Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-12-2017
Exécuté par CHAPARDS (administrateur) sur PA006 (14-12-2017 16:54:17)
Exécuté depuis C:\Users\chapards\Desktop
Profils chargés: CHAPARDS (Profils disponibles: user & BRENIERL & PECHEREAUL & REVEILLEREE & GIRARDM & CHAPARDS & Administrateur)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\PccNTMon.exe
(Cisco WebEx LLC) C:\Windows\SysWOW64\atashost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(OCS Inventory NG) C:\Program Files (x86)\OCS Inventory Agent\OcsSystray.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\Enterprise Console\PRTG Enterprise Console.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel) C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
() C:\xampp\mysql\bin\mysqld.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\NTRTScan.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Dell) C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\OpenTFTPServer\OpenTFTPServerMT.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(OCS Inventory NG) C:\Program Files (x86)\OCS Inventory Agent\OcsService.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmListen.exe
(Veeam Software AG) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\110\LocalDB\Binn\sqlservr.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmPfw.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [7823824 2015-09-21] (Dell Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935400 2015-05-29] (Synaptics Incorporated)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [528384 2015-11-10] (Greenshot)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1074600 2016-08-28] (The Eraser Project)
HKLM\...\Run: [Veeam.EndPoint.Tray.exe] => C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Tray.exe [946440 2017-04-23] (Veeam Software AG)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-15] (Intel Corporation)
HKLM-x32\...\Run: [OfficeScanNT Monitor] => C:\Program Files (x86)\Trend Micro\Security Agent\pccntmon.exe [1863072 2016-09-07] (Trend Micro Inc.)
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver Update Utility\DsaTray.exe [132856 2017-05-18] (Intel)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKU\S-1-5-21-121918642-729396558-3299086579-2697\...\Run: [Google Update] => C:\Users\chapards\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
HKU\S-1-5-21-121918642-729396558-3299086579-2697\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2105728 2017-05-31] (Sony)
HKU\S-1-5-21-121918642-729396558-3299086579-2697\...\Run: [StickIt] => C:\Program Files (x86)\StickIt\StickIt3.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OCS Inventory NG Systray.lnk [2017-10-03]
ShortcutTarget: OCS Inventory NG Systray.lnk -> C:\Program Files (x86)\OCS Inventory Agent\OcsSystray.exe (OCS Inventory NG)
Startup: C:\Users\chapards\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PRTG Enterprise Console.lnk [2017-06-01]
ShortcutTarget: PRTG Enterprise Console.lnk -> C:\Program Files (x86)\PRTG Network Monitor\Enterprise Console\PRTG Enterprise Console.exe (Paessler AG)
Startup: C:\Users\girardm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2016-10-28]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\girardm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PRTG Enterprise Console.lnk [2016-06-29]
ShortcutTarget: PRTG Enterprise Console.lnk -> C:\Program Files (x86)\PRTG Network Monitor\Enterprise Console\PRTG Enterprise Console.exe (Paessler AG)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 10.225.0.1 10.225.3.1
Tcpip\..\Interfaces\{36186CE4-3EAB-4A38-87A5-A98DD3DE37AF}: [DhcpNameServer] 10.225.0.1 10.225.3.1
Tcpip\..\Interfaces\{97C21969-3400-4177-B947-AF64F539DFB1}: [DhcpNameServer] 192.168.73.2
Tcpip\..\Interfaces\{F12B6A4A-FE24-454F-8E71-F5145AFD33C0}: [DhcpNameServer] 192.168.192.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-121918642-729396558-3299086579-2697\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-121918642-729396558-3299086579-2697\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-121918642-729396558-3299086579-2697 -> DefaultScope {DF94FB28-D7E9-4C1A-80DE-EEBDC37FF09B} URL =
SearchScopes: HKU\S-1-5-21-121918642-729396558-3299086579-2697 -> {DF94FB28-D7E9-4C1A-80DE-EEBDC37FF09B} URL =
BHO: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-09-01] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation)
BHO: Pas de nom -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Pas de fichier
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-01] (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-22] (Oracle Corporation)
BHO-x32: Programme d’aide de l’Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-22] (Oracle Corporation)
DPF: HKLM-x32 {8157E81A-275D-4BE8-A7A9-E36E62DF9C68} hxxps://srv-vm-secu.intra.nutriciab.fr:4343/SMB/console/html/root/AtxEnc.cab?ver=19,0,0,4305
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
FireFox:
========
FF DefaultProfile: xbpzqwal.default
FF ProfilePath: C:\Users\chapards\AppData\Roaming\Mozilla\Firefox\Profiles\xbpzqwal.default [2017-12-14]
FF HKLM\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF Extension: (Trend Micro NSC Firefox Extension) - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension [2016-10-06] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-14] ()
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.978\npSurveillancePlugin_x86_64.dll [2016-09-23] (Synology)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-14] (Google Inc.)
FF Plugin-x32: @vmware.com/vmrc,version=5.5.0.00000 -> C:\Program Files (x86)\Common Files\VMware\VMware Remote Console Plug-in 5.5\Firefox\np-vmware-vmrc.dll [2015-08-28] (VMware, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.978\npSurveillancePlugin.dll [2016-09-23] (Synology)
FF Plugin-x32: vmware.com/client-support-plugin -> C:\Program Files (x86)\VMware\Client Integration Plug-in 5.5\npVMwareClientSupportPlugin-5-5-0.dll [2014-06-13] (VMware, Inc.)
FF Plugin HKU\S-1-5-21-121918642-729396558-3299086579-2697: @tools.google.com/Google Update;version=3 -> C:\Users\chapards\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-121918642-729396558-3299086579-2697: @tools.google.com/Google Update;version=9 -> C:\Users\chapards\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npatgpc.dll [2017-09-13] (Cisco WebEx LLC)
FF Plugin ProgramFiles/Appdata: C:\Users\chapards\AppData\Roaming\mozilla\plugins\npatgpc.dll [2017-09-13] (Cisco WebEx LLC)
Chrome:
=======
CHR Profile: C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-12-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-14]
CHR Extension: (Chrome Media Router) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-14]
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
S2 Apache2.2; C:\Xampp\apache\bin\httpd.exe [18432 2011-09-10] (Apache Software Foundation) [Fichier non signé]
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122736 2017-05-27] (AOMEI Tech Co., Ltd.)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [11071208 2015-07-07] (DisplayLink Corp.)
R2 DSAService; C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe [21240 2017-05-18] (Intel)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 hasplms; C:\Windows\system32\hasplms.exe [4621632 2015-04-14] (SafeNet Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [124520 2014-12-14] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-11-16] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-19] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 mysql; C:\Xampp\mysql\bin\my.ini [5399 2017-08-31] () [Fichier non signé]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-05-18] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [Fichier non signé]
R2 ntrtscan; C:\Program Files (x86)\Trend Micro\Security Agent\ntrtscan.exe [4420664 2016-09-07] (Trend Micro Inc.)
R2 OCS Inventory Service; C:\Program Files (x86)\OCS Inventory Agent\OcsService.exe [786432 2017-01-12] (OCS Inventory NG) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [Fichier non signé]
R2 postgresql-x64-9.6; C:\Program Files\PostgreSQL\9.6\bin\pg_ctl.exe [95232 2017-08-29] (PostgreSQL Global Development Group) [Fichier non signé]
S3 PrintNotify; C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll [2987520 2014-10-29] (Microsoft Corporation) [Fichier non signé]
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-15] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
R2 SONICWALL_NetExtender; C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe [589312 2013-10-24] (Dell)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
S2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-08-17] (TeamViewer GmbH)
R2 TFTPServer; C:\OpenTFTPServer\OpenTFTPServerMT.exe [86161 2016-11-24] () [Fichier non signé]
R3 TMBMServer; C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe [470528 2017-03-21] (Trend Micro Inc.)
R3 TmCCSF; C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe [864600 2016-12-27] (Trend Micro Inc.)
R2 tmlisten; C:\Program Files (x86)\Trend Micro\Security Agent\tmlisten.exe [4256048 2017-06-02] (Trend Micro Inc.)
R3 TmPfw; C:\Program Files (x86)\Trend Micro\Security Agent\TmPfw.exe [601360 2015-05-14] (Trend Micro Inc.)
R3 TmProxy; C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe [930816 2015-07-29] (Trend Micro Inc.)
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 VeeamEndpointBackupSvc; C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe [114952 2017-04-23] (Veeam Software AG)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-07-22] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe [473824 2017-05-05] (Wondershare)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2205568 2017-05-31] (Sony)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831200 2015-05-18] (Intel® Corporation)
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe" [X]
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone toolkit pour Android\Library\DriverInstaller\DriverInstall.exe [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-23] ()
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-23] ()
S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] ()
S3 ampa; C:\Windows\SysWOW64\ampa.sys [38320 2016-12-25] ()
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2016-12-23] ()
S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions, Inc.)
S3 btmhsf; C:\Windows\System32\DRIVERS\btmhsf.sys [1448248 2014-11-27] (Motorola Solutions, Inc.)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 DisplayLinkUsbIo_x64; C:\Windows\System32\DRIVERS\DisplayLinkUsbIo_x64_7.9.296.0.sys [58640 2017-06-14] ()
S3 dlcdcncm; C:\Windows\System32\DRIVERS\dlcdcncm62_x64.sys [91920 2015-07-07] (DisplayLink Corp.)
