Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01 Exécuté par helene (administrateur) sur HELENE-6E5AA082 (10-04-2016 15:35:12) Exécuté depuis E:\Perso\Telechargements Profils chargés: helene (Profils disponibles: helene) Platform: Microsoft Windows XP Édition familiale Service Pack 3 (X86) Langue: Français (France) Internet Explorer Version 8 (Navigateur par défaut: "C:\Program Files\Avant Browser\avant.exe" "%1") Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe (Piriform Ltd) C:\Program Files\CCleaner\ccleaner.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Ventis Media Inc.) C:\Program Files\MediaMonkey\MediaMonkey (non-skinned).exe (Avant Force) C:\Program Files\Avant Browser\avant.exe (Avant Force) C:\Program Files\Avant Browser\avantvw.exe (Mozilla Corporation) C:\Program Files\Avant Browser\gecko\firefox.exe (Mozilla Corporation) C:\Program Files\Avant Browser\gecko\plugin-container.exe () C:\Program Files\Avant Browser\adownloader.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-24] (AVAST Software) HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2014-03-01] (RealNetworks, Inc.) HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-08-29] (Advanced Micro Devices, Inc.) HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18084864 2009-01-13] (Realtek Semiconductor Corp.) HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [57344 2008-06-19] (Realtek Semiconductor Corp.) Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2008-12-01] (ATI Technologies Inc.) HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\Run: [ccleaner] => C:\Program Files\CCleaner\ccleaner.exe [6667992 2016-03-11] (Piriform Ltd) HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\ccleaner.exe [6667992 2016-03-11] (Piriform Ltd) HKU\S-1-5-21-790525478-1979792683-725345543-1004\...\MountPoints2: {ce6b6208-3c1b-11e4-ae60-a973115f48e6} - D:\iLinker.exe HKU\S-1-5-21-790525478-1979792683-725345543-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\COUREG~1.SCR [37050249 2009-10-29] (ACD Systems Ltd.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-02-11] (AVAST Software) ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Corporation) Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.exe.lnk [2014-03-01] ShortcutTarget: Adobe Gamma Loader.exe.lnk -> C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{7834A156-E552-4B3D-8C88-6EE74C9465FC}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-790525478-1979792683-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} HKU\S-1-5-21-790525478-1979792683-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://fr.yahoo.com?fr=hp-avast&type=avastbcl URLSearchHook: [S-1-5-21-790525478-1979792683-725345543-1004] ATTENTION => URLSearchHook par défaut est absent SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-11] (AVAST Software) Toolbar: HKU\S-1-5-21-790525478-1979792683-725345543-1004 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier Toolbar: HKU\S-1-5-21-790525478-1979792683-725345543-1004 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1393587950234 Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation) Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation) Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation) Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation) Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation) Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation) Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046 FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-09] () FF Extension: Adblock Plus Pop-up Addon - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\extensions\adblockpopups@jessehakanen.net.xpi [2015-09-12] FF Extension: NoScript - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-07] FF Extension: Stop Ads - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\@stopads.xpi [2016-04-09] FF Extension: Ghostery - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\firefox@ghostery.com.xpi [2016-04-03] FF Extension: EPUBReader - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}(2) [2016-02-23] [non signé] FF Extension: Adblock Plus - C:\Documents and Settings\helene\Application Data\Mozilla\Firefox\Profiles\nv8huor3.default-1441694226046\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-17] FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => non trouvé(e) FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-02-23] FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext => non trouvé(e) Chrome: ======= CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-11] CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2008-12-01] () [Fichier non signé] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-11] (AVAST Software) S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation) R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] () ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2014-07-30] (Cisco Systems, Inc.) [Fichier non signé] R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices) R2 ASPI32; C:\WINDOWS\system32\Drivers\ASPI32.sys [23936 1997-12-23] (Adaptec) R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-02-11] (AVAST Software) R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-03-23] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-03-10] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-02-11] (AVAST Software) R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-02-11] (AVAST Software) R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [816304 2016-03-10] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [447848 2016-02-24] (AVAST Software) R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [171608 2016-02-11] (AVAST Software) S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [67088 2016-02-11] (AVAST Software) R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [221240 2016-02-11] (AVAST Software) S3 gdrv; C:\WINDOWS\gdrv.sys [16608 2014-02-27] (Windows (R) 2000 DDK provider) S3 gfiutil; C:\WINDOWS\System32\drivers\gfiutil.sys [24040 2013-09-04] (ThreatTrack Security) R3 RTHDMIAzAudService; C:\WINDOWS\System32\drivers\RtKHDMI.sys [3721664 2008-12-25] (Realtek Semiconductor Corp.) R3 scsiscan; C:\WINDOWS\System32\DRIVERS\scsiscan.sys [11520 2008-04-13] (Microsoft Corporation) S4 IntelIde; pas de ImagePath U0 Scisscan; pas de ImagePath U1 WS2IFSL; pas de ImagePath ========================== MD5 Pilotes ======================= C:\WINDOWS\System32\DRIVERS\ACPI.sys E5E6DBFC41EA8AAD005CB9A57A96B43B C:\WINDOWS\system32\Drivers\ACPIEC.sys E4ABC1212B70BB03D35E60681C447210 C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557 C:\WINDOWS\System32\DRIVERS\AegisP.sys 023867B6606FBABCDD52E089C4A507DA C:\WINDOWS\System32\drivers\afd.sys D80ED631D3AFD47C27311B0614AFA89F C:\WINDOWS\System32\DRIVERS\aic78xx.sys B7FE594A7468AA0132DEB03FB8E34326 C:\WINDOWS\System32\DRIVERS\AmdPPM.sys 033448D435E65C4BD72E70521FD05C76 C:\WINDOWS\system32\Drivers\ASPI32.sys 20D04091EBA710F6988F710507D85868 C:\WINDOWS\system32\drivers\aswHwid.sys C3F5C4413DFE6DF0A6439D18C3345418 C:\WINDOWS\system32\drivers\aswKbd.sys EC8DD4B019B4F0DD71828F10EEFC172F C:\WINDOWS\system32\drivers\aswMonFlt.sys 63B94A84CE640D6334E242590D0F9CDD C:\WINDOWS\system32\drivers\aswRdr.sys 1FC67745A457BF62DEA46CF0D4FD821B C:\WINDOWS\system32\Drivers\aswRvrt.sys 303A4C67F046564508F82F515CB0A322 C:\WINDOWS\system32\drivers\aswSnx.sys 5B2551565B64B9E49B1BA8BE4E5749D9 C:\WINDOWS\system32\drivers\aswSP.sys 283E7A77DE807A998AFE745355876A5B C:\WINDOWS\system32\drivers\aswStmXP.sys 56FCF9F1086B80B0CEE022BFB7FF7B25 C:\WINDOWS\system32\drivers\aswTdi.sys C0C9D9E50C9B52D885FBA22CE9DF0B49 C:\WINDOWS\system32\Drivers\aswVmm.sys 43646E5D17727D4F2E1F8FFA06F1472C C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674 C:\WINDOWS\System32\DRIVERS\ati2mtag.sys 15B2FE76E2ECEB98C49ED52311A6F26F C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159 C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68 C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9 C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9 C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32 C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25 C:\WINDOWS\System32\drivers\dmboot.sys F5DEADD42335FB33EDCA74ECB2F36CBA C:\WINDOWS\System32\drivers\dmio.sys 5A7C47C9B3F9FB92A66410A7509F0C71 C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45 C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8 C:\WINDOWS\system32\Drivers\Fastfat.sys B2336BF17761662133F7646B503E3BE0 C:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81 C:\WINDOWS\system32\Drivers\Fips.sys 