Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 23-12-2017 01
Exécuté par ziwass (administrateur) sur ZIWASS-PC (24-12-2017 13:28:36)
Exécuté depuis C:\Users\ziwass\Desktop
Profils chargés: ziwass (Profils disponibles: ziwass)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\FPSensor\bin\DpHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(ZKSoftware Inc) C:\Program Files (x86)\FPSensor\bin\iZHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Dell) C:\Users\ziwass\AppData\Local\Apps\2.0\QH42T5EL.049\PB7JH6LD.V13\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(PowerISO Computing, Inc.) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2176296 2010-06-10] (Synaptics Incorporated)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1926928 2009-09-21] (Intel(R) Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-01-21] (IDT, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [167936 2008-11-02] (PowerISO Computing, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3487128 2012-05-02] (Tonec Inc.)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [GoogleChromeAutoLaunch_0AE31B4F8E820B2D8D16F4B1040B7242] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664 2017-12-06] (Google Inc.)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [41061856 2017-11-20] ()
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [DellSystemDetect] => C:\Users\ziwass\AppData\Local\Apps\2.0\QH42T5EL.049\PB7JH6LD.V13\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe [310728 2017-02-05] (Dell)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: F - F:\SETUP.EXE
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: H - H:\RunThis.exe
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: {045d4196-13a9-11e6-9186-9439e5e402d6} - G:\SISetup.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5D5AB2D4-9DDB-4A85-830B-056445B2AE3E}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5D5AB2D4-9DDB-4A85-830B-056445B2AE3E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6F0D3AE9-A095-4A4E-BE52-FA013C9FA412}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{8BA257E3-E890-4E62-BB0A-10DCE9A543E4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8BE25FBB-84AE-437D-A4EC-8CBCB1AF59A9}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-700845423-2606857621-1733508647-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-700845423-2606857621-1733508647-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://maktoob.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__171028__yaie&p={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-05-02] (Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-05-02] (Internet Download Manager, Tonec Inc.)
BHO-x32: Foxit PhantomPDF Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2017-10-21] ()
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Foxit PhantomPDF Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2017-10-21] ()
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: sb6luiyl.default
FF ProfilePath: C:\Users\ziwass\AppData\Roaming\Mozilla\Firefox\Profiles\sb6luiyl.default [2017-12-23]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2017-10-09] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5 [2017-04-24] [Legacy] [non signé]
FF HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-10] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default [2017-12-24]
CHR Extension: (Slides) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-25]
CHR Extension: (YouTube) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-25]
CHR Extension: (Foxit PDF Creator) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\cifnddnffldieaamihfkhkdgnbhfmaci [2017-11-29]
CHR Extension: (Adobe Acrobat) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-25]
CHR Extension: (Sheets) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-25]
CHR Extension: (AdBlock) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
CHR Extension: (Skype) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-12-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Browsec VPN - Free and Unlimited VPN) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh [2017-11-22]
CHR Extension: (Gmail) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-25]
CHR Extension: (Chrome Media Router) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-07]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKU\S-1-5-21-700845423-2606857621-1733508647-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 DpHost; C:\Program Files (x86)\FPSensor\bin\DpHost.exe [237568 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé]
S3 FoxitPhantomService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2017-10-29] (Foxit Software Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332144 2017-11-21] (HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc.)