S3 dlusbaudio; C:\Windows\System32\DRIVERS\dlusbaudio_x64.sys [229648 2015-07-07] (DisplayLink Corp.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2015-04-14] (SafeNet Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31144 2015-06-23] (Intel Corporation)
S3 ibtusb; C:\Windows\System32\DRIVERS\ibtusb.sys [230128 2014-12-03] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2017-12-14] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [110016 2017-12-14] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-12-14] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-14] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-12-14] (Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [179456 2015-09-01] (Intel Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw02.sys [3541784 2015-06-18] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NxDrv; C:\Windows\System32\DRIVERS\NxDrv.sys [24264 2013-10-24] (SonicWALL Inc.)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [402136 2015-05-27] (Realsil Semiconductor Corporation)
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [131256 2017-03-24] (Trend Micro Inc.)
R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [334464 2017-06-14] (Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [88152 2017-03-24] (Trend Micro Inc.)
R2 TmFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmXPFlt.sys [393944 2017-03-21] (Trend Micro Inc.)
R1 TmLwf; C:\Windows\System32\DRIVERS\tmlwf.sys [157432 2015-07-20] (Trend Micro Inc.)
R2 TmPreFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmPreFlt.sys [66776 2017-03-21] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [109080 2013-01-09] (Trend Micro Inc.)
R1 tmumh; C:\Windows\System32\DRIVERS\TMUMH.sys [103640 2017-03-31] (Trend Micro Inc.)
R2 tmWfp; C:\Windows\System32\DRIVERS\tmwfp.sys [290296 2015-06-16] (Trend Micro Inc.)
S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [131144 2017-01-16] (Oracle Corporation)
R2 VSApiNt; C:\Program Files (x86)\Trend Micro\Security Agent\VSApiNt.sys [2621144 2017-03-21] (Trend Micro Inc.)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [93248 2016-09-30] (VMware, Inc.)
S2 vstor2; \??\C:\Program Files (x86)\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-14 16:54 - 2017-12-14 16:54 - 000030054 _____ C:\Users\chapards\Desktop\FRST.txt
2017-12-14 16:53 - 2017-12-14 13:38 - 002392064 _____ (Farbar) C:\Users\chapards\Desktop\FRST64.exe
2017-12-14 16:44 - 2017-12-14 16:44 - 000212002 _____ C:\Users\chapards\Desktop\ZHPDiag.txt
2017-12-14 16:37 - 2017-12-14 16:37 - 000000787 _____ C:\Users\chapards\Desktop\ZHPDiag.lnk
2017-12-14 16:36 - 2017-12-14 16:36 - 002945408 _____ C:\Users\chapards\Downloads\ZHPDiag3.exe
2017-12-14 16:15 - 2017-12-14 16:15 - 000065832 _____ C:\Users\chapards\Downloads\Devis M GABORIEAU.pdf
2017-12-14 16:14 - 2017-12-14 16:15 - 002989952 _____ C:\Users\chapards\Downloads\ZHPCleaner.exe
2017-12-14 15:30 - 2017-12-14 15:38 - 000000000 ____D C:\Users\chapards\AppData\Local\Google
2017-12-14 15:30 - 2017-12-14 15:30 - 000002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 15:30 - 2017-12-14 15:30 - 000002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-14 15:28 - 2017-12-14 15:30 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-14 15:28 - 2017-12-14 15:28 - 000003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-12-14 15:28 - 2017-12-14 15:28 - 000003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-12-14 15:26 - 2017-12-14 15:27 - 001129816 _____ (Google Inc.) C:\Users\chapards\Downloads\ChromeSetup.exe
2017-12-14 15:07 - 2017-12-14 15:07 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\Users\chapards\AppData\Local\VS Revo Group
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\ProgramData\VS Revo Group
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\Program Files\VS Revo Group
2017-12-14 15:07 - 2009-12-30 11:21 - 000031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2017-12-14 15:03 - 2017-12-14 15:03 - 010694392 _____ (VS Revo Group ) C:\Users\chapards\Downloads\RevoUninProSetup.exe
2017-12-14 14:06 - 2017-12-14 16:31 - 000001503 _____ C:\Users\chapards\Desktop\ZHPCleaner.txt
2017-12-14 13:54 - 2017-12-14 16:38 - 000000000 ____D C:\Users\chapards\AppData\Roaming\ZHP
2017-12-14 13:54 - 2017-12-14 16:19 - 000000797 _____ C:\Users\chapards\Desktop\ZHPCleaner.lnk
2017-12-14 13:38 - 2017-12-14 13:38 - 000000000 ____D C:\FRST
2017-12-14 13:37 - 2017-12-14 13:38 - 002392064 _____ (Farbar) C:\Users\chapards\Downloads\FRST64.exe
2017-12-14 13:28 - 2017-12-14 16:37 - 000000000 ____D C:\Users\chapards\AppData\Local\ZHP
2017-12-14 13:25 - 2017-12-14 13:29 - 000000000 ____D C:\AdwCleaner
2017-12-14 13:24 - 2017-12-14 13:25 - 008187336 _____ (Malwarebytes) C:\Users\chapards\Downloads\adwcleaner_7.0.5.0.exe
2017-12-14 12:56 - 2017-12-14 14:28 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-12-14 12:56 - 2017-12-14 13:45 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-12-14 12:56 - 2017-12-14 13:45 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-12-14 12:56 - 2017-12-14 13:37 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-14 12:56 - 2017-12-14 12:56 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-12-14 12:55 - 2017-12-14 12:55 - 000001869 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-14 12:55 - 2017-12-14 12:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-14 12:55 - 2017-12-14 12:55 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-14 12:55 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-14 12:52 - 2017-12-14 12:53 - 083316440 _____ (Malwarebytes ) C:\Users\chapards\Downloads\mb3-setup-35891.35891-3.3.1.2183-1.0.262-1.0.3374.exe
2017-12-14 12:42 - 2017-12-14 12:43 - 000000201 _____ C:\Users\chapards\Downloads\Serial.zip
2017-12-13 17:03 - 2017-11-07 17:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-13 17:03 - 2017-11-07 17:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-13 17:03 - 2017-11-04 16:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-13 17:03 - 2017-11-04 16:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-13 17:03 - 2017-11-04 16:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-13 17:03 - 2017-11-04 16:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-13 17:03 - 2017-11-02 16:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-13 17:03 - 2017-11-02 16:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-13 17:03 - 2017-11-02 16:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-13 17:03 - 2017-11-02 15:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-13 17:02 - 2017-11-14 04:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-13 17:02 - 2017-11-14 04:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-13 17:02 - 2017-11-14 04:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-13 17:02 - 2017-11-14 04:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-13 17:02 - 2017-11-14 04:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-13 17:02 - 2017-11-14 04:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-13 17:02 - 2017-11-14 04:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-13 17:02 - 2017-11-14 03:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-13 17:02 - 2017-11-14 01:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-13 17:02 - 2017-11-07 21:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-13 17:02 - 2017-11-07 21:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-13 17:02 - 2017-11-07 21:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-13 17:02 - 2017-11-07 21:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-13 17:02 - 2017-11-07 21:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-13 17:02 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-13 17:01 - 2017-11-15 02:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-13 17:01 - 2017-11-15 01:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-13 17:01 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-13 17:01 - 2017-11-14 04:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-13 17:01 - 2017-11-14 04:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-13 17:01 - 2017-11-14 04:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-13 17:01 - 2017-11-14 04:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-13 17:01 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-13 17:01 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-13 17:01 - 2017-11-14 04:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-13 17:01 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-13 17:01 - 2017-11-14 04:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-13 17:01 - 2017-11-14 04:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-13 17:01 - 2017-11-14 04:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-13 17:01 - 2017-11-14 04:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-13 17:01 - 2017-11-14 04:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-13 17:01 - 2017-11-14 04:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-13 17:01 - 2017-11-14 04:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-13 17:01 - 2017-11-14 04:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-13 17:01 - 2017-11-14 04:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-13 17:01 - 2017-11-14 03:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-13 17:01 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-13 17:01 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-13 17:01 - 2017-11-14 03:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-13 17:01 - 2017-11-14 03:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-13 17:01 - 2017-11-14 03:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-13 17:01 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-13 17:01 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-13 17:01 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-13 17:01 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-13 17:01 - 2017-11-14 02:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-13 17:01 - 