Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 02-06-2017
Exécuté par Pierre GRANDIN (administrateur) sur ZENBOOK (04-06-2017 23:35:36)
Exécuté depuis C:\Users\Pierre GRANDIN\Desktop
Profils chargés: Pierre GRANDIN (Profils disponibles: Pierre GRANDIN)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-10] (AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google)
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [615040 2017-03-22] ()
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\..\Interfaces\{069D8600-6E5F-4F00-A12F-D16F966CA665}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-04-02] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-02] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
DPF: HKLM-x32 {62D90588-609E-4208-A260-A6CEC45BB92C} hxxps://www.bobtv.fr/download/v2/cfweb_www.bobtv.fr-download-v2_instmodule.exe
FireFox:
========
FF DefaultProfile: ybmrv9kx.default
FF ProfilePath: C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default [2017-06-04]
FF NewTab: Mozilla\Firefox\Profiles\ybmrv9kx.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ybmrv9kx.default -> Google
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\ybmrv9kx.default -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\ybmrv9kx.default -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ybmrv9kx.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\ybmrv9kx.default -> hxxps://www.google.com/?bcutc=sp-006
FF Extension: (Adaware Secure Search) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\@new-tab.xpi [2017-05-18]
FF Extension: (Avast SafePrice) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\sp@avast.com.xpi [2017-05-31]
FF Extension: (Google Translator for Firefox) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\translator@zoli.bod.xpi [2017-04-30]
FF Extension: (Avast Online Security) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\wrc@avast.com.xpi [2017-05-31]
FF Extension: (New Tab Homepage) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2016-12-25]
FF SearchPlugin: C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\searchplugins\bing-lavasoft.xml [2017-05-18]
FF SearchPlugin: C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\searchplugins\google-avast.xml [2017-05-19]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default [2017-06-04]
CHR Extension: (Google Slides) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-26]
CHR Extension: (Google Docs) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-29]
CHR Extension: (Google Drive) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-29]
CHR Extension: (YouTube) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-29]
CHR Extension: (Avast SafePrice) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-29]
CHR Extension: (Google Sheets) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-29]
CHR Extension: (Avast Online Security) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-04-10]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-03-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-26]
CHR Extension: (Gmail) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-26]
CHR HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-10] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1392792 2015-10-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-12-07] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2016-09-24] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-03-19] ()
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [Fichier non signé]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72320 2017-03-22] (The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72320 2017-03-22] (The OpenVPN Project)
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [238848 2016-02-10] (Mentor Graphics Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2017-01-24] (SolidWorks) [Fichier non signé]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2016-09-24] (Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25192 2017-05-18] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2015-03-19] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [158880 2017-05-13] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-10] (AVAST Software)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2015-03-18] (ASUS Corporation)
R3 bcmsmbsp; C:\Windows\System32\drivers\bcmsmbsp.sys [54048 2015-09-10] (Broadcom Corporation.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (Windows (R) Win 7 DDK provider)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [52200 2016-02-26] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50664 2016-02-26] (Intel Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-01-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-01-24] (Disc Soft Ltd)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [260072 2015-10-30] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-05-09] ()
R3 evserial8; C:\Windows\System32\drivers\evserial8.sys [20040 2016-12-07] (ELTIMA Software)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [374536 2016-07-12] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [79528 2014-09-05] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [187320 2017-06-04] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-06-04] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-06-04] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251832 2017-06-04] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [93624 2017-06-04] (Malwarebytes)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw04.sys [3584264 2016-08-25] (Intel Corporation)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-21] (Microsoft Corporation)
R3 SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-21] (Microsoft Corporation)
R2 SPSniff; C:\Program Files\Eltima Software\Serial Port Monitor\SPSniff.sys [36512 2015-07-16] ()
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2015-04-25] (Microsoft Corporation)
R3 VSBC8; C:\Windows\System32\drivers\evsbc8.sys [103496 2016-12-07] (ELTIMA Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 catchme; \??\C:\Users\PIERRE~1\AppData\Local\Temp\catchme.sys [X] <==== ATTENTION
S3 ManyCam; \SystemRoot\system32\DRIVERS\mcvidrv.sys [X]