R2 iZHost; C:\Program Files (x86)\FPSensor\bin\iZHost.exe [244736 2009-12-21] (ZKSoftware Inc) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [315664 2009-09-21] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe [244736 2010-01-21] (IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 OverwolfUpdater; "C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe" /RunningFrom SCM" [X]
S2 Soda PDF Desktop Creator; "C:\Program Files\Soda PDF Desktop\creator\common\creator-ws.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dpK00701; C:\Windows\SysWOW64\DRIVERS\dpK00701.sys [46592 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé]
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] ()
S3 fwlanusb6_860; C:\Windows\System32\DRIVERS\fwlanusb6_860.sys [2274336 2015-07-20] (AVM GmbH)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2017-12-23] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-12-24] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-24] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-12-24] (Malwarebytes)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2017-12-23] ()
S3 usbdpfp; C:\Windows\SysWOW64\DRIVERS\usbdpfp.sys [47104 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé]
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-24 13:28 - 2017-12-24 13:29 - 000019884 _____ C:\Users\ziwass\Desktop\FRST.txt
2017-12-24 13:28 - 2017-12-24 13:28 - 000000000 ____D C:\FRST
2017-12-24 13:26 - 2017-12-24 13:26 - 002392064 _____ (Farbar) C:\Users\ziwass\Desktop\FRST64.exe
2017-12-24 13:17 - 2017-12-24 13:22 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-12-24 01:58 - 2017-12-24 01:58 - 001150079 _____ C:\Users\ziwass\Desktop\rslt_mvtens_col_2018171223.pdf
2017-12-24 01:42 - 2017-12-24 01:42 - 000004954 _____ C:\Users\ziwass\Desktop\scan.txt
2017-12-23 23:57 - 2017-12-24 13:17 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-12-23 23:57 - 2017-12-23 23:57 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-12-23 23:56 - 2017-12-24 00:53 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-23 23:56 - 2017-12-23 23:56 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-23 23:56 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-23 23:49 - 2017-12-23 23:49 - 000007154 _____ C:\Users\ziwass\Desktop\rk_F410.tmp.txt
2017-12-23 23:46 - 2017-12-23 23:46 - 000006866 _____ C:\Users\ziwass\Desktop\rk_25D8.tmp.txt
2017-12-22 23:38 - 2017-12-23 23:11 - 000028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-12-22 23:35 - 2017-12-22 23:35 - 000000858 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\ProgramData\RogueKiller
2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\Program Files\RogueKiller
2017-12-18 22:09 - 2017-12-18 22:49 - 000000000 ____D C:\Users\ziwass\Desktop\Nouveau dossier (2)
2017-12-18 21:44 - 2017-12-18 21:45 - 002923021 _____ C:\Users\ziwass\Downloads\exo.ps
2017-12-18 00:01 - 2017-12-18 00:01 - 000042136 _____ C:\Users\ziwass\Downloads\meth_19.pdf
2017-12-18 00:00 - 2017-12-18 00:00 - 000092755 _____ C:\Users\ziwass\Downloads\exo1_20.pdf
2017-12-18 00:00 - 2017-12-18 00:00 - 000055513 _____ C:\Users\ziwass\Downloads\colle_20.pdf
2017-12-18 00:00 - 2017-12-18 00:00 - 000037395 _____ C:\Users\ziwass\Downloads\exo1_21.pdf
2017-12-17 23:59 - 2017-12-17 23:59 - 000070063 _____ C:\Users\ziwass\Downloads\colle_19.pdf
2017-12-17 23:59 - 2017-12-17 23:59 - 000057693 _____ C:\Users\ziwass\Downloads\meth_18.pdf
2017-12-17 23:57 - 2017-12-17 23:57 - 000317890 _____ C:\Users\ziwass\Downloads\colles1213_enonces.pdf
2017-12-15 22:47 - 2017-12-15 22:48 - 000262144 _____ C:\Windows\Minidump\121517-22479-01.dmp
2017-12-15 22:47 - 2017-12-15 22:47 - 476906126 _____ C:\Windows\MEMORY.DMP
2017-12-15 22:47 - 2017-12-15 22:47 - 000000000 ____D C:\Windows\Minidump