2017-11-14 02:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-13 17:01 - 2017-11-14 02:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-13 17:01 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-13 17:01 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-13 17:01 - 2017-11-07 21:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-13 17:01 - 2017-11-07 21:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-13 17:01 - 2017-11-07 21:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-13 17:01 - 2017-11-07 21:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-13 17:01 - 2017-11-07 21:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-13 17:01 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-13 17:01 - 2017-11-07 21:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-13 17:01 - 2017-11-07 21:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-13 17:01 - 2017-11-07 21:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-13 17:01 - 2017-11-07 21:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-13 17:01 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-13 17:01 - 2017-11-07 21:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-13 17:01 - 2017-11-07 21:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-13 17:01 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-13 17:01 - 2017-11-07 21:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-13 17:01 - 2017-11-07 21:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-13 17:01 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-13 17:01 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-13 12:31 - 2017-12-13 12:32 - 000174363 _____ C:\Users\chapards\Documents\Recup PC Gaborieau Gerard.pdf
2017-12-13 12:21 - 2017-12-13 12:21 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF (3).pdf
2017-12-13 12:11 - 2017-12-13 12:11 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF (2).pdf
2017-12-13 11:08 - 2017-12-13 11:08 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF (1).pdf
2017-12-13 11:04 - 2017-12-13 11:04 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF.pdf
2017-12-12 15:18 - 2017-12-12 15:19 - 058970243 _____ C:\Users\chapards\Downloads\SetupDesignReview2013.msi.zip
2017-12-12 15:16 - 2017-12-12 15:23 - 828943376 _____ (Autodesk, Inc.) C:\Users\chapards\Downloads\DWGTrueView_2018_FRA_64bit.sfx.exe
2017-12-12 14:56 - 2017-12-12 15:00 - 000000000 ____D C:\Users\chapards\Desktop\factures
2017-12-12 14:38 - 2017-12-12 14:39 - 019314656 _____ (TeamViewer GmbH) C:\Users\chapards\Downloads\TeamViewer_Setup.exe
2017-12-12 14:37 - 2017-12-12 14:42 - 532676608 _____ C:\Users\chapards\Downloads\deftZ-2017-1.iso
2017-12-12 08:36 - 2017-12-12 08:36 - 001381582 _____ (Igor Pavlov) C:\Users\chapards\Downloads\7z1604-x64 (1).exe
2017-12-12 08:18 - 2017-12-12 08:18 - 000000000 ____D C:\Users\chapards\AppData\Local\LogMeInInc
2017-12-08 12:18 - 2017-12-08 12:18 - 000476118 _____ C:\Users\chapards\Downloads\img001.pdf
2017-12-08 12:18 - 2017-12-08 12:18 - 000438447 _____ C:\Users\chapards\Downloads\img002.pdf
2017-12-08 12:17 - 2017-12-08 12:18 - 000475495 _____ C:\Users\chapards\Downloads\img003.pdf
2017-12-07 14:32 - 2017-12-07 14:32 - 005045256 _____ (TeamViewer) C:\Users\chapards\Downloads\TeamViewerQS_fr-idcpkzhzhz.exe
2017-12-06 15:18 - 2017-12-06 15:18 - 000005032 _____ C:\Users\chapards\Downloads\srv-hst-bkpnas_20171206.dss
2017-12-01 12:08 - 2017-12-01 12:08 - 000122768 _____ C:\Users\chapards\Documents\facturesport.pdf
2017-11-30 12:07 - 2017-11-30 12:07 - 000104574 _____ C:\Users\chapards\Downloads\bill_1206937419_eb2c7d77b99a5ec413c63533abfdb3e4 (1).pdf
2017-11-30 11:20 - 2017-11-30 11:22 - 000082654 _____ C:\Users\chapards\Downloads\chart (3).jpeg
2017-11-29 12:32 - 2017-11-29 12:32 - 005743090 _____ C:\Users\chapards\Desktop\Guide_technique_entretien_PUHZ.pdf
2017-11-29 12:25 - 2017-11-29 12:25 - 002315570 _____ C:\Users\chapards\Downloads\DevisMORICET (1).xlsx
2017-11-29 11:50 - 2017-11-29 11:50 - 000436523 _____ C:\Users\chapards\Downloads\FC1702129117.pdf
2017-11-29 11:42 - 2017-11-29 11:42 - 000000991 _____ C:\Users\chapards\AppData\Local\recently-used.xbel
2017-11-29 11:35 - 2017-11-29 11:43 - 000081987 _____ C:\Users\chapards\Downloads\chart (2).jpeg
2017-11-28 08:51 - 2017-10-17 00:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-11-28 08:51 - 2017-10-16 23:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-11-28 08:51 - 2017-10-12 01:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-11-28 08:50 - 2017-11-17 05:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-11-28 08:17 - 2017-11-30 11:09 - 000000000 ____D C:\Users\chapards\Desktop\note frais
2017-11-27 14:35 - 2017-11-27 14:35 - 000154516 _____ C:\Users\chapards\Documents\Recup port.pdf
2017-11-27 10:46 - 2017-11-27 10:46 - 000104574 _____ C:\Users\chapards\Downloads\bill_1206937419_eb2c7d77b99a5ec413c63533abfdb3e4.pdf
2017-11-27 10:18 - 2017-11-27 10:18 - 000095248 _____ C:\Users\chapards\Downloads\chart (1).jpeg
2017-11-27 09:50 - 2017-11-27 09:50 - 000127209 _____ C:\Users\chapards\Downloads\chart.jpeg
2017-11-23 10:13 - 2017-11-23 10:16 - 219152384 _____ C:\Users\chapards\Downloads\clonezilla-live-2.5.2-31-i686.iso
2017-11-23 10:11 - 2017-11-23 10:15 - 220200960 _____ C:\Users\chapards\Downloads\clonezilla-live-2.5.2-31-amd64.iso
2017-11-23 09:56 - 2017-11-23 10:00 - 261480448 _____ C:\Users\chapards\Downloads\redobackup-livecd-1.0.4.iso
2017-11-22 16:58 - 2017-11-22 16:58 - 007821485 _____ (Igor Pavlov) C:\Users\chapards\Downloads\fusioninventory-agent_windows-x64_2.3.7-portable.exe
2017-11-22 16:44 - 2017-11-22 16:44 - 006704967 _____ (Igor Pavlov) C:\Users\chapards\Downloads\fusioninventory-agent_windows-x64_2.3.17-portable.exe
2017-11-22 16:44 - 2014-05-01 23:04 - 000000000 ____D C:\Users\chapards\Downloads\FusionInventory-Agent
2017-11-21 15:13 - 2017-12-11 14:56 - 000004175 _____ C:\Users\chapards\Desktop\test purge system externe.txt
2017-11-21 09:10 - 2017-11-21 09:11 - 000000000 ____D C:\Users\chapards\AppData\Roaming\vlc
2017-11-20 15:35 - 2017-11-20 15:35 - 000000000 ____D C:\Users\chapards\AppData\Local\GoToAssist Remote Support Customer
2017-11-16 11:25 - 2017-11-16 11:25 - 000068683 _____ C:\Users\chapards\Documents\Devis Mme DELETANG.pdf
2017-11-15 17:05 - 2017-10-18 03:06 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-11-15 17:02 - 2017-10-17 00:07 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-11-15 17:02 - 2017-10-16 22:55 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-11-15 17:02 - 2017-10-12 01:58 - 000382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 014635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-11-15 17:02 - 2017-10-12 01:55 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-11-15 17:02 - 2017-10-12 01:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-11-15 17:02 - 2017-10-12 01:40 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-11-15 17:02 - 2017-10-12 01:39 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-11-15 17:02 - 2017-10-12 01:38 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-11-15 17:02 - 2017-10-12 01:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-11-15 17:02 - 2017-10-12 01:37 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2017-11-15 17:02 - 2017-10-12 01:37 - 011410944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-11-15 17:02 - 2017-10-12 01:26 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-11-15 17:02 - 2017-10-12 01:26 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-11-15 17:02 - 2017-10-12 01:25 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-11-15 17:02 - 2017-10-12 01:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-11-15 17:02 - 2017-10-12 01:24 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2017-11-15 17:02 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2017-11-15 17:02 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2017-11-15 17:02 - 2017-10-12 01:20 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-11-15 17:02 - 2017-10-12 01:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-11-14 14:44 - 2017-11-15 11:33 - 000068533 _____ C:\Users\chapards\Documents\Devis Mme MORICET.pdf
2017-11-14 14:42 - 2017-11-16 11:29 - 002301374 _____ C:\Users\chapards\Downloads\DevisMORICET.xlsx
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-14 16:43 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-14 16:43 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-14 16:32 - 2017-06-01 09:57 - 000000000 ____D C:\Users\chapards\AppData\LocalLow\Mozilla
2017-12-14 16:32 - 2017-06-01 09:54 - 000000000 ____D C:\Users\chapards\AppData\Roaming\Mozilla
2017-12-14 16:32 - 2017-03-20 09:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-12-14 16:23 - 2017-06-01 09:27 - 000002052 ____H C:\Users\chapards\Documents\Default.rdp
2017-12-14 16:23 - 2016-06-27 12:53 - 000016191 _____ C:\Windows\cfgall.ini
2017-12-14 15:24 - 2016-06-22 11:13 - 000000144 _____ C:\Windows\system32\config\netlogon.ftl
2017-12-14 15:13 - 2016-06-22 13:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-14 14:25 - 2017-09-18 13:41 - 000000000 ____D C:\Users\chapards\AppData\Local\Deployment
2017-12-14 13:45 - 2010-11-21 07:19 - 000810338 _____ C:\Windows\system32\perfh00C.dat
2017-12-14 13:45 - 2010-11-21 07:19 - 000174834 _____ C:\Windows\system32\perfc00C.dat
2017-12-14 13:45 - 2009-07-14 06:13 - 001846274 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-14 13:45 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-12-14 13:38 - 2017-06-01 09:08 - 000000000 __SHD C:\Users\chapards\IntelGraphicsProfiles
2017-12-14 13:37 - 2016-10-04 08:14 - 000000000 ____D C:\ProgramData\Veeam
2017-12-14 13:36 - 2016-06-22 11:29 - 000000000 ____D C:\ProgramData\VMware
2017-12-14 13:32 - 2017-07-19 13:16 - 000000082 _____ C:\Windows\SysWOW64\winsevr.dat
2017-12-14 13:32 - 2017-07-19 13:15 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2017-12-14 13:32 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-14 12:55 - 2016-10-06 16:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-14 12:46 - 2016-06-22 11:15 - 000007156 __RSH C:\ProgramData\ntuser.pol