S3 mcaudrv_simple; \SystemRoot\system32\drivers\mcaudrv_x64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-04 23:35 - 2017-06-04 23:36 - 00024303 _____ C:\Users\Pierre GRANDIN\Desktop\FRST.txt
2017-06-04 23:35 - 2017-06-04 23:35 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-06-04 23:35 - 2017-06-04 23:35 - 00000000 ____D C:\FRST
2017-06-04 23:34 - 2017-06-04 23:34 - 02433536 _____ (Farbar) C:\Users\Pierre GRANDIN\Desktop\FRST64.exe
2017-06-04 21:48 - 2017-06-04 22:03 - 732000256 ____R C:\Users\Pierre GRANDIN\Downloads\Land.Of.The.Lost.FRENCH.BDRip.XviD-SURViVAL.By.YATTA69.avi
2017-06-04 18:38 - 2017-06-04 18:38 - 00134652 _____ C:\Users\Pierre GRANDIN\Desktop\ZHPDiag.txt
2017-06-04 18:30 - 2017-06-04 18:30 - 00003186 _____ C:\Users\Pierre GRANDIN\Desktop\ZHPFixReport.txt
2017-06-04 18:22 - 2017-06-04 18:25 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2017-06-04 18:22 - 2017-06-04 18:22 - 03521617 _____ (Nicolas Coolman ) C:\Users\Pierre GRANDIN\Downloads\zhpfix_2015.10.19.9.exe
2017-06-04 18:22 - 2017-06-04 18:22 - 00001867 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2017-06-04 18:22 - 2017-06-04 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2017-06-03 22:06 - 2017-06-03 22:06 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] John.Wick.Chapter.2.2017.FRENCH.BDRip.XviD-EXTREME
2017-06-03 22:05 - 2017-06-04 15:36 - 735154176 ____R C:\Users\Pierre GRANDIN\Downloads\[ www.Cpasbien.pw ] John.Wick.2014.FRENCH.BRRip.XviD-DesTroY.avi
2017-06-03 22:04 - 2017-06-03 22:04 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] A.Cure.for.Wellness.2016.FRENCH.BDRip.x264-VENUE
2017-06-03 22:02 - 2017-06-03 22:11 - 732465308 ____R C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] Life.2017.FRENCH.HDRip.XviD-EXTREME.avi
2017-06-03 22:01 - 2017-06-03 22:14 - 730545836 ____R C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] Compte.tes.Blessures.2016.FRENCH.HDRip.XviD-EXTREME.avi
2017-06-03 21:58 - 2017-06-03 21:58 - 00002721 _____ C:\Users\Pierre GRANDIN\Desktop\µTorrent.lnk
2017-06-03 21:56 - 2017-06-03 21:56 - 02244032 _____ (BitTorrent Inc.) C:\Users\Pierre GRANDIN\Downloads\uTorrent.exe
2017-06-03 19:53 - 2017-06-04 18:36 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\ZHP
2017-06-03 19:53 - 2017-06-04 10:55 - 00000878 _____ C:\Users\Pierre GRANDIN\Desktop\ZHPDiag.lnk
2017-06-03 19:53 - 2017-06-03 19:56 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\ZHP
2017-06-03 19:51 - 2017-06-03 19:51 - 02734592 _____ C:\Users\Pierre GRANDIN\Downloads\ZHPDiag3.exe
2017-06-03 18:55 - 2017-06-03 18:55 - 00000307 _____ C:\Users\Pierre GRANDIN\Desktop\Forum Désinfection PC virus, malwares et logiciels indésirables.URL
2017-06-03 10:18 - 2017-06-03 10:21 - 00000000 ____D C:\Users\Pierre GRANDIN\Desktop\Nouveau dossier
2017-06-02 22:25 - 2017-06-02 22:25 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\The.Strangers.2016.FRENCH.BDRip.XviD-EXTREME
2017-06-02 22:16 - 2017-06-02 22:26 - 730202936 ____R C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] Table.19.2017.FRENCH.BDRip.XviD-EXTREME.avi
2017-05-26 17:58 - 2017-06-04 22:03 - 00038912 ___SH C:\Users\Pierre GRANDIN\Downloads\Thumbs.db
2017-05-26 15:44 - 2017-06-04 21:46 - 00093624 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-26 15:44 - 2017-06-04 18:34 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-26 15:44 - 2017-06-04 10:51 - 00187320 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-26 15:43 - 2017-06-04 18:34 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-26 15:43 - 2017-06-04 18:34 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-26 15:43 - 2017-05-26 15:43 - 00001885 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-26 15:43 - 2017-05-26 15:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-26 15:43 - 2017-05-26 15:43 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-26 15:43 - 2017-05-26 15:43 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-26 15:43 - 2017-05-09 16:37 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-05-26 15:40 - 2017-05-26 15:42 - 63035592 _____ (Malwarebytes ) C:\Users\Pierre GRANDIN\Downloads\mb3-setup-35891.35891-3.1.2.1733.exe
2017-05-25 13:02 - 2017-05-25 13:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-05-25 10:50 - 2017-06-03 15:25 - 00067584 ___SH C:\Users\Pierre GRANDIN\Desktop\Thumbs.db
2017-05-24 19:35 - 2017-05-24 19:35 - 00001098 _____ C:\Users\Public\Desktop\Remote Camera Control.lnk
2017-05-24 19:35 - 2017-05-24 19:35 - 00000910 _____ C:\Users\Public\Desktop\Aide de Remote Camera Control.lnk
2017-05-24 19:35 - 2017-05-24 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Camera Control
2017-05-24 19:35 - 2017-05-24 19:35 - 00000000 ____D C:\Program Files (x86)\Sony
2017-05-24 19:34 - 2017-05-24 19:34 - 05151920 _____ C:\Users\Pierre GRANDIN\Downloads\RCC37_1610a.exe
2017-05-24 19:34 - 2017-05-24 19:34 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\RCC37_1610a
2017-05-20 22:48 - 2017-06-03 18:11 - 00001088 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-05-18 11:21 - 2017-05-18 12:21 - 00240989 _____ C:\Users\Pierre GRANDIN\Documents\SITE.pod
2017-05-18 11:11 - 2017-05-18 11:11 - 00084226 _____ C:\Users\Pierre GRANDIN\Documents\Publication.pod
2017-05-18 10:33 - 2017-05-18 10:33 - 00086574 _____ C:\Users\Pierre GRANDIN\Documents\Exercices.pod
2017-05-18 08:49 - 2017-05-18 08:49 - 00000000 ____D C:\ProgramData\Oracle
2017-05-18 08:48 - 2017-05-18 08:48 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ProjectLibre
2017-05-18 08:48 - 2017-05-18 08:48 - 00000000 ____D C:\Program Files (x86)\ProjectLibre
2017-05-18 08:44 - 2017-05-18 08:47 - 78456277 _____ C:\Users\Pierre GRANDIN\Downloads\projectlibre-1.7.msi