31F923EB2170FC172C81ABDA0045D18C C:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0 C:\WINDOWS\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0 C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A C:\WINDOWS\System32\DRIVERS\ftdisk.sys A86859B77B908C18C2657F284AA29FE3 C:\WINDOWS\gdrv.sys C6E3105B8C68C35CC1EB26A00FD1A8C6 C:\WINDOWS\System32\drivers\gfiutil.sys 3EAEB9143A5DBC1082785BBBE8D8CFEA C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2 C:\WINDOWS\System32\DRIVERS\HDAudBus.sys 573C7D0A32852B48F3058CFD8026F511 C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1 C:\WINDOWS\System32\Drivers\HTTP.sys F80A415EF82CD06FFAF0D971528EAD38 C:\WINDOWS\System32\DRIVERS\i8042prt.sys A09BDC4ED10E3B2E0EC27BB94AF32516 C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E C:\WINDOWS\System32\drivers\RtkHDAud.sys 2FEB5BF0312E1CB76CD2CAA875CBAA5D C:\WINDOWS\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0 C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182 C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5 C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91 C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89 C:\WINDOWS\System32\DRIVERS\isapnp.sys 355836975A67B6554BCA60328CD6CB74 C:\WINDOWS\System32\DRIVERS\kbdclass.sys 16813155807C6881F4BFBF6657424659 C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378 C:\WINDOWS\system32\Drivers\KSecDD.sys F37A4B1F159578A554A9CE66E5BD5194 C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6 C:\WINDOWS\system32\Drivers\Modem.sys 510ADE9327FE84C10254E1902697E25F C:\WINDOWS\System32\DRIVERS\mouclass.sys 027C01BD7EF3349AAEBC883D8A799EFB C:\WINDOWS\System32\DRIVERS\mouhid.sys 124D6846040C79B9C997F78EF4B2A4E5 C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD C:\WINDOWS\System32\DRIVERS\mrxdav.sys 2422046D8020D743778D4089A92264FA C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 7D304A5EB4344EBEEAB53A2FE3FFB9F0 C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027 C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1 C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136 C:\WINDOWS\system32\Drivers\Mup.sys DE6A75F5C270E756C5508D94B6CF68F5 C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D C:\WINDOWS\System32\DRIVERS\ndistapi.sys 0109C4F3850DFBAB279542515386AE22 C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849 C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB C:\WINDOWS\system32\Drivers\NDProxy.sys 2F597BB467E05B1FE3830EABD821B8E0 C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0 C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57 C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9 C:\WINDOWS\System32\DRIVERS\parport.sys 8FD0BDBEA875D06CCF6C945CA9ABAF75 C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6 C:\WINDOWS\system32\Drivers\ParVdm.sys 9575C5630DB8FB804649A6959737154C C:\WINDOWS\System32\DRIVERS\pci.sys 043410877BDA580C528F45165F7125BC C:\WINDOWS\System32\DRIVERS\pciide.sys F4BFDE7209C14A07AAA61E4D6AE69EAC C:\WINDOWS\system32\Drivers\Pcmcia.sys F0406CBC60BDB0394A0E17FFB04CDD3D C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99 C:\WINDOWS\System32\DRIVERS\processr.sys E19C9632AC828F6F214391E2BDDA11CB C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424 C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD C:\WINDOWS\System32\Drivers\PxHelp20.sys D86B4A68565E444D76457F14172C875A C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6 C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242 C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332 C:\WINDOWS\system32\Drivers\RDPWD.sys 43AF5212BD8FB5BA6EED9754358BD8F7 C:\WINDOWS\System32\DRIVERS\redbook.sys D8EB2A7904DB6C916EB5361878DDCBAE C:\WINDOWS\System32\Drivers\RootMdm.sys D8B0B4ADE32574B2D9C5CC34DC0DBBE7 C:\WINDOWS\System32\drivers\RtKHDMI.sys A5A9F4B77D7FF2B02633999FF71A7E9B C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys 839141088AD7EE90F5B441B2D1AFD22C C:\WINDOWS\System32\DRIVERS\scsiscan.sys 089870DAB7AA277585C475AE09EE4C63 C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> Le MD5 est légitime C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE C:\WINDOWS\System32\DRIVERS\serial.sys 93D313C31F7AD9EA2B75F26075413C7C C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562 C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F