2017-12-14 10:24 - 2017-06-08 08:36 - 000003952 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BCB3A008-548D-4509-B2BC-72874893EDDE}
2017-12-14 09:11 - 2017-06-01 16:22 - 000027341 _____ C:\Users\chapards\Desktop\Horaires.xlsx
2017-12-14 09:10 - 2017-06-01 10:12 - 000000000 ____D C:\Users\chapards\AppData\Roaming\VMware
2017-12-14 08:14 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-14 08:14 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-13 08:28 - 2016-06-22 11:28 - 000000000 ____D C:\Windows\system32\appmgmt
2017-12-12 15:13 - 2017-07-05 09:14 - 000000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2017-12-12 14:39 - 2017-06-01 09:19 - 000000000 ____D C:\Users\chapards\AppData\Roaming\TeamViewer
2017-12-12 09:41 - 2017-06-06 08:32 - 000014295 _____ C:\Users\chapards\Desktop\Classeur1.xlsx
2017-12-12 09:36 - 2017-06-06 08:32 - 000014296 _____ C:\Users\chapards\Desktop\D4C7F1A.tmp
2017-12-12 09:33 - 2017-06-06 08:32 - 000014300 _____ C:\Users\chapards\Desktop\DEC66517.tmp
2017-12-12 09:32 - 2017-06-06 08:32 - 000014296 _____ C:\Users\chapards\Desktop\2BE5E0E0.tmp
2017-12-11 12:07 - 2017-11-08 08:14 - 000000000 ____D C:\Users\chapards\AppData\Local\ElevatedDiagnostics
2017-12-11 09:29 - 2009-07-14 06:32 - 000000000 ____D C:\Windows\system32\FxsTmp
2017-12-11 08:16 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2017-12-06 09:09 - 2009-07-14 06:32 - 000000000 ____D C:\Windows\Downloaded Program Files
2017-12-06 08:14 - 2017-09-06 07:09 - 000000000 ____D C:\Users\chapards\Desktop\Perso
2017-12-05 16:45 - 2017-03-21 15:26 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-11-30 08:29 - 2017-04-13 20:48 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 11:42 - 2017-08-11 14:53 - 000000000 ____D C:\Users\chapards\AppData\Local\gtk-2.0
2017-11-29 11:42 - 2017-08-11 14:50 - 000000000 ____D C:\Users\chapards\.gimp-2.8
2017-11-28 15:54 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2017-11-28 14:02 - 2009-07-14 05:45 - 005051840 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-27 12:03 - 2017-10-25 07:46 - 000000100 _____ C:\Users\chapards\Downloads\rufus.ini
2017-11-27 11:41 - 2017-11-13 13:54 - 000000000 ____D C:\Users\chapards\Desktop\cle
2017-11-27 09:36 - 2017-08-28 15:10 - 000001366 _____ C:\Users\chapards\Desktop\util.txt
2017-11-23 09:27 - 2017-10-04 10:34 - 000000000 ____D C:\Program Files (x86)\StickIt
2017-11-20 10:38 - 2017-09-18 13:04 - 000003590 _____ C:\Users\chapards\Desktop\ESX02.csv
2017-11-20 08:26 - 2017-06-01 09:58 - 000003680 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-121918642-729396558-3299086579-2697UA
2017-11-20 08:26 - 2017-06-01 09:58 - 000003408 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-121918642-729396558-3299086579-2697Core
2017-11-16 08:38 - 2016-06-22 13:04 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-11-16 08:26 - 2009-07-14 05:57 - 000001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-11-14 14:33 - 2017-08-24 11:54 - 000451584 _____ (Trend Micro Inc.) C:\Windows\RegBootClean64.exe
==================== Fichiers à la racine de certains dossiers =======
2017-06-01 10:12 - 2017-06-01 10:12 - 000002084 _____ () C:\Users\chapards\.csp_ovftool_settings.js
2016-10-06 08:46 - 2016-10-06 08:46 - 000002084 _____ () C:\Users\girardm\.csp_ovftool_settings.js
2016-10-06 08:46 - 2016-10-06 08:46 - 000000224 _____ () C:\Users\girardm\.VMwareClientSupportPlugin-settings.js
2016-06-30 10:43 - 2016-06-30 10:43 - 000531368 _____ (Simon Tatham) C:\Program Files (x86)\putty.exe
2017-09-01 14:35 - 2017-09-20 12:02 - 000000600 _____ () C:\Users\chapards\AppData\Roaming\winscp.rnd
2017-08-18 10:15 - 2017-09-27 09:27 - 000000600 _____ () C:\Users\chapards\AppData\Local\PUTTY.RND
2017-11-29 11:42 - 2017-11-29 11:42 - 000000991 _____ () C:\Users\chapards\AppData\Local\recently-used.xbel
2017-08-24 13:55 - 2017-08-24 13:55 - 000000017 _____ () C:\Users\chapards\AppData\Local\resmon.resmoncfg
Certains fichiers dans TEMP:
====================
2017-09-18 13:41 - 2017-09-18 13:41 - 000061952 _____ () C:\Users\chapards\AppData\Local\Temp\cpqma-4bc3f3f4.dll
2017-09-18 14:39 - 2017-09-18 14:39 - 000061952 _____ () C:\Users\chapards\AppData\Local\Temp\cpqma-5de35a5f.dll
2017-11-20 16:03 - 2017-11-20 16:03 - 000061952 _____ () C:\Users\chapards\AppData\Local\Temp\cpqma-74df1f89.dll
2017-09-14 07:34 - 2017-07-13 08:50 - 003500640 ____N (Adobe Systems Incorporated) C:\Users\chapards\AppData\Local\Temp\Creative Cloud Uninstaller.exe
2017-09-18 13:41 - 2017-09-18 13:41 - 000064000 _____ () C:\Users\chapards\AppData\Local\Temp\HpqKbHook-4bc3f3f4.dll
2017-09-18 14:39 - 2017-09-18 14:39 - 000064000 _____ () C:\Users\chapards\AppData\Local\Temp\HpqKbHook-5de35a5f.dll
2017-11-20 16:03 - 2017-11-20 16:03 - 000064000 _____ () C:\Users\chapards\AppData\Local\Temp\HpqKbHook-74df1f89.dll
2017-09-13 12:49 - 2017-11-13 15:33 - 019014672 _____ (Paessler AG (www.paessler.com) ) C:\Users\chapards\AppData\Local\Temp\PRTG_Enterprise_Console_Installer.exe
2017-03-16 13:48 - 2017-03-16 13:48 - 004216840 _____ (Microsoft Corporation) C:\Users\chapards\AppData\Local\Temp\spiceworks_redist.exe
2017-03-16 13:48 - 2017-03-16 13:48 - 004995416 _____ (Microsoft Corporation) C:\Users\chapards\AppData\Local\Temp\spiceworks_redist_10.exe
2017-09-08 10:32 - 2017-09-08 10:32 - 049533288 _____ (Sony) C:\Users\chapards\AppData\Local\Temp\xcs2050.tmp.exe
2017-01-11 12:27 - 2016-12-13 18:24 - 000990744 _____ (BlueStack Systems, Inc.) C:\Users\girardm\AppData\Local\Temp\BluestacksUninstaller.exe
2017-01-11 12:27 - 2016-12-13 18:23 - 000187416 _____ (BlueStack Systems) C:\Users\girardm\AppData\Local\Temp\HD-LibraryHandler.dll
2017-01-11 12:27 - 2016-12-13 18:21 - 000246808 _____ (BlueStack Systems) C:\Users\girardm\AppData\Local\Temp\HD-Logger-Native.dll
2016-07-22 14:51 - 2016-07-22 14:51 - 000346987 _____ (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna2927797078995521093.dll
2016-07-22 14:49 - 2016-07-22 14:49 - 000346987 _____ (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna4572747354685916121.dll
2016-07-20 07:45 - 2016-07-20 07:45 - 000346987 ____N (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna4618990250021036898.dll
2016-07-22 14:56 - 2016-07-22 14:56 - 000346987 ____N (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna6640648787657818184.dll
2015-07-23 14:53 - 2015-07-23 14:53 - 000120336 _____ (McAfee, Inc.) C:\Users\girardm\AppData\Local\Temp\McCSPInstall.dll
2016-06-22 11:20 - 2015-07-23 14:53 - 000162120 _____ (McAfee Inc.) C:\Users\girardm\AppData\Local\Temp\mccspuninstall.exe
2012-11-23 17:51 - 2012-11-23 17:51 - 000546408 ____R (Microsoft Corporation) C:\Users\girardm\AppData\Local\Temp\OfficeSetup.exe
2016-08-16 08:21 - 2017-04-14 12:51 - 019016400 _____ (Paessler AG (www.paessler.com) ) C:\Users\girardm\AppData\Local\Temp\PRTG_Enterprise_Console_Installer.exe
2012-11-23 17:51 - 2012-11-23 17:51 - 000546408 ____R (Microsoft Corporation) C:\Users\girardm\AppData\Local\Temp\setup32.exe
2016-06-22 11:32 - 2012-11-23 17:51 - 000546408 _____ (Microsoft Corporation) C:\Users\girardm\AppData\Local\Temp\setup64.exe
2017-03-16 10:18 - 2017-03-16 10:19 - 017560944 _____ (VMware, Inc. ) C:\Users\girardm\AppData\Local\Temp\VMware-UMClient.exe
2017-01-27 15:23 - 2017-01-27 15:23 - 048843976 _____ (Sony) C:\Users\girardm\AppData\Local\Temp\xcs5729.tmp.exe
2011-07-10 02:07 - 2011-07-10 02:07 - 000118784 _____ () C:\Users\girardm\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-11 12:00
==================== Fin de FRST.txt ============================
Exécuté par CHAPARDS (administrateur) sur PA006 (14-12-2017 16:54:17)
Exécuté depuis C:\Users\chapards\Desktop
Profils chargés: CHAPARDS (Profils disponibles: user & BRENIERL & PECHEREAUL & REVEILLEREE & GIRARDM & CHAPARDS & Administrateur)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(The Eraser Project) C:\Program Files\Eraser\Eraser.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\PccNTMon.exe
(Cisco WebEx LLC) C:\Windows\SysWOW64\atashost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(OCS Inventory NG) C:\Program Files (x86)\OCS Inventory Agent\OcsSystray.exe
(Paessler AG) C:\Program Files (x86)\PRTG Network Monitor\Enterprise Console\PRTG Enterprise Console.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel) C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
() C:\xampp\mysql\bin\mysqld.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\NTRTScan.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\pg_ctl.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Dell) C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.6\bin\postgres.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\OpenTFTPServer\OpenTFTPServerMT.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Sony) C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(OCS Inventory NG) C:\Program Files (x86)\OCS Inventory Agent\OcsService.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmListen.exe
(Veeam Software AG) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\110\LocalDB\Binn\sqlservr.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
() C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Security Agent\TmPfw.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [7823824 2015-09-21] (Dell Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935400 2015-05-29] (Synaptics Incorporated)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [528384 2015-11-10] (Greenshot)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1074600 2016-08-28] (The Eraser Project)
HKLM\...\Run: [Veeam.EndPoint.Tray.exe] => C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Tray.exe [946440 2017-04-23] (Veeam Software AG)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-15] (Intel Corporation)
HKLM-x32\...\Run: [OfficeScanNT Monitor] => C:\Program Files (x86)\Trend Micro\Security Agent\pccntmon.exe [1863072 2016-09-07] (Trend Micro Inc.)