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\ProgramData\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2017-05-10 18:42 - 2017-05-10 18:42 - 00400456 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-05-09 21:38 - 2017-03-30 15:15 - 00875712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2017-05-09 21:38 - 2017-03-30 15:15 - 00869568 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2017-05-09 21:38 - 2017-03-30 15:15 - 00678592 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2017-05-09 21:38 - 2017-03-30 15:15 - 00536768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2017-05-09 21:16 - 2017-04-28 23:15 - 07444824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-09 21:16 - 2017-04-26 16:06 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-05-09 21:16 - 2017-04-16 12:23 - 02176584 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-05-09 21:16 - 2017-04-16 12:23 - 01662096 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-09 21:16 - 2017-04-16 12:23 - 01063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2017-05-09 21:16 - 2017-04-16 12:18 - 01135288 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-09 21:16 - 2017-04-16 12:18 - 00803192 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-09 21:16 - 2017-04-16 11:07 - 01566032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2017-05-09 21:16 - 2017-04-16 11:07 - 01213792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-09 21:16 - 2017-04-16 11:07 - 00548032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-05-09 21:16 - 2017-04-16 11:05 - 00612096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-09 21:16 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-09 21:16 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-09 21:16 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-09 21:16 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-09 21:16 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-05-09 21:16 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-09 21:16 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-09 21:16 - 2017-04-16 10:16 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-09 21:16 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-09 21:16 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-09 21:16 - 2017-04-16 10:02 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-05-09 21:16 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-05-09 21:16 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-09 21:16 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-05-09 21:16 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-09 21:16 - 2017-04-16 09:52 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-05-09 21:16 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-09 21:16 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-05-09 21:16 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-09 21:16 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-09 21:16 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-09 21:16 - 2017-04-16 09:40 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-09 21:16 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-09 21:16 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-09 21:16 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-09 21:16 - 2017-04-16 09:23 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-05-09 21:16 - 2017-04-16 09:22 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-09 21:16 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-09 21:16 - 2017-04-16 09:17 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-05-09 21:16 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-05-09 21:16 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-09 21:16 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-09 21:16 - 2017-04-16 09:10 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-09 21:16 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-09 21:16 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-09 21:16 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-09 21:16 - 2017-04-16 09:02 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2017-05-09 21:16 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-09 21:16 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-09 21:16 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-09 21:16 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-09 21:16 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-09 21:16 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-05-09 21:16 - 2017-04-10 00:00 - 01548640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-09 21:16 - 2017-04-10 00:00 - 00388448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-05-09 21:16 - 2017-04-08 01:20 - 01375960 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-09 21:16 - 2017-04-07 15:56 - 01094656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-05-09 21:16 - 2017-04-02 18:41 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-09 21:16 - 2017-04-02 18:41 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-09 21:16 - 2017-04-01 01:16 - 01968408 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-09 21:16 - 2017-03-31 23:59 - 01612504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-09 21:16 - 2017-03-13 18:38 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2017-05-09 21:16 - 2017-03-13 18:29 - 02609664 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-05-09 21:16 - 2017-03-13 18:25 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2017-05-09 21:16 - 2017-03-13 18:13 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2017-05-09 21:16 - 2017-03-13 18:07 - 02170880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-05-09 21:16 - 2017-03-13 18:06 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2017-05-09 21:16 - 2017-03-11 21:34 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-05-09 21:16 - 2017-03-11 21:32 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-05-09 21:16 - 2017-03-11 21:32 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-05-09 21:16 - 2017-03-11 20:49 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-05-09 21:16 - 2017-03-11 19:58 - 01437696 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-09 21:16 - 2017-03-11 19:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-05-09 21:16 - 2017-03-11 01:38 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-05-09 21:16 - 2017-03-11 01:38 - 00275800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2017-05-09 21:16 - 2017-03-09 22:52 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2017-05-09 21:16 - 2017-03-09 21:17 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2017-05-09 21:16 - 2017-03-08 04:44 - 00448285 _____ C:\Windows\system32\ApnDatabase.xml
2017-05-05 14:59 - 2017-05-27 15:53 - 00000000 ____D C:\Users\Pierre GRANDIN\Documents\MesSimulations
2017-05-05 14:59 - 2017-05-05 21:10 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\optgeo