C:\WINDOWS\System32\DRIVERS\sr.sys 39626E6DC1FB39434EC40C42722B660A C:\WINDOWS\System32\DRIVERS\srv.sys DC9A6DCF6CBB2BF50CD5967C3C584454 C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01 C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290 C:\WINDOWS\System32\DRIVERS\tcpip.sys 52151D558097554AF316BC526D4AAB29 C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397 C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61 C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9 C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31 C:\WINDOWS\System32\DRIVERS\usbccgp.sys 1B611611C28D2DF25BC057D79C6F13FC C:\WINDOWS\System32\DRIVERS\usbehci.sys 4BAC8DF07F1D8434FC640E677A62204E C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C C:\WINDOWS\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS 910AD4C00776F61F69965118B863C909 C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1 C:\WINDOWS\system32\Drivers\VolSnap.sys 46DE1126684369BACE4849E4FC8C43CA C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6 C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647 C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F C:\WINDOWS\System32\DRIVERS\wpdusb.sys CF4DEF1BF66F06964DC0D91844239104 C:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311 C:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-10 15:33 - 2016-04-10 15:35 - 00000000 ____D C:\FRST 2016-04-10 15:31 - 2016-04-10 15:31 - 00000564 _____ C:\Documents and Settings\helene\Bureau\Raccourci vers FRST.lnk 2016-04-09 19:32 - 2016-04-09 20:01 - 00001580 _____ C:\Documents and Settings\All Users\Menu Démarrer\Avant Browser.lnk 2016-04-09 19:32 - 2016-04-09 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avant Browser 2016-04-09 19:17 - 2016-04-09 22:23 - 00000000 ____D C:\Program Files\Avant Browser 2016-04-09 17:44 - 2016-04-09 17:44 - 00003096 _____ C:\Documents and Settings\helene\Bureau\MBAM.txt 2016-04-09 17:15 - 2016-04-09 17:15 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Malwarebytes 2016-04-09 17:14 - 2016-04-09 17:14 - 22851472 _____ (Malwarebytes ) C:\Documents and Settings\helene\Bureau\mbam-setup-2.2.1.1043.exe 2016-04-09 16:18 - 2016-04-09 16:18 - 00004421 _____ C:\Documents and Settings\helene\Bureau\AdwCleaner[S1].txt 2016-04-09 16:16 - 2016-04-09 16:16 - 03119168 _____ C:\Documents and Settings\helene\Bureau\adwcleaner_5.109.exe 2016-04-09 16:07 - 2016-04-09 16:07 - 00009492 _____ C:\Documents and Settings\helene\Bureau\ZHPCleaner.txt 2016-04-09 15:58 - 2016-04-09 15:58 - 00000812 _____ C:\Documents and Settings\helene\Bureau\ZHPCleaner.lnk 2016-04-09 14:53 - 2016-04-09 14:53 - 00002650 _____ C:\Documents and Settings\helene\Bureau\ZHPFixReport.txt 2016-04-09 14:14 - 2016-04-09 14:15 - 00000000 ____D C:\ZHP 2016-04-09 14:10 - 2016-04-09 14:14 - 00000000 ____D C:\Program Files\ZHPFix 2016-04-09 14:10 - 2016-04-09 14:10 - 00001512 _____ C:\Documents and Settings\All Users\Bureau\ZHPFix.lnk 2016-04-09 14:10 - 2016-04-09 14:10 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP 2016-04-09 14:05 - 2016-04-09 14:05 - 03521617 _____ (Nicolas Coolman ) C:\Documents and Settings\helene\Bureau\ZHPFix.exe 2016-04-09 14:05 - 2016-04-09 14:05 - 00002556 _____ C:\Documents and Settings\helene\Bureau\ScriptZHPFix.txt 2016-04-08 08:42 - 2016-04-08 08:42 - 00081392 _____ C:\Documents and Settings\helene\Bureau\ZHPDiag.txt 2016-04-08 08:37 - 2016-04-08 08:39 - 00000802 _____ C:\Documents and Settings\helene\Bureau\ZHPDiag.lnk 2016-04-07 20:17 - 2016-04-07 20:18 - 00000000 ____D C:\Documents and Settings\helene\Application Data\SumatraPDF 2016-04-07 20:16 - 2016-04-07 20:16 - 00001586 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SumatraPDF.lnk 2016-04-07 20:16 - 2016-04-07 20:16 - 00000000 ____D C:\Program Files\SumatraPDF 2016-04-07 18:22 - 2016-04-07 18:22 - 00000000 _____ C:\WINDOWS\system32\SBRC.dat 2016-04-07 18:20 - 2013-09-04 14:57 - 00024040 _____ (ThreatTrack Security) C:\WINDOWS\system32\Drivers\gfiutil.sys 2016-04-07 18:05 - 2016-04-07 18:07 - 00000000 __HDC C:\WINDOWS\ie8 2016-04-07 18:00 - 2016-02-10 22:42 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll 2016-04-07 11:42 - 2016-04-07 11:42 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Application Data\Temp 2016-04-06 08:17 - 2016-02-10 22:42 - 