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver Update Utility\DsaTray.exe [132856 2017-05-18] (Intel)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKU\S-1-5-21-121918642-729396558-3299086579-2697\...\Run: [Google Update] => C:\Users\chapards\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
HKU\S-1-5-21-121918642-729396558-3299086579-2697\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2105728 2017-05-31] (Sony)
HKU\S-1-5-21-121918642-729396558-3299086579-2697\...\Run: [StickIt] => C:\Program Files (x86)\StickIt\StickIt3.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OCS Inventory NG Systray.lnk [2017-10-03]
ShortcutTarget: OCS Inventory NG Systray.lnk -> C:\Program Files (x86)\OCS Inventory Agent\OcsSystray.exe (OCS Inventory NG)
Startup: C:\Users\chapards\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PRTG Enterprise Console.lnk [2017-06-01]
ShortcutTarget: PRTG Enterprise Console.lnk -> C:\Program Files (x86)\PRTG Network Monitor\Enterprise Console\PRTG Enterprise Console.exe (Paessler AG)
Startup: C:\Users\girardm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2016-10-28]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\girardm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PRTG Enterprise Console.lnk [2016-06-29]
ShortcutTarget: PRTG Enterprise Console.lnk -> C:\Program Files (x86)\PRTG Network Monitor\Enterprise Console\PRTG Enterprise Console.exe (Paessler AG)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 10.225.0.1 10.225.3.1
Tcpip\..\Interfaces\{36186CE4-3EAB-4A38-87A5-A98DD3DE37AF}: [DhcpNameServer] 10.225.0.1 10.225.3.1
Tcpip\..\Interfaces\{97C21969-3400-4177-B947-AF64F539DFB1}: [DhcpNameServer] 192.168.73.2
Tcpip\..\Interfaces\{F12B6A4A-FE24-454F-8E71-F5145AFD33C0}: [DhcpNameServer] 192.168.192.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-121918642-729396558-3299086579-2697\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-121918642-729396558-3299086579-2697\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-121918642-729396558-3299086579-2697 -> DefaultScope {DF94FB28-D7E9-4C1A-80DE-EEBDC37FF09B} URL =
SearchScopes: HKU\S-1-5-21-121918642-729396558-3299086579-2697 -> {DF94FB28-D7E9-4C1A-80DE-EEBDC37FF09B} URL =
BHO: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-09-01] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation)
BHO: Pas de nom -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Pas de fichier
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-01] (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-22] (Oracle Corporation)
BHO-x32: Programme d’aide de l’Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-22] (Oracle Corporation)
DPF: HKLM-x32 {8157E81A-275D-4BE8-A7A9-E36E62DF9C68} hxxps://srv-vm-secu.intra.nutriciab.fr:4343/SMB/console/html/root/AtxEnc.cab?ver=19,0,0,4305
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg.dll [2015-07-29] (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files (x86)\Trend Micro\Security Agent\TmIEPlg32.dll [2015-07-29] (Trend Micro Inc.)
FireFox:
========
FF DefaultProfile: xbpzqwal.default
FF ProfilePath: C:\Users\chapards\AppData\Roaming\Mozilla\Firefox\Profiles\xbpzqwal.default [2017-12-14]
FF HKLM\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF Extension: (Trend Micro NSC Firefox Extension) - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension [2016-10-06] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [{52d08c03-d98f-40ed-bd1c-e4ee1d7b9bdd}] - C:\Program Files (x86)\Trend Micro\Security Agent\FirefoxExtension
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-14] ()
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.978\npSurveillancePlugin_x86_64.dll [2016-09-23] (Synology)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-22] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-14] (Google Inc.)
FF Plugin-x32: @vmware.com/vmrc,version=5.5.0.00000 -> C:\Program Files (x86)\Common Files\VMware\VMware Remote Console Plug-in 5.5\Firefox\np-vmware-vmrc.dll [2015-08-28] (VMware, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.978\npSurveillancePlugin.dll [2016-09-23] (Synology)
FF Plugin-x32: vmware.com/client-support-plugin -> C:\Program Files (x86)\VMware\Client Integration Plug-in 5.5\npVMwareClientSupportPlugin-5-5-0.dll [2014-06-13] (VMware, Inc.)
FF Plugin HKU\S-1-5-21-121918642-729396558-3299086579-2697: @tools.google.com/Google Update;version=3 -> C:\Users\chapards\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-121918642-729396558-3299086579-2697: @tools.google.com/Google Update;version=9 -> C:\Users\chapards\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npatgpc.dll [2017-09-13] (Cisco WebEx LLC)
FF Plugin ProgramFiles/Appdata: C:\Users\chapards\AppData\Roaming\mozilla\plugins\npatgpc.dll [2017-09-13] (Cisco WebEx LLC)
Chrome:
=======
CHR Profile: C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-12-14]
CHR Extension: (Chrome Web Store Payments) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-14]
CHR Extension: (Pas de nom) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-14]
CHR Extension: (Chrome Media Router) - C:\Users\chapards\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-14]
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
S2 Apache2.2; C:\Xampp\apache\bin\httpd.exe [18432 2011-09-10] (Apache Software Foundation) [Fichier non signé]
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122736 2017-05-27] (AOMEI Tech Co., Ltd.)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [11071208 2015-07-07] (DisplayLink Corp.)
R2 DSAService; C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe [21240 2017-05-18] (Intel)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 hasplms; C:\Windows\system32\hasplms.exe [4621632 2015-04-14] (SafeNet Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [124520 2014-12-14] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [353896 2015-11-16] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-19] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 mysql; C:\Xampp\mysql\bin\my.ini [5399 2017-08-31] () [Fichier non signé]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-05-18] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [Fichier non signé]
R2 ntrtscan; C:\Program Files (x86)\Trend Micro\Security Agent\ntrtscan.exe [4420664 2016-09-07] (Trend Micro Inc.)
R2 OCS Inventory Service; C:\Program Files (x86)\OCS Inventory Agent\OcsService.exe [786432 2017-01-12] (OCS Inventory NG) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [Fichier non signé]
R2 postgresql-x64-9.6; C:\Program Files\PostgreSQL\9.6\bin\pg_ctl.exe [95232 2017-08-29] (PostgreSQL Global Development Group) [Fichier non signé]
S3 PrintNotify; C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll [2987520 2014-10-29] (Microsoft Corporation) [Fichier non signé]
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2014-04-15] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
R2 SONICWALL_NetExtender; C:\Program Files (x86)\SonicWALL\SSL-VPN\NetExtender\NEService64.exe [589312 2013-10-24] (Dell)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
S2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-08-17] (TeamViewer GmbH)
R2 TFTPServer; C:\OpenTFTPServer\OpenTFTPServerMT.exe [86161 2016-11-24] () [Fichier non signé]
R3 TMBMServer; C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe [470528 2017-03-21] (Trend Micro Inc.)
R3 TmCCSF; C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe [864600 2016-12-27] (Trend Micro Inc.)
R2 tmlisten; C:\Program Files (x86)\Trend Micro\Security Agent\tmlisten.exe [4256048 2017-06-02] (Trend Micro Inc.)
R3 TmPfw; C:\Program Files (x86)\Trend Micro\Security Agent\TmPfw.exe [601360 2015-05-14] (Trend Micro Inc.)
R3 TmProxy; C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe [930816 2015-07-29] (Trend Micro Inc.)
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 VeeamEndpointBackupSvc; C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe [114952 2017-04-23] (Veeam Software AG)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-07-22] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe [473824 2017-05-05] (Wondershare)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2205568 2017-05-31] (Sony)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831200 2015-05-18] (Intel® Corporation)
S4 mccspsvc; "C:\Program Files\Common Files\McAfee\CSP\1.6.1008.0\McCSPServiceHost.exe" [X]
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone toolkit pour Android\Library\DriverInstaller\DriverInstall.exe [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [51120 2016-12-23] ()
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-23] ()
S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] ()
S3 ampa; C:\Windows\SysWOW64\ampa.sys [38320 2016-12-25] ()
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2016-12-23] ()
S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [141624 2014-10-28] (Motorola Solutions, Inc.)
S3 btmhsf; C:\Windows\System32\DRIVERS\btmhsf.sys [1448248 2014-11-27] (Motorola Solutions, Inc.)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 DisplayLinkUsbIo_x64; C:\Windows\System32\DRIVERS\DisplayLinkUsbIo_x64_7.9.296.0.sys [58640 2017-06-14] ()
S3 dlcdcncm; C:\Windows\System32\DRIVERS\dlcdcncm62_x64.sys [91920 2015-07-07] (DisplayLink Corp.)