2017-05-05 14:59 - 2017-05-05 14:59 - 01553714 _____ (JMB ) C:\Users\Pierre GRANDIN\Downloads\installateuroptgeo2.24.exe
2017-05-05 14:59 - 2017-05-05 14:59 - 00000997 _____ C:\Users\Public\Desktop\Optgeo.lnk
2017-05-05 14:59 - 2017-05-05 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optgeo
2017-05-05 14:59 - 2017-05-05 14:59 - 00000000 ____D C:\Program Files (x86)\Optgeo
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-04 23:31 - 2016-11-20 16:03 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\LocalLow\Mozilla
2017-06-04 23:23 - 2017-04-08 20:03 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\vlc
2017-06-04 22:04 - 2017-04-01 18:44 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent
2017-06-04 18:55 - 2016-10-09 19:17 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2187492805-3269722094-2540222037-1001
2017-06-04 18:39 - 2014-11-21 00:46 - 02103396 _____ C:\Windows\system32\PerfStringBackup.INI
2017-06-04 18:39 - 2014-11-21 00:03 - 00911700 _____ C:\Windows\system32\perfh00C.dat
2017-06-04 18:39 - 2014-11-21 00:03 - 00199034 _____ C:\Windows\system32\perfc00C.dat
2017-06-04 18:39 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2017-06-04 18:35 - 2016-10-10 14:49 - 00000210 _____ C:\Users\Pierre
2017-06-04 18:34 - 2016-10-16 21:10 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2017-06-04 18:34 - 2016-10-16 19:57 - 00000000 ___RD C:\Users\Pierre GRANDIN\Google Drive
2017-06-04 18:34 - 2016-10-10 16:46 - 00000000 __SHD C:\Users\Pierre GRANDIN\IntelGraphicsProfiles
2017-06-04 18:34 - 2016-10-10 15:13 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-04 18:34 - 2016-10-10 10:56 - 00000000 __RDO C:\Users\Pierre GRANDIN\OneDrive
2017-06-04 18:34 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-04 18:33 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-06-04 18:19 - 2016-10-10 10:46 - 00003968 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2CBC2C5E-9D57-4D36-9172-9F841F1E1988}
2017-06-04 10:54 - 2017-04-12 08:23 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\Adobe
2017-06-03 18:33 - 2016-10-10 14:09 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\AxCrypt
2017-06-03 17:51 - 2017-03-26 21:20 - 00004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-06-03 17:49 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2017-06-03 17:42 - 2017-04-11 18:02 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\Vus
2017-05-31 19:01 - 2016-11-09 22:22 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\Skype
2017-05-31 14:02 - 2017-03-26 21:22 - 00003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1490556127
2017-05-31 14:02 - 2017-03-26 21:22 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-05-26 15:50 - 2016-10-10 11:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-26 15:50 - 2016-10-10 11:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-25 10:50 - 2017-04-23 10:11 - 00000000 ____D C:\Users\Pierre GRANDIN\Desktop\Docs Olivier
2017-05-24 20:13 - 2016-10-10 15:36 - 00000000 ____D C:\Windows\system32\MRT
2017-05-24 20:09 - 2016-10-10 15:36 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-21 09:03 - 2017-04-15 10:31 - 00000000 ____D C:\Program Files\CCleaner
2017-05-20 22:49 - 2016-10-10 11:41 - 00001227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2017-05-20 22:49 - 2016-10-10 11:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-05-19 07:45 - 2016-10-10 11:34 - 00001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-17 23:29 - 2017-03-26 21:21 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-14 14:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2017-05-14 12:48 - 2016-10-27 20:04 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\ElevatedDiagnostics
2017-05-13 18:42 - 2017-03-26 21:20 - 00158880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2017-05-11 14:20 - 2017-03-26 21:23 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-05-11 14:20 - 2016-11-09 22:22 - 00000000 ____D C:\ProgramData\Skype
2017-05-10 18:42 - 2017-03-26 21:20 - 00569192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00339696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00128648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00101152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00075704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-05-10 18:41 - 2017-03-26 21:21 - 00032600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 01007160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00334576 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00311808 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00190256 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00049016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-05-10 18:40 - 2013-08-22 16:44 - 05066472 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-09 23:44 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-09 21:39 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2017-05-09 21:11 - 2016-11-08 22:15 - 00004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-05-09 21:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-09 21:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-08 14:39 - 2017-05-01 14:05 - 00000600 _____ C:\Users\Pierre GRANDIN\AppData\Local\PUTTY.RND
2017-05-05 15:26 - 2017-04-17 23:14 - 00001068 _____ C:\Users\Pierre GRANDIN\Desktop\LTspice XVII.lnk
==================== Fichiers à la racine de certains dossiers =======
2017-04-17 23:26 - 2017-05-03 12:10 - 0004612 _____ () C:\Users\Pierre GRANDIN\AppData\Roaming\LTspiceXVII.ini
2017-05-01 14:05 - 2017-05-08 14:39 - 0000600 _____ () C:\Users\Pierre GRANDIN\AppData\Local\PUTTY.RND
2016-11-20 16:12 - 2017-04-15 10:35 - 0000498 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-28 20:15
==================== Fin de FRST.txt ============================
Exécuté par Pierre GRANDIN (administrateur) sur ZENBOOK (04-06-2017 23:35:36)
Exécuté depuis C:\Users\Pierre GRANDIN\Desktop
Profils chargés: Pierre GRANDIN (Profils disponibles: Pierre GRANDIN)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-10] (AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google)
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [615040 2017-03-22] ()
