 0001088 _____ () C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH
2017-02-22 15:13 - 2017-02-22 15:13 - 0016721 _____ () C:\Users\philippe.heit\AppData\Roaming\FRAAB-5CXZZ-KXGTO-RROZT-XOGKT-XXKOT-EERKA-TFZFH.html
2016-04-18 16:54 - 2016-04-18 16:54 - 0038524 _____ () C:\Users\philippe.heit\AppData\Roaming\Valeurs séparées par une virgule (Windows).ADR
2014-04-08 15:23 - 2016-02-04 16:48 - 0001456 _____ () C:\Users\philippe.heit\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2016-07-25 15:41 - 2016-09-09 09:56 - 0002813 _____ () C:\Users\philippe.heit\AppData\Local\Cracklock.settings
2013-10-08 10:16 - 2013-10-08 10:16 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Certains fichiers dans TEMP:
====================
2011-06-22 20:00 - 2011-06-22 20:00 - 8165432 _____ (Google Inc.) C:\Users\emergency\AppData\Local\Temp\GoogleToolbarStandaloneSetup_7_1_1821_1806.exe
2012-05-31 10:06 - 2004-07-28 16:29 - 0020480 _____ () C:\Users\emergency\AppData\Local\Temp\readini32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-22 12:36
==================== Fin de FRST.txt ============================