00423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-04-06 08:17 - 2016-02-10 22:42 - 00387584 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2016-04-06 08:17 - 2016-02-10 22:42 - 00043520 ____N (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll 2016-04-05 10:12 - 2016-04-05 22:09 - 00065536 _____ C:\WINDOWS\system32\config\Reason.evt 2016-04-05 09:38 - 2016-04-05 09:38 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\pdfforge 2016-03-31 19:27 - 2016-04-03 15:30 - 00000000 ____D C:\Documents and Settings\helene\Application Data\PDF Architect 4 2016-03-31 19:25 - 2016-04-03 15:30 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PDF Architect 4 2016-03-30 19:28 - 2016-04-10 13:55 - 00026624 _____ C:\Documents and Settings\helene\Mes documents\Tableau devis dents implants Le gall 30.03.2016.xls 2016-03-23 08:45 - 2016-03-23 08:45 - 00035096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2016-03-17 19:11 - 2016-03-17 19:11 - 00000730 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk 2016-03-17 19:11 - 2016-03-17 19:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2016-03-17 19:11 - 2016-03-17 19:11 - 00000000 ____D C:\Program Files\Mozilla Firefox 2016-03-16 19:16 - 2016-03-16 19:16 - 00000542 _____ C:\Documents and Settings\helene\Bureau\Raccourci vers Menage 2014.lnk 2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140709$ 2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140410$ 2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139940$ 2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139914$ 2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139852$ 2016-03-09 14:20 - 2016-03-09 14:20 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3139398$ 2016-03-09 14:19 - 2016-03-09 14:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3140735$ 2016-03-09 14:14 - 2016-02-10 22:42 - 01469440 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-03-09 14:14 - 2016-02-10 22:42 - 00630784 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll 2016-03-09 14:14 - 2016-02-10 22:42 - 00236544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\webcheck.dll 2016-03-09 14:14 - 2016-02-09 16:01 - 00638632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe 2016-03-09 14:14 - 2016-01-29 21:11 - 00026496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbstor.sys 2016-02-23 11:32 - 2016-02-11 23:19 - 00334280 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2016-02-22 11:29 - 2016-02-22 19:07 - 00000000 ____D C:\Documents and Settings\helene\Application Data\Foxit Software 2016-02-16 23:14 - 2016-02-16 23:14 - 00006277 _____ C:\Documents and Settings\helene\Mes documents\free_av_11.1.2253_2016-2-16_22-14-21.avastconfig 2016-02-13 14:45 - 2016-02-13 14:45 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Application Data\Temp 2016-02-13 10:05 - 2016-02-13 10:05 - 00000020 ___SH C:\Documents and Settings\TEMP.AUTORITE NT.000\ntuser.ini 2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.001 2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.000 2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 ____D C:\Documents and Settings\TEMP.AUTORITE NT.001\Local Settings\Temp 2016-02-13 10:05 - 2016-02-13 10:05 - 00000000 ____D C:\Documents and Settings\TEMP.AUTORITE NT.000\Local Settings\Temp 2016-02-13 10:05 - 2014-02-27 18:25 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.001\Local Settings\Historique 2016-02-13 10:05 - 2014-02-27 18:25 - 00000000 __SHD C:\Documents and Settings\TEMP.AUTORITE NT.000\Local Settings\Historique 2016-02-11 23:19 - 2016-02-11 23:19 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2016-02-11 17:33 - 2016-04-03 22:48 - 00020992 _____ C:\Documents and Settings\helene\Mes documents\Montants annuels des retraites CCP 01.01.2016.xls 2016-02-10 12:43 - 2016-02-10 12:43 - 00920064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll 2016-02-10 11:07 - 2016-02-10 12:07 - 08817344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe 2016-02-10 10:15 - 2016-02-10 10:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3134146$ 2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3134214$ 2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126593$ 2016-02-10 10:14 - 2016-02-10 10:14 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124280$ 2016-02-10 10:13 - 2016-02-10 10:13 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126587$ 2016-02-10 10:12 - 2016-02-10 10:12 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3126041$ 2016-02-10 09:24 - 2016-02-10 22:42 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-02-10 09:24 - 2016-02-10 22:42 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll 2016-02-10 09:24 - 2016-02-10 22:42 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll 2016-01-14 09:53 - 2016-02-10 22:42 - 06013952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll 2016-01-14 09:53 - 2016-02-10 22:42 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll 2016-01-14 09:53 - 2016-02-10 22:42 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll 2016-01-14 09:53 - 2016-02-10 22:42 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124001$ 2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3124000$ 2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3121918$ 2016-01-14 09:50 - 2016-01-14 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3109560$ ==================== Trois mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-10 15:35 - 2014-12-12 09:27 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Temp 2016-04-10 15:34 - 2014-02-27 23:37 - 00000000 ____D C:\Documents and Settings\helene\Application Data\MediaMonkey 2016-04-10 15:31 - 2014-02-27 17:41 - 00000000 ____D C:\Documents and Settings\helene\Bureau 2016-04-10 15:07 - 2016-01-04 15:30 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-04-10 13:55 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents 2016-04-10 10:33 - 2014-02-27 19:33 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job 2016-04-10 07:40 - 2014-03-12 09:04 - 00000224 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job 2016-04-10 07:40 - 2014-03-01 13:20 - 00000280 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-790525478-1979792683-725345543-1004.job 2016-04-10 07:40 - 2014-02-27 17:40 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-04-09 22:29 - 2014-02-27 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes 2016-04-09 22:29 - 2014-02-27 18:25 - 00000000 ____D C:\Documents and Settings\All Users\Bureau 2016-04-09 22:27 - 2014-02-27 17:41 - 00000000 __SHD C:\Documents and Settings\helene\Local Settings\Historique 2016-04-09 20:44 - 2014-02-27 17:41 - 00000000 ____D C:\Documents and Settings\helene 2016-04-09 20:43 - 2014-02-27 17:51 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt 2016-04-09 20:42 - 2008-04-14 14:00 - 00013028 _____ C:\WINDOWS\system32\wpa.dbl 2016-04-09 20:40 - 2014-02-27 17:41 - 00000184 ___SH C:\Documents and Settings\helene\ntuser.ini 2016-04-09 20:40 - 2014-02-27 17:40 - 00032436 _____ C:\WINDOWS\SchedLgU.Txt 2016-04-09 19:44 - 2014-03-03 19:59 - 00000000 ____D C:\Documents and Settings\helene\Mes documents\Téléchargements 2016-04-09 19:32 - 2014-02-27 18:25 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer 2016-04-09 19:32 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Menu Démarrer\Programmes 2016-04-09 19:32 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Menu Démarrer 2016-04-09 19:26 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Network Diagnostic 2016-04-09 17:40 - 2014-03-01 13:20 - 00000288 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-790525478-1979792683-725345543-1004.job 2016-04-09 17:39 - 2015-11-12 09:08 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB3081320$ 2016-04-09 17:09 - 2015-04-05 19:57 - 00000000 ____D C:\AdwCleaner 2016-04-09 16:11 - 2015-09-06 20:10 - 00000000 ____D C:\Documents and Settings\helene\Application Data\ZHP 2016-04-09 16:06 - 2015-01-15 10:21 - 00000000 ____D C:\Documents and Settings\helene\Application Data\Lavasoft 2016-04-09 16:06 - 2015-01-15 10:19 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Lavasoft 2016-04-09 15:51 - 2014-02-27 23:25 - 00797376 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2016-04-09 15:51 - 2014-02-27 23:25 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2016-04-09 09:33 - 2014-07-11 17:46 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Application Data\Adobe 2016-04-08 16:56 - 2015-12-25 17:18 - 00329728 _____ C:\Documents and Settings\helene\Mes documents\Menage 2016.xls 2016-04-08 15:00 - 2014-03-12 09:04 - 00000218 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job 2016-04-08 13:19 - 2014-09-30 20:17 - 00000000 __SHD C:\Documents and Settings\helene\Application Data\.