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-10] (AVAST Software)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\..\Interfaces\{069D8600-6E5F-4F00-A12F-D16F966CA665}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-04-02] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-02] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
DPF: HKLM-x32 {62D90588-609E-4208-A260-A6CEC45BB92C} hxxps://www.bobtv.fr/download/v2/cfweb_www.bobtv.fr-download-v2_instmodule.exe
FireFox:
========
FF DefaultProfile: ybmrv9kx.default
FF ProfilePath: C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default [2017-06-04]
FF NewTab: Mozilla\Firefox\Profiles\ybmrv9kx.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ybmrv9kx.default -> Google
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\ybmrv9kx.default -> hxxps://www.google.com/search?bcutc=sp-006
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\ybmrv9kx.default -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ybmrv9kx.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\ybmrv9kx.default -> hxxps://www.google.com/?bcutc=sp-006
FF Extension: (Adaware Secure Search) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\@new-tab.xpi [2017-05-18]
FF Extension: (Avast SafePrice) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\sp@avast.com.xpi [2017-05-31]
FF Extension: (Google Translator for Firefox) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\translator@zoli.bod.xpi [2017-04-30]
FF Extension: (Avast Online Security) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\wrc@avast.com.xpi [2017-05-31]
FF Extension: (New Tab Homepage) - C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2016-12-25]
FF SearchPlugin: C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\searchplugins\bing-lavasoft.xml [2017-05-18]
FF SearchPlugin: C:\Users\Pierre GRANDIN\AppData\Roaming\Mozilla\Firefox\Profiles\ybmrv9kx.default\searchplugins\google-avast.xml [2017-05-19]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-04-06] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default [2017-06-04]
CHR Extension: (Google Slides) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-26]
CHR Extension: (Google Docs) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-29]
CHR Extension: (Google Drive) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-29]
CHR Extension: (YouTube) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-29]
CHR Extension: (Avast SafePrice) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-29]
CHR Extension: (Google Sheets) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-26]
CHR Extension: (Google Docs hors connexion) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-29]
CHR Extension: (Avast Online Security) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-04-10]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-03-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-26]
CHR Extension: (Gmail) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-29]
CHR Extension: (Chrome Media Router) - C:\Users\Pierre GRANDIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-26]
CHR HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-10] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-10] (AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1392792 2015-10-30] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-12-07] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2016-09-24] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-03-19] ()
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [Fichier non signé]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72320 2017-03-22] (The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72320 2017-03-22] (The OpenVPN Project)
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [238848 2016-02-10] (Mentor Graphics Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2017-01-24] (SolidWorks) [Fichier non signé]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2016-09-24] (Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25192 2017-05-18] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2015-03-19] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-10] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-10] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-10] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-10] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [158880 2017-05-13] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-10] (AVAST Software)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2015-03-18] (ASUS Corporation)
R3 bcmsmbsp; C:\Windows\System32\drivers\bcmsmbsp.sys [54048 2015-09-10] (Broadcom Corporation.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (Windows (R) Win 7 DDK provider)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [52200 2016-02-26] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [50664 2016-02-26] (Intel Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-01-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-01-24] (Disc Soft Ltd)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [260072 2015-10-30] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-05-09] ()
R3 evserial8; C:\Windows\System32\drivers\evserial8.sys [20040 2016-12-07] (ELTIMA Software)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [374536 2016-07-12] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [79528 2014-09-05] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [187320 2017-06-04] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-06-04] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-06-04] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251832 2017-06-04] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [93624 2017-06-04] (Malwarebytes)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw04.sys [3584264 2016-08-25] (Intel Corporation)
S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-21] (Microsoft Corporation)
R3 SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-21] (Microsoft Corporation)
R2 SPSniff; C:\Program Files\Eltima Software\Serial Port Monitor\SPSniff.sys [36512 2015-07-16] ()
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2015-04-25] (Microsoft Corporation)
R3 VSBC8; C:\Windows\System32\drivers\evsbc8.sys [103496 2016-12-07] (ELTIMA Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 catchme; \??\C:\Users\PIERRE~1\AppData\Local\Temp\catchme.sys [X] <==== ATTENTION