S3 dlusbaudio; C:\Windows\System32\DRIVERS\dlusbaudio_x64.sys [229648 2015-07-07] (DisplayLink Corp.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2015-04-14] (SafeNet Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31144 2015-06-23] (Intel Corporation)
S3 ibtusb; C:\Windows\System32\DRIVERS\ibtusb.sys [230128 2014-12-03] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2017-12-14] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [110016 2017-12-14] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-12-14] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-14] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-12-14] (Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [179456 2015-09-01] (Intel Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw02.sys [3541784 2015-06-18] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NxDrv; C:\Windows\System32\DRIVERS\NxDrv.sys [24264 2013-10-24] (SonicWALL Inc.)
R3 RTSUER; C:\Windows\System32\Drivers\RtsUer.sys [402136 2015-05-27] (Realsil Semiconductor Corporation)
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [131256 2017-03-24] (Trend Micro Inc.)
R1 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [334464 2017-06-14] (Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [88152 2017-03-24] (Trend Micro Inc.)
R2 TmFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmXPFlt.sys [393944 2017-03-21] (Trend Micro Inc.)
R1 TmLwf; C:\Windows\System32\DRIVERS\tmlwf.sys [157432 2015-07-20] (Trend Micro Inc.)
R2 TmPreFilter; C:\Program Files (x86)\Trend Micro\Security Agent\TmPreFlt.sys [66776 2017-03-21] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [109080 2013-01-09] (Trend Micro Inc.)
R1 tmumh; C:\Windows\System32\DRIVERS\TMUMH.sys [103640 2017-03-31] (Trend Micro Inc.)
R2 tmWfp; C:\Windows\System32\DRIVERS\tmwfp.sys [290296 2015-06-16] (Trend Micro Inc.)
S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [131144 2017-01-16] (Oracle Corporation)
R2 VSApiNt; C:\Program Files (x86)\Trend Micro\Security Agent\VSApiNt.sys [2621144 2017-03-21] (Trend Micro Inc.)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [93248 2016-09-30] (VMware, Inc.)
S2 vstor2; \??\C:\Program Files (x86)\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-14 16:54 - 2017-12-14 16:54 - 000030054 _____ C:\Users\chapards\Desktop\FRST.txt
2017-12-14 16:53 - 2017-12-14 13:38 - 002392064 _____ (Farbar) C:\Users\chapards\Desktop\FRST64.exe
2017-12-14 16:44 - 2017-12-14 16:44 - 000212002 _____ C:\Users\chapards\Desktop\ZHPDiag.txt
2017-12-14 16:37 - 2017-12-14 16:37 - 000000787 _____ C:\Users\chapards\Desktop\ZHPDiag.lnk
2017-12-14 16:36 - 2017-12-14 16:36 - 002945408 _____ C:\Users\chapards\Downloads\ZHPDiag3.exe
2017-12-14 16:15 - 2017-12-14 16:15 - 000065832 _____ C:\Users\chapards\Downloads\Devis M GABORIEAU.pdf
2017-12-14 16:14 - 2017-12-14 16:15 - 002989952 _____ C:\Users\chapards\Downloads\ZHPCleaner.exe
2017-12-14 15:30 - 2017-12-14 15:38 - 000000000 ____D C:\Users\chapards\AppData\Local\Google
2017-12-14 15:30 - 2017-12-14 15:30 - 000002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 15:30 - 2017-12-14 15:30 - 000002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-14 15:28 - 2017-12-14 15:30 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-14 15:28 - 2017-12-14 15:28 - 000003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-12-14 15:28 - 2017-12-14 15:28 - 000003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-12-14 15:26 - 2017-12-14 15:27 - 001129816 _____ (Google Inc.) C:\Users\chapards\Downloads\ChromeSetup.exe
2017-12-14 15:07 - 2017-12-14 15:07 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\Users\chapards\AppData\Local\VS Revo Group
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\ProgramData\VS Revo Group
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2017-12-14 15:07 - 2017-12-14 15:07 - 000000000 ____D C:\Program Files\VS Revo Group
2017-12-14 15:07 - 2009-12-30 11:21 - 000031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2017-12-14 15:03 - 2017-12-14 15:03 - 010694392 _____ (VS Revo Group ) C:\Users\chapards\Downloads\RevoUninProSetup.exe
2017-12-14 14:06 - 2017-12-14 16:31 - 000001503 _____ C:\Users\chapards\Desktop\ZHPCleaner.txt
2017-12-14 13:54 - 2017-12-14 16:38 - 000000000 ____D C:\Users\chapards\AppData\Roaming\ZHP
2017-12-14 13:54 - 2017-12-14 16:19 - 000000797 _____ C:\Users\chapards\Desktop\ZHPCleaner.lnk
2017-12-14 13:38 - 2017-12-14 13:38 - 000000000 ____D C:\FRST
2017-12-14 13:37 - 2017-12-14 13:38 - 002392064 _____ (Farbar) C:\Users\chapards\Downloads\FRST64.exe
2017-12-14 13:28 - 2017-12-14 16:37 - 000000000 ____D C:\Users\chapards\AppData\Local\ZHP
2017-12-14 13:25 - 2017-12-14 13:29 - 000000000 ____D C:\AdwCleaner
2017-12-14 13:24 - 2017-12-14 13:25 - 008187336 _____ (Malwarebytes) C:\Users\chapards\Downloads\adwcleaner_7.0.5.0.exe
2017-12-14 12:56 - 2017-12-14 14:28 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-12-14 12:56 - 2017-12-14 13:45 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-12-14 12:56 - 2017-12-14 13:45 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-12-14 12:56 - 2017-12-14 13:37 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-14 12:56 - 2017-12-14 12:56 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-12-14 12:55 - 2017-12-14 12:55 - 000001869 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-14 12:55 - 2017-12-14 12:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-14 12:55 - 2017-12-14 12:55 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-14 12:55 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-14 12:52 - 2017-12-14 12:53 - 083316440 _____ (Malwarebytes ) C:\Users\chapards\Downloads\mb3-setup-35891.35891-3.3.1.2183-1.0.262-1.0.3374.exe
2017-12-14 12:42 - 2017-12-14 12:43 - 000000201 _____ C:\Users\chapards\Downloads\Serial.zip
2017-12-13 17:03 - 2017-11-07 17:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-13 17:03 - 2017-11-07 17:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-13 17:03 - 2017-11-04 16:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-13 17:03 - 2017-11-04 16:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-13 17:03 - 2017-11-04 16:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-13 17:03 - 2017-11-04 16:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-13 17:03 - 2017-11-02 17:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-13 17:03 - 2017-11-02 16:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-13 17:03 - 2017-11-02 16:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-13 17:03 - 2017-11-02 16:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-13 17:03 - 2017-11-02 15:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-13 17:02 - 2017-11-14 04:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-13 17:02 - 2017-11-14 04:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-13 17:02 - 2017-11-14 04:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-13 17:02 - 2017-11-14 04:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-13 17:02 - 2017-11-14 04:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-13 17:02 - 2017-11-14 04:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-13 17:02 - 2017-11-14 04:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-13 17:02 - 2017-11-14 03:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-13 17:02 - 2017-11-14 01:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-13 17:02 - 2017-11-07 21:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-13 17:02 - 2017-11-07 21:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-13 17:02 - 2017-11-07 21:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-13 17:02 - 2017-11-07 21:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-13 17:02 - 2017-11-07 21:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-13 17:02 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-13 17:01 - 2017-11-15 02:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-13 17:01 - 2017-11-15 01:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-13 17:01 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-13 17:01 - 2017-11-14 04:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-13 17:01 - 2017-11-14 04:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-13 17:01 - 2017-11-14 04:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-13 17:01 - 2017-11-14 04:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-13 17:01 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-13 17:01 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-13 17:01 - 2017-11-14 04:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-13 17:01 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-13 17:01 - 2017-11-14 04:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-13 17:01 - 2017-11-14 04:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-13 17:01 - 2017-11-14 04:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-13 17:01 - 2017-11-14 04:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-13 17:01 - 2017-11-14 04:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-13 17:01 - 2017-11-14 04:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-13 17:01 - 2017-11-14 04:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-13 17:01 - 2017-11-14 04:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-13 17:01 - 2017-11-14 04:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-13 17:01 - 2017-11-14 03:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-13 17:01 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-13 17:01 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-13 17:01 - 2017-11-14 03:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-13 17:01 - 2017-11-14 03:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-13 17:01 - 2017-11-14 03:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-13 17:01 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-13 17:01 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-13 17:01 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-13 17:01 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-13 17:01 - 2017-11-14 02:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-13 17:01 - 2017-11-14 02:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-13 17:01 - 2017-11-14 02:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-13 17:01 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-13 17:01 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-13 17:01 - 2017-11-07 21:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-13 17:01 - 2017-11-07 21:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-13 17:01 - 2017-11-07 21:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-13 17:01 - 2017-11-07 21:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-13 17:01 - 2017-11-07 21:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-13 17:01 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-13 17:01 - 2017-11-07 21:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-13 17:01 - 2017-11-07 21:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-13 17:01 - 2017-11-07 21:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-13 17:01 - 2017-11-07 21:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-13 17:01 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-13 17:01 - 2017-11-07 21:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-13 17:01 - 2017-11-07 21:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-13 17:01 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-13 17:01 - 2017-11-07 21:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-13 17:01 - 2017-11-07 21:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-13 17:01 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-13 17:01 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-13 12:31 - 2017-12-13 12:32 - 000174363 _____ C:\Users\chapards\Documents\Recup PC Gaborieau Gerard.pdf
2017-12-13 12:21 - 2017-12-13 12:21 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF (3).pdf
2017-12-13 12:11 - 2017-12-13 12:11 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF (2).pdf
2017-12-13 11:08 - 2017-12-13 11:08 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF (1).pdf
2017-12-13 11:04 - 2017-12-13 11:04 - 000166840 _____ C:\Users\chapards\Downloads\UTILISER_Verifier_la_signature_document_PDF.pdf
2017-12-12 15:18 - 2017-12-12 15:19 - 058970243 _____ C:\Users\chapards\Downloads\SetupDesignReview2013.msi.zip
2017-12-12 15:16 - 2017-12-12 15:23 - 828943376 _____ (Autodesk, Inc.) C:\Users\chapards\Downloads\DWGTrueView_2018_FRA_64bit.sfx.exe
2017-12-12 14:56 - 2017-12-12 15:00 - 000000000 ____D C:\Users\chapards\Desktop\factures
2017-12-12 14:38 - 2017-12-12 14:39 - 019314656 _____ (TeamViewer GmbH) C:\Users\chapards\Downloads\TeamViewer_Setup.exe
2017-12-12 14:37 - 2017-12-12 14:42 - 532676608 _____ C:\Users\chapards\Downloads\deftZ-2017-1.iso
2017-12-12 08:36 - 2017-12-12 08:36 - 001381582 _____ (Igor Pavlov) C:\Users\chapards\Downloads\7z1604-x64 (1).exe
2017-12-12 08:18 - 2017-12-12 08:18 - 000000000 ____D C:\Users\chapards\AppData\Local\LogMeInInc
2017-12-08 12:18 - 2017-12-08 12:18 - 000476118 _____ C:\Users\chapards\Downloads\img001.pdf
2017-12-08 12:18 - 2017-12-08 12:18 - 000438447 _____ C:\Users\chapards\Downloads\img002.pdf
2017-12-08 12:17 - 2017-12-08 12:18 - 000475495 _____ C:\Users\chapards\Downloads\img003.pdf
2017-12-07 14:32 - 2017-12-07 14:32 - 005045256 _____ (TeamViewer) C:\Users\chapards\Downloads\TeamViewerQS_fr-idcpkzhzhz.exe
2017-12-06 15:18 - 2017-12-06 15:18 - 000005032 _____ C:\Users\chapards\Downloads\srv-hst-bkpnas_20171206.dss
2017-12-01 12:08 - 2017-12-01 12:08 - 000122768 _____ C:\Users\chapards\Documents\facturesport.pdf
2017-11-30 12:07 - 2017-11-30 12:07 - 000104574 _____ C:\Users\chapards\Downloads\bill_1206937419_eb2c7d77b99a5ec413c63533abfdb3e4 (1).pdf
2017-11-30 11:20 - 2017-11-30 11:22 - 000082654 _____ C:\Users\chapards\Downloads\chart (3).jpeg
2017-11-29 12:32 - 2017-11-29 12:32 - 005743090 _____ C:\Users\chapards\Desktop\Guide_technique_entretien_PUHZ.pdf
2017-11-29 12:25 - 2017-11-29 12:25 - 002315570 _____ C:\Users\chapards\Downloads\DevisMORICET (1).xlsx
2017-11-29 11:50 - 2017-11-29 11:50 - 000436523 _____ C:\Users\chapards\Downloads\FC1702129117.pdf
2017-11-29 11:42 - 2017-11-29 11:42 - 000000991 _____ C:\Users\chapards\AppData\Local\recently-used.xbel
2017-11-29 11:35 - 2017-11-29 11:43 - 000081987 _____ C:\Users\chapards\Downloads\chart (2).jpeg
2017-11-28 08:51 - 2017-10-17 00:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-11-28 08:51 - 2017-10-16 23:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-11-28 08:51 - 2017-10-12 01:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-11-28 08:50 - 2017-11-17 05:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-11-28 08:17 - 2017-11-30 11:09 - 000000000 ____D C:\Users\chapards\Desktop\note frais
2017-11-27 14:35 - 2017-11-27 14:35 - 000154516 _____ C:\Users\chapards\Documents\Recup port.pdf
2017-11-27 10:46 - 2017-11-27 10:46 - 000104574 _____ C:\Users\chapards\Downloads\bill_1206937419_eb2c7d77b99a5ec413c63533abfdb3e4.pdf
2017-11-27 10:18 - 2017-11-27 10:18 - 000095248 _____ C:\Users\chapards\Downloads\chart (1).jpeg
2017-11-27 09:50 - 2017-11-27 09:50 - 000127209 _____ C:\Users\chapards\Downloads\chart.jpeg
2017-11-23 10:13 - 2017-11-23 10:16 - 219152384 _____ C:\Users\chapards\Downloads\clonezilla-live-2.5.2-31-i686.iso
2017-11-23 10:11 - 2017-11-23 10:15 - 220200960 _____ C:\Users\chapards\Downloads\clonezilla-live-2.5.2-31-amd64.iso
2017-11-23 09:56 - 2017-11-23 10:00 - 261480448 _____ C:\Users\chapards\Downloads\redobackup-livecd-1.0.4.iso
2017-11-22 16:58 - 2017-11-22 16:58 - 007821485 _____ (Igor Pavlov) C:\Users\chapards\Downloads\fusioninventory-agent_windows-x64_2.3.7-portable.exe
2017-11-22 16:44 - 2017-11-22 16:44 - 006704967 _____ (Igor Pavlov) C:\Users\chapards\Downloads\fusioninventory-agent_windows-x64_2.3.17-portable.exe
2017-11-22 16:44 - 2014-05-01 23:04 - 000000000 ____D C:\Users\chapards\Downloads\FusionInventory-Agent
2017-11-21 15:13 - 2017-12-11 14:56 - 000004175 _____ C:\Users\chapards\Desktop\test purge system externe.txt
2017-11-21 09:10 - 2017-11-21 09:11 - 000000000 ____D C:\Users\chapards\AppData\Roaming\vlc
2017-11-20 15:35 - 2017-11-20 15:35 - 000000000 ____D C:\Users\chapards\AppData\Local\GoToAssist Remote Support Customer
2017-11-16 11:25 - 2017-11-16 11:25 - 000068683 _____ C:\Users\chapards\Documents\Devis Mme DELETANG.pdf
2017-11-15 17:05 - 2017-10-18 03:06 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2017-11-15 17:05 - 2017-10-18 03:06 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2017-11-15 17:02 - 2017-10-17 00:07 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-11-15 17:02 - 2017-10-16 22:55 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-11-15 17:02 - 2017-10-12 01:58 - 000382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 014635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2017-11-15 17:02 - 2017-10-12 01:55 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2017-11-15 17:02 - 2017-10-12 01:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2017-11-15 17:02 - 2017-10-12 01:55 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2017-11-15 17:02 - 2017-10-12 01:40 - 000308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-11-15 17:02 - 2017-10-12 01:39 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-11-15 17:02 - 2017-10-12 01:38 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-11-15 17:02 - 2017-10-12 01:38 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-11-15 17:02 - 2017-10-12 01:37 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2017-11-15 17:02 - 2017-10-12 01:37 - 011410944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 001549824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2017-11-15 17:02 - 2017-10-12 01:37 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2017-11-15 17:02 - 2017-10-12 01:26 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-11-15 17:02 - 2017-10-12 01:26 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-11-15 17:02 - 2017-10-12 01:25 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-11-15 17:02 - 2017-10-12 01:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2017-11-15 17:02 - 2017-10-12 01:24 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2017-11-15 17:02 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2017-11-15 17:02 - 2017-10-12 01:24 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2017-11-15 17:02 - 2017-10-12 01:20 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2017-11-15 17:02 - 2017-10-12 01:16 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-11-14 14:44 - 2017-11-15 11:33 - 000068533 _____ C:\Users\chapards\Documents\Devis Mme MORICET.pdf
2017-11-14 14:42 - 2017-11-16 11:29 - 002301374 _____ C:\Users\chapards\Downloads\DevisMORICET.xlsx