# 2016-04-07 19:22 - 2014-03-05 18:07 - 00000788 _____ C:\Documents and Settings\helene\Menu Démarrer\Programmes\Windows Media Player.lnk 2016-04-07 18:25 - 2014-11-12 11:02 - 00001355 _____ C:\WINDOWS\imsins.BAK 2016-04-07 18:25 - 2014-02-27 18:18 - 00000000 RSHDC C:\WINDOWS\system32\dllcache 2016-04-07 18:25 - 2014-02-27 18:18 - 00000000 ___HD C:\WINDOWS\inf 2016-04-07 18:20 - 2014-03-26 16:46 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PC1Data 2016-04-07 18:09 - 2014-02-27 17:41 - 00000803 _____ C:\Documents and Settings\helene\Menu Démarrer\Programmes\Internet Explorer.lnk 2016-04-07 18:09 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents\Mes images 2016-04-07 18:09 - 2014-02-27 17:41 - 00000000 ___RD C:\Documents and Settings\helene\Mes documents\Ma musique 2016-04-07 18:08 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Help 2016-04-07 18:06 - 2014-02-27 18:18 - 00000000 ____D C:\WINDOWS\Media 2016-04-07 18:01 - 2014-02-27 19:51 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-04-07 17:42 - 2014-02-27 19:53 - 00000000 ____D C:\WINDOWS\ie8updates 2016-04-07 11:44 - 2014-03-01 13:03 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Adobe 2016-04-06 08:16 - 2015-07-21 09:38 - 01098675 _____ C:\WINDOWS\setupapi.log.0.old 2016-04-05 10:08 - 2014-02-27 18:25 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage 2016-04-05 09:39 - 2014-02-27 18:25 - 00000000 ____D C:\Program Files\Fichiers communs 2016-04-05 09:27 - 2014-02-28 09:59 - 00000000 ____D C:\TEMP 2016-04-04 08:01 - 2014-02-27 18:24 - 00000000 ____D C:\Documents and Settings 2016-04-04 08:00 - 2014-02-27 17:40 - 00000000 __SHD C:\Documents and Settings\LocalService 2016-04-04 08:00 - 2014-02-27 17:38 - 00000000 __SHD C:\Documents and Settings\NetworkService 2016-04-04 08:00 - 2014-02-27 17:33 - 00000000 ____D C:\WINDOWS\Registration 2016-04-03 15:39 - 2014-08-16 17:47 - 00000000 ____D C:\Program Files\Google 2016-04-03 15:39 - 2014-02-27 21:24 - 00000000 ____D C:\Documents and Settings\helene\Local Settings\Application Data\Google 2016-04-03 15:33 - 2014-10-28 21:15 - 00000682 _____ C:\Documents and Settings\All Users\Bureau\CCleaner.lnk 2016-03-31 19:31 - 2014-04-28 11:50 - 00364681 ____C C:\Documents and Settings\helene\Local Settings\Application Data\census.cache 2016-03-31 19:31 - 2014-04-28 11:49 - 00166535 ____C C:\Documents and Settings\helene\Local Settings\Application Data\ars.cache 2016-03-30 19:31 - 2014-09-15 19:31 - 00000680 ____C C:\WINDOWS\AUTOLNCH.REG 2016-03-29 19:29 - 2014-05-29 11:07 - 00019456 _____ C:\Documents and Settings\helene\Mes documents\Courbe poids.xls 2016-03-27 08:31 - 2014-02-27 18:25 - 01293192 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-03-27 08:31 - 2008-04-14 14:00 - 00576786 _____ C:\WINDOWS\system32\perfh00C.dat 2016-03-27 08:31 - 2008-04-14 14:00 - 00106096 _____ C:\WINDOWS\system32\perfc00C.dat 2016-03-23 08:45 - 2014-02-27 19:32 - 00000000 ____D C:\Program Files\AVAST Software 2016-03-23 08:45 - 2014-02-27 19:32 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\AVAST Software 2016-03-17 19:27 - 2014-02-27 18:24 - 00000000 ____D C:\Documents and Settings\All Users ==================== Fichiers à la racine de certains dossiers ======= 2015-04-04 14:11 - 2015-04-04 14:31 - 0000115 ____C () C:\Documents and Settings\helene\Application Data\LogFile.txt 2014-04-28 11:49 - 2016-03-31 19:31 - 0166535 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\ars.cache 2014-04-28 11:50 - 2016-03-31 19:31 - 0364681 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\census.cache 2014-04-01 16:59 - 2015-02-27 09:33 - 0010240 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-03-02 09:22 - 2014-03-02 09:22 - 0000129 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\fusioncache.dat 2014-04-28 11:37 - 2014-04-28 11:37 - 0000036 ____C () C:\Documents and Settings\helene\Local Settings\Application Data\housecall.guid.cache Certains fichiers dans TEMP: ==================== C:\Documents and Settings\helene\Local Settings\Temp\$avantbrowser$.update.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement ==================== Fin de FRST.txt ============================