S3 ManyCam; \SystemRoot\system32\DRIVERS\mcvidrv.sys [X]
S3 mcaudrv_simple; \SystemRoot\system32\drivers\mcaudrv_x64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-04 23:35 - 2017-06-04 23:36 - 00024303 _____ C:\Users\Pierre GRANDIN\Desktop\FRST.txt
2017-06-04 23:35 - 2017-06-04 23:35 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-06-04 23:35 - 2017-06-04 23:35 - 00000000 ____D C:\FRST
2017-06-04 23:34 - 2017-06-04 23:34 - 02433536 _____ (Farbar) C:\Users\Pierre GRANDIN\Desktop\FRST64.exe
2017-06-04 21:48 - 2017-06-04 22:03 - 732000256 ____R C:\Users\Pierre GRANDIN\Downloads\Land.Of.The.Lost.FRENCH.BDRip.XviD-SURViVAL.By.YATTA69.avi
2017-06-04 18:38 - 2017-06-04 18:38 - 00134652 _____ C:\Users\Pierre GRANDIN\Desktop\ZHPDiag.txt
2017-06-04 18:30 - 2017-06-04 18:30 - 00003186 _____ C:\Users\Pierre GRANDIN\Desktop\ZHPFixReport.txt
2017-06-04 18:22 - 2017-06-04 18:25 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2017-06-04 18:22 - 2017-06-04 18:22 - 03521617 _____ (Nicolas Coolman ) C:\Users\Pierre GRANDIN\Downloads\zhpfix_2015.10.19.9.exe
2017-06-04 18:22 - 2017-06-04 18:22 - 00001867 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2017-06-04 18:22 - 2017-06-04 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2017-06-03 22:06 - 2017-06-03 22:06 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] John.Wick.Chapter.2.2017.FRENCH.BDRip.XviD-EXTREME
2017-06-03 22:05 - 2017-06-04 15:36 - 735154176 ____R C:\Users\Pierre GRANDIN\Downloads\[ www.Cpasbien.pw ] John.Wick.2014.FRENCH.BRRip.XviD-DesTroY.avi
2017-06-03 22:04 - 2017-06-03 22:04 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] A.Cure.for.Wellness.2016.FRENCH.BDRip.x264-VENUE
2017-06-03 22:02 - 2017-06-03 22:11 - 732465308 ____R C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] Life.2017.FRENCH.HDRip.XviD-EXTREME.avi
2017-06-03 22:01 - 2017-06-03 22:14 - 730545836 ____R C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] Compte.tes.Blessures.2016.FRENCH.HDRip.XviD-EXTREME.avi
2017-06-03 21:58 - 2017-06-03 21:58 - 00002721 _____ C:\Users\Pierre GRANDIN\Desktop\µTorrent.lnk
2017-06-03 21:56 - 2017-06-03 21:56 - 02244032 _____ (BitTorrent Inc.) C:\Users\Pierre GRANDIN\Downloads\uTorrent.exe
2017-06-03 19:53 - 2017-06-04 18:36 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\ZHP
2017-06-03 19:53 - 2017-06-04 10:55 - 00000878 _____ C:\Users\Pierre GRANDIN\Desktop\ZHPDiag.lnk
2017-06-03 19:53 - 2017-06-03 19:56 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\ZHP
2017-06-03 19:51 - 2017-06-03 19:51 - 02734592 _____ C:\Users\Pierre GRANDIN\Downloads\ZHPDiag3.exe
2017-06-03 18:55 - 2017-06-03 18:55 - 00000307 _____ C:\Users\Pierre GRANDIN\Desktop\Forum Désinfection PC virus, malwares et logiciels indésirables.URL
2017-06-03 10:18 - 2017-06-03 10:21 - 00000000 ____D C:\Users\Pierre GRANDIN\Desktop\Nouveau dossier
2017-06-02 22:25 - 2017-06-02 22:25 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\The.Strangers.2016.FRENCH.BDRip.XviD-EXTREME
2017-06-02 22:16 - 2017-06-02 22:26 - 730202936 ____R C:\Users\Pierre GRANDIN\Downloads\[ Torrent9.info ] Table.19.2017.FRENCH.BDRip.XviD-EXTREME.avi
2017-05-26 17:58 - 2017-06-04 22:03 - 00038912 ___SH C:\Users\Pierre GRANDIN\Downloads\Thumbs.db
2017-05-26 15:44 - 2017-06-04 21:46 - 00093624 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-26 15:44 - 2017-06-04 18:34 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-26 15:44 - 2017-06-04 10:51 - 00187320 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-26 15:43 - 2017-06-04 18:34 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-26 15:43 - 2017-06-04 18:34 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-26 15:43 - 2017-05-26 15:43 - 00001885 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-26 15:43 - 2017-05-26 15:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-26 15:43 - 2017-05-26 15:43 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-26 15:43 - 2017-05-26 15:43 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-26 15:43 - 2017-05-09 16:37 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-05-26 15:40 - 2017-05-26 15:42 - 63035592 _____ (Malwarebytes ) C:\Users\Pierre GRANDIN\Downloads\mb3-setup-35891.35891-3.1.2.1733.exe
2017-05-25 13:02 - 2017-05-25 13:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-05-25 10:50 - 2017-06-03 15:25 - 00067584 ___SH C:\Users\Pierre GRANDIN\Desktop\Thumbs.db
2017-05-24 19:35 - 2017-05-24 19:35 - 00001098 _____ C:\Users\Public\Desktop\Remote Camera Control.lnk
2017-05-24 19:35 - 2017-05-24 19:35 - 00000910 _____ C:\Users\Public\Desktop\Aide de Remote Camera Control.lnk
2017-05-24 19:35 - 2017-05-24 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Camera Control
2017-05-24 19:35 - 2017-05-24 19:35 - 00000000 ____D C:\Program Files (x86)\Sony
2017-05-24 19:34 - 2017-05-24 19:34 - 05151920 _____ C:\Users\Pierre GRANDIN\Downloads\RCC37_1610a.exe
2017-05-24 19:34 - 2017-05-24 19:34 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\RCC37_1610a
2017-05-20 22:48 - 2017-06-03 18:11 - 00001088 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-05-18 11:21 - 2017-05-18 12:21 - 00240989 _____ C:\Users\Pierre GRANDIN\Documents\SITE.pod
2017-05-18 11:11 - 2017-05-18 11:11 - 00084226 _____ C:\Users\Pierre GRANDIN\Documents\Publication.pod
2017-05-18 10:33 - 2017-05-18 10:33 - 00086574 _____ C:\Users\Pierre GRANDIN\Documents\Exercices.pod
2017-05-18 08:49 - 2017-05-18 08:49 - 00000000 ____D C:\ProgramData\Oracle
2017-05-18 08:48 - 2017-05-18 08:48 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ProjectLibre
2017-05-18 08:48 - 2017-05-18 08:48 - 00000000 ____D C:\Program Files (x86)\ProjectLibre
2017-05-18 08:44 - 2017-05-18 08:47 - 78456277 _____ C:\Users\Pierre GRANDIN\Downloads\projectlibre-1.7.msi
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\ProgramData\Lavasoft