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-14 16:43 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-14 16:43 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-14 16:32 - 2017-06-01 09:57 - 000000000 ____D C:\Users\chapards\AppData\LocalLow\Mozilla
2017-12-14 16:32 - 2017-06-01 09:54 - 000000000 ____D C:\Users\chapards\AppData\Roaming\Mozilla
2017-12-14 16:32 - 2017-03-20 09:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-12-14 16:23 - 2017-06-01 09:27 - 000002052 ____H C:\Users\chapards\Documents\Default.rdp
2017-12-14 16:23 - 2016-06-27 12:53 - 000016191 _____ C:\Windows\cfgall.ini
2017-12-14 15:24 - 2016-06-22 11:13 - 000000144 _____ C:\Windows\system32\config\netlogon.ftl
2017-12-14 15:13 - 2016-06-22 13:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-14 14:25 - 2017-09-18 13:41 - 000000000 ____D C:\Users\chapards\AppData\Local\Deployment
2017-12-14 13:45 - 2010-11-21 07:19 - 000810338 _____ C:\Windows\system32\perfh00C.dat
2017-12-14 13:45 - 2010-11-21 07:19 - 000174834 _____ C:\Windows\system32\perfc00C.dat
2017-12-14 13:45 - 2009-07-14 06:13 - 001846274 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-14 13:45 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-12-14 13:38 - 2017-06-01 09:08 - 000000000 __SHD C:\Users\chapards\IntelGraphicsProfiles
2017-12-14 13:37 - 2016-10-04 08:14 - 000000000 ____D C:\ProgramData\Veeam
2017-12-14 13:36 - 2016-06-22 11:29 - 000000000 ____D C:\ProgramData\VMware
2017-12-14 13:32 - 2017-07-19 13:16 - 000000082 _____ C:\Windows\SysWOW64\winsevr.dat
2017-12-14 13:32 - 2017-07-19 13:15 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2017-12-14 13:32 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-14 12:55 - 2016-10-06 16:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-14 12:46 - 2016-06-22 11:15 - 000007156 __RSH C:\ProgramData\ntuser.pol
2017-12-14 10:24 - 2017-06-08 08:36 - 000003952 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BCB3A008-548D-4509-B2BC-72874893EDDE}
2017-12-14 09:11 - 2017-06-01 16:22 - 000027341 _____ C:\Users\chapards\Desktop\Horaires.xlsx
2017-12-14 09:10 - 2017-06-01 10:12 - 000000000 ____D C:\Users\chapards\AppData\Roaming\VMware
2017-12-14 08:14 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-14 08:14 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-13 08:28 - 2016-06-22 11:28 - 000000000 ____D C:\Windows\system32\appmgmt
2017-12-12 15:13 - 2017-07-05 09:14 - 000000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2017-12-12 14:39 - 2017-06-01 09:19 - 000000000 ____D C:\Users\chapards\AppData\Roaming\TeamViewer
2017-12-12 09:41 - 2017-06-06 08:32 - 000014295 _____ C:\Users\chapards\Desktop\Classeur1.xlsx
2017-12-12 09:36 - 2017-06-06 08:32 - 000014296 _____ C:\Users\chapards\Desktop\D4C7F1A.tmp
2017-12-12 09:33 - 2017-06-06 08:32 - 000014300 _____ C:\Users\chapards\Desktop\DEC66517.tmp
2017-12-12 09:32 - 2017-06-06 08:32 - 000014296 _____ C:\Users\chapards\Desktop\2BE5E0E0.tmp
2017-12-11 12:07 - 2017-11-08 08:14 - 000000000 ____D C:\Users\chapards\AppData\Local\ElevatedDiagnostics
2017-12-11 09:29 - 2009-07-14 06:32 - 000000000 ____D C:\Windows\system32\FxsTmp
2017-12-11 08:16 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2017-12-06 09:09 - 2009-07-14 06:32 - 000000000 ____D C:\Windows\Downloaded Program Files
2017-12-06 08:14 - 2017-09-06 07:09 - 000000000 ____D C:\Users\chapards\Desktop\Perso
2017-12-05 16:45 - 2017-03-21 15:26 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-11-30 08:29 - 2017-04-13 20:48 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 11:42 - 2017-08-11 14:53 - 000000000 ____D C:\Users\chapards\AppData\Local\gtk-2.0
2017-11-29 11:42 - 2017-08-11 14:50 - 000000000 ____D C:\Users\chapards\.gimp-2.8
2017-11-28 15:54 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2017-11-28 14:02 - 2009-07-14 05:45 - 005051840 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-27 12:03 - 2017-10-25 07:46 - 000000100 _____ C:\Users\chapards\Downloads\rufus.ini
2017-11-27 11:41 - 2017-11-13 13:54 - 000000000 ____D C:\Users\chapards\Desktop\cle
2017-11-27 09:36 - 2017-08-28 15:10 - 000001366 _____ C:\Users\chapards\Desktop\util.txt
2017-11-23 09:27 - 2017-10-04 10:34 - 000000000 ____D C:\Program Files (x86)\StickIt
2017-11-20 10:38 - 2017-09-18 13:04 - 000003590 _____ C:\Users\chapards\Desktop\ESX02.csv
2017-11-20 08:26 - 2017-06-01 09:58 - 000003680 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-121918642-729396558-3299086579-2697UA
2017-11-20 08:26 - 2017-06-01 09:58 - 000003408 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-121918642-729396558-3299086579-2697Core
2017-11-16 08:38 - 2016-06-22 13:04 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-11-16 08:26 - 2009-07-14 05:57 - 000001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-11-14 14:33 - 2017-08-24 11:54 - 000451584 _____ (Trend Micro Inc.) C:\Windows\RegBootClean64.exe
==================== Fichiers à la racine de certains dossiers =======
2017-06-01 10:12 - 2017-06-01 10:12 - 000002084 _____ () C:\Users\chapards\.csp_ovftool_settings.js
2016-10-06 08:46 - 2016-10-06 08:46 - 000002084 _____ () C:\Users\girardm\.csp_ovftool_settings.js
2016-10-06 08:46 - 2016-10-06 08:46 - 000000224 _____ () C:\Users\girardm\.VMwareClientSupportPlugin-settings.js
2016-06-30 10:43 - 2016-06-30 10:43 - 000531368 _____ (Simon Tatham) C:\Program Files (x86)\putty.exe
2017-09-01 14:35 - 2017-09-20 12:02 - 000000600 _____ () C:\Users\chapards\AppData\Roaming\winscp.rnd
2017-08-18 10:15 - 2017-09-27 09:27 - 000000600 _____ () C:\Users\chapards\AppData\Local\PUTTY.RND
2017-11-29 11:42 - 2017-11-29 11:42 - 000000991 _____ () C:\Users\chapards\AppData\Local\recently-used.xbel
2017-08-24 13:55 - 2017-08-24 13:55 - 000000017 _____ () C:\Users\chapards\AppData\Local\resmon.resmoncfg
Certains fichiers dans TEMP:
====================
2017-09-18 13:41 - 2017-09-18 13:41 - 000061952 _____ () C:\Users\chapards\AppData\Local\Temp\cpqma-4bc3f3f4.dll
2017-09-18 14:39 - 2017-09-18 14:39 - 000061952 _____ () C:\Users\chapards\AppData\Local\Temp\cpqma-5de35a5f.dll
2017-11-20 16:03 - 2017-11-20 16:03 - 000061952 _____ () C:\Users\chapards\AppData\Local\Temp\cpqma-74df1f89.dll
2017-09-14 07:34 - 2017-07-13 08:50 - 003500640 ____N (Adobe Systems Incorporated) C:\Users\chapards\AppData\Local\Temp\Creative Cloud Uninstaller.exe
2017-09-18 13:41 - 2017-09-18 13:41 - 000064000 _____ () C:\Users\chapards\AppData\Local\Temp\HpqKbHook-4bc3f3f4.dll
2017-09-18 14:39 - 2017-09-18 14:39 - 000064000 _____ () C:\Users\chapards\AppData\Local\Temp\HpqKbHook-5de35a5f.dll
2017-11-20 16:03 - 2017-11-20 16:03 - 000064000 _____ () C:\Users\chapards\AppData\Local\Temp\HpqKbHook-74df1f89.dll
2017-09-13 12:49 - 2017-11-13 15:33 - 019014672 _____ (Paessler AG (www.paessler.com) ) C:\Users\chapards\AppData\Local\Temp\PRTG_Enterprise_Console_Installer.exe
2017-03-16 13:48 - 2017-03-16 13:48 - 004216840 _____ (Microsoft Corporation) C:\Users\chapards\AppData\Local\Temp\spiceworks_redist.exe
2017-03-16 13:48 - 2017-03-16 13:48 - 004995416 _____ (Microsoft Corporation) C:\Users\chapards\AppData\Local\Temp\spiceworks_redist_10.exe
2017-09-08 10:32 - 2017-09-08 10:32 - 049533288 _____ (Sony) C:\Users\chapards\AppData\Local\Temp\xcs2050.tmp.exe
2017-01-11 12:27 - 2016-12-13 18:24 - 000990744 _____ (BlueStack Systems, Inc.) C:\Users\girardm\AppData\Local\Temp\BluestacksUninstaller.exe
2017-01-11 12:27 - 2016-12-13 18:23 - 000187416 _____ (BlueStack Systems) C:\Users\girardm\AppData\Local\Temp\HD-LibraryHandler.dll
2017-01-11 12:27 - 2016-12-13 18:21 - 000246808 _____ (BlueStack Systems) C:\Users\girardm\AppData\Local\Temp\HD-Logger-Native.dll
2016-07-22 14:51 - 2016-07-22 14:51 - 000346987 _____ (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna2927797078995521093.dll
2016-07-22 14:49 - 2016-07-22 14:49 - 000346987 _____ (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna4572747354685916121.dll
2016-07-20 07:45 - 2016-07-20 07:45 - 000346987 ____N (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna4618990250021036898.dll
2016-07-22 14:56 - 2016-07-22 14:56 - 000346987 ____N (Java(TM) Native Access (JNA)) C:\Users\girardm\AppData\Local\Temp\jna6640648787657818184.dll
2015-07-23 14:53 - 2015-07-23 14:53 - 000120336 _____ (McAfee, Inc.) C:\Users\girardm\AppData\Local\Temp\McCSPInstall.dll
2016-06-22 11:20 - 2015-07-23 14:53 - 000162120 _____ (McAfee Inc.) C:\Users\girardm\AppData\Local\Temp\mccspuninstall.exe
2012-11-23 17:51 - 2012-11-23 17:51 - 000546408 ____R (Microsoft Corporation) C:\Users\girardm\AppData\Local\Temp\OfficeSetup.exe
2016-08-16 08:21 - 2017-04-14 12:51 - 019016400 _____ (Paessler AG (www.paessler.com) ) C:\Users\girardm\AppData\Local\Temp\PRTG_Enterprise_Console_Installer.exe
2012-11-23 17:51 - 2012-11-23 17:51 - 000546408 ____R (Microsoft Corporation) C:\Users\girardm\AppData\Local\Temp\setup32.exe
2016-06-22 11:32 - 2012-11-23 17:51 - 000546408 _____ (Microsoft Corporation) C:\Users\girardm\AppData\Local\Temp\setup64.exe
2017-03-16 10:18 - 2017-03-16 10:19 - 017560944 _____ (VMware, Inc. ) C:\Users\girardm\AppData\Local\Temp\VMware-UMClient.exe
2017-01-27 15:23 - 2017-01-27 15:23 - 048843976 _____ (Sony) C:\Users\girardm\AppData\Local\Temp\xcs5729.tmp.exe
2011-07-10 02:07 - 2011-07-10 02:07 - 000118784 _____ () C:\Users\girardm\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-11 12:00
==================== Fin de FRST.txt ============================