2017-05-18 00:13 - 2017-05-18 00:13 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2017-05-10 18:42 - 2017-05-10 18:42 - 00400456 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-05-09 21:38 - 2017-03-30 15:15 - 00875712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2017-05-09 21:38 - 2017-03-30 15:15 - 00869568 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2017-05-09 21:38 - 2017-03-30 15:15 - 00678592 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2017-05-09 21:38 - 2017-03-30 15:15 - 00536768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2017-05-09 21:16 - 2017-04-28 23:15 - 07444824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-05-09 21:16 - 2017-04-26 16:06 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-05-09 21:16 - 2017-04-16 12:23 - 02176584 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-05-09 21:16 - 2017-04-16 12:23 - 01662096 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-05-09 21:16 - 2017-04-16 12:23 - 01063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2017-05-09 21:16 - 2017-04-16 12:18 - 01135288 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-05-09 21:16 - 2017-04-16 12:18 - 00803192 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-05-09 21:16 - 2017-04-16 11:07 - 01566032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2017-05-09 21:16 - 2017-04-16 11:07 - 01213792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2017-05-09 21:16 - 2017-04-16 11:07 - 00548032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-05-09 21:16 - 2017-04-16 11:05 - 00612096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-05-09 21:16 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-05-09 21:16 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-05-09 21:16 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-05-09 21:16 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-05-09 21:16 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-05-09 21:16 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-05-09 21:16 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-05-09 21:16 - 2017-04-16 10:16 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-05-09 21:16 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-05-09 21:16 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-05-09 21:16 - 2017-04-16 10:02 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-05-09 21:16 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-05-09 21:16 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-05-09 21:16 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-05-09 21:16 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-05-09 21:16 - 2017-04-16 09:52 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-05-09 21:16 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-05-09 21:16 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-05-09 21:16 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-05-09 21:16 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-05-09 21:16 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-05-09 21:16 - 2017-04-16 09:40 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-05-09 21:16 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-05-09 21:16 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-05-09 21:16 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-05-09 21:16 - 2017-04-16 09:23 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-05-09 21:16 - 2017-04-16 09:22 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-05-09 21:16 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-05-09 21:16 - 2017-04-16 09:17 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-05-09 21:16 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-05-09 21:16 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-05-09 21:16 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-05-09 21:16 - 2017-04-16 09:10 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-05-09 21:16 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-05-09 21:16 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-05-09 21:16 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-05-09 21:16 - 2017-04-16 09:02 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2017-05-09 21:16 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-05-09 21:16 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-05-09 21:16 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-05-09 21:16 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-05-09 21:16 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-05-09 21:16 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-05-09 21:16 - 2017-04-10 00:00 - 01548640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-05-09 21:16 - 2017-04-10 00:00 - 00388448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-05-09 21:16 - 2017-04-08 01:20 - 01375960 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-05-09 21:16 - 2017-04-07 15:56 - 01094656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-05-09 21:16 - 2017-04-02 18:41 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-05-09 21:16 - 2017-04-02 18:41 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-05-09 21:16 - 2017-04-01 01:16 - 01968408 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2017-05-09 21:16 - 2017-03-31 23:59 - 01612504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2017-05-09 21:16 - 2017-03-13 18:38 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2017-05-09 21:16 - 2017-03-13 18:29 - 02609664 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2017-05-09 21:16 - 2017-03-13 18:25 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2017-05-09 21:16 - 2017-03-13 18:13 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2017-05-09 21:16 - 2017-03-13 18:07 - 02170880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2017-05-09 21:16 - 2017-03-13 18:06 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2017-05-09 21:16 - 2017-03-11 21:34 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-05-09 21:16 - 2017-03-11 21:32 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-05-09 21:16 - 2017-03-11 21:32 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-05-09 21:16 - 2017-03-11 20:49 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-05-09 21:16 - 2017-03-11 19:58 - 01437696 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-05-09 21:16 - 2017-03-11 19:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-05-09 21:16 - 2017-03-11 01:38 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-05-09 21:16 - 2017-03-11 01:38 - 00275800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2017-05-09 21:16 - 2017-03-09 22:52 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll
2017-05-09 21:16 - 2017-03-09 21:17 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll
2017-05-09 21:16 - 2017-03-08 04:44 - 00448285 _____ C:\Windows\system32\ApnDatabase.xml
2017-05-05 14:59 - 2017-05-27 15:53 - 00000000 ____D C:\Users\Pierre GRANDIN\Documents\MesSimulations
2017-05-05 14:59 - 2017-05-05 21:10 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\optgeo
2017-05-05 14:59 - 2017-05-05 14:59 - 01553714 _____ (JMB ) C:\Users\Pierre GRANDIN\Downloads\installateuroptgeo2.24.exe
2017-05-05 14:59 - 2017-05-05 14:59 - 00000997 _____ C:\Users\Public\Desktop\Optgeo.lnk
2017-05-05 14:59 - 2017-05-05 14:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optgeo
2017-05-05 14:59 - 2017-05-05 14:59 - 00000000 ____D C:\Program Files (x86)\Optgeo
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-04 23:31 - 2016-11-20 16:03 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\LocalLow\Mozilla
2017-06-04 23:23 - 2017-04-08 20:03 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\vlc
2017-06-04 22:04 - 2017-04-01 18:44 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent
2017-06-04 18:55 - 2016-10-09 19:17 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2187492805-3269722094-2540222037-1001
2017-06-04 18:39 - 2014-11-21 00:46 - 02103396 _____ C:\Windows\system32\PerfStringBackup.INI
2017-06-04 18:39 - 2014-11-21 00:03 - 00911700 _____ C:\Windows\system32\perfh00C.dat
2017-06-04 18:39 - 2014-11-21 00:03 - 00199034 _____ C:\Windows\system32\perfc00C.dat
2017-06-04 18:39 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2017-06-04 18:35 - 2016-10-10 14:49 - 00000210 _____ C:\Users\Pierre
2017-06-04 18:34 - 2016-10-16 21:10 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2017-06-04 18:34 - 2016-10-16 19:57 - 00000000 ___RD C:\Users\Pierre GRANDIN\Google Drive
2017-06-04 18:34 - 2016-10-10 16:46 - 00000000 __SHD C:\Users\Pierre GRANDIN\IntelGraphicsProfiles
2017-06-04 18:34 - 2016-10-10 15:13 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-04 18:34 - 2016-10-10 10:56 - 00000000 __RDO C:\Users\Pierre GRANDIN\OneDrive
2017-06-04 18:34 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-04 18:33 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2017-06-04 18:19 - 2016-10-10 10:46 - 00003968 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2CBC2C5E-9D57-4D36-9172-9F841F1E1988}
2017-06-04 10:54 - 2017-04-12 08:23 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\Adobe
2017-06-03 18:33 - 2016-10-10 14:09 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\AxCrypt
2017-06-03 17:51 - 2017-03-26 21:20 - 00004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-06-03 17:49 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2017-06-03 17:42 - 2017-04-11 18:02 - 00000000 ____D C:\Users\Pierre GRANDIN\Downloads\Vus
2017-05-31 19:01 - 2016-11-09 22:22 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Roaming\Skype
2017-05-31 14:02 - 2017-03-26 21:22 - 00003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1490556127
2017-05-31 14:02 - 2017-03-26 21:22 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-05-26 15:50 - 2016-10-10 11:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-26 15:50 - 2016-10-10 11:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-25 10:50 - 2017-04-23 10:11 - 00000000 ____D C:\Users\Pierre GRANDIN\Desktop\Docs Olivier
2017-05-24 20:13 - 2016-10-10 15:36 - 00000000 ____D C:\Windows\system32\MRT
2017-05-24 20:09 - 2016-10-10 15:36 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-05-21 09:03 - 2017-04-15 10:31 - 00000000 ____D C:\Program Files\CCleaner
2017-05-20 22:49 - 2016-10-10 11:41 - 00001227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2017-05-20 22:49 - 2016-10-10 11:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-05-19 07:45 - 2016-10-10 11:34 - 00001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-17 23:29 - 2017-03-26 21:21 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-14 14:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2017-05-14 12:48 - 2016-10-27 20:04 - 00000000 ____D C:\Users\Pierre GRANDIN\AppData\Local\ElevatedDiagnostics
2017-05-13 18:42 - 2017-03-26 21:20 - 00158880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2017-05-11 14:20 - 2017-03-26 21:23 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-05-11 14:20 - 2016-11-09 22:22 - 00000000 ____D C:\ProgramData\Skype
2017-05-10 18:42 - 2017-03-26 21:20 - 00569192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00339696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00128648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00101152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00075704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-05-10 18:42 - 2017-03-26 21:20 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-05-10 18:41 - 2017-03-26 21:21 - 00032600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 01007160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00334576 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00311808 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00190256 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-05-10 18:41 - 2017-03-26 21:20 - 00049016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-05-10 18:40 - 2013-08-22 16:44 - 05066472 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-09 23:44 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-05-09 21:39 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2017-05-09 21:11 - 2016-11-08 22:15 - 00004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-05-09 21:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-05-09 21:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Macromed
2017-05-08 14:39 - 2017-05-01 14:05 - 00000600 _____ C:\Users\Pierre GRANDIN\AppData\Local\PUTTY.RND
2017-05-05 15:26 - 2017-04-17 23:14 - 00001068 _____ C:\Users\Pierre GRANDIN\Desktop\LTspice XVII.lnk
==================== Fichiers à la racine de certains dossiers =======
2017-04-17 23:26 - 2017-05-03 12:10 - 0004612 _____ () C:\Users\Pierre GRANDIN\AppData\Roaming\LTspiceXVII.ini
2017-05-01 14:05 - 2017-05-08 14:39 - 0000600 _____ () C:\Users\Pierre GRANDIN\AppData\Local\PUTTY.RND
2016-11-20 16:12 - 2017-04-15 10:35 - 0000498 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-05-28 20:15
==================== Fin de FRST.txt ============================