2017-12-15 14:23 - 2017-12-24 13:20 - 000000000 ___RD C:\Users\ziwass\Google Drive
2017-12-15 14:23 - 2017-12-15 14:23 - 000001672 _____ C:\Users\ziwass\Desktop\Google Drive.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000002042 _____ C:\Users\Public\Desktop\Google Slides.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000002040 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000002030 _____ C:\Users\Public\Desktop\Google Docs.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2017-12-15 14:18 - 2017-12-15 14:18 - 001129816 _____ (Google Inc.) C:\Users\ziwass\Downloads\installbackupandsync.exe
2017-12-11 00:06 - 2017-12-11 00:06 - 000417870 _____ C:\Users\ziwass\Downloads\www.mathprepa.fr-solutions-exercices-chap01.pdf
2017-12-11 00:04 - 2017-12-11 00:04 - 000278223 _____ C:\Users\ziwass\Downloads\www.mathprepa.fr-exercices-chap01.pdf
2017-12-09 16:28 - 2017-12-09 16:37 - 000000000 ____D C:\Users\ziwass\Desktop\DS
2017-12-09 00:02 - 2017-12-09 00:02 - 000195636 _____ C:\Users\ziwass\Downloads\Demande_de_Mouvement_Enseignant-20171209.pdf
2017-12-08 18:02 - 2017-12-08 18:02 - 000222133 _____ C:\Users\ziwass\Desktop\serie4-1sc-scalaire.pdf
2017-12-07 14:25 - 2017-12-07 14:25 - 000000000 ____D C:\Users\ziwass\AppData\Local\Foxit PhantomPDF
2017-12-07 14:11 - 2017-12-07 14:11 - 000100555 _____ C:\Users\ziwass\Downloads\Cours_Suites (1).pdf
2017-12-07 14:10 - 2017-12-07 14:11 - 000100555 _____ C:\Users\ziwass\Downloads\Cours_Suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000272829 _____ C:\Users\ziwass\Downloads\Liste 20 suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000213601 _____ C:\Users\ziwass\Downloads\Liste 21 suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000127674 _____ C:\Users\ziwass\Downloads\Liste 19 suites .pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000105040 _____ C:\Users\ziwass\Downloads\Liste 16 suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000101158 _____ C:\Users\ziwass\Downloads\Liste 18 suite.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000100946 _____ C:\Users\ziwass\Downloads\Liste 17 suites.pdf
2017-12-07 12:26 - 2017-12-07 12:26 - 000105328 _____ C:\Users\ziwass\Downloads\Liste 15 suites.pdf
2017-12-07 12:25 - 2017-12-07 12:25 - 000158316 _____ C:\Users\ziwass\Downloads\complexes.pdf
2017-12-07 12:24 - 2017-12-07 12:24 - 000272616 _____ C:\Users\ziwass\Downloads\complexe et ensemble de points.pdf
2017-12-07 12:24 - 2017-12-07 12:24 - 000267801 _____ C:\Users\ziwass\Downloads\asymptote.pdf
2017-12-07 12:24 - 2017-12-07 12:24 - 000206545 _____ C:\Users\ziwass\Downloads\arithmétique.pdf
2017-12-04 14:42 - 2017-12-04 14:59 - 000000000 ____D C:\Users\ziwass\Desktop\Barycentre
2017-12-01 14:13 - 2017-12-01 14:13 - 000169699 _____ C:\Users\ziwass\Downloads\فرض محروس رقم 1 الدورة الاولى في المنطق.pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000588440 _____ C:\Users\ziwass\Downloads\solution.rar
2017-12-01 14:12 - 2017-12-01 14:12 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie (2).pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000099291 _____ C:\Users\ziwass\Downloads\DM (2).pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000093002 _____ C:\Users\ziwass\Downloads\trigo_limites (1).pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000042309 _____ C:\Users\ziwass\Downloads\SM1_DS05_Rotation_Limites.pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000027796 _____ C:\Users\ziwass\Downloads\SM1_DS06_Derivat_Etude_FctNum.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000034923 _____ C:\Users\ziwass\Downloads\SM1_DS03_Produit_Scalaire_Analytique.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000031111 _____ C:\Users\ziwass\Downloads\SM1_DS04_Trigo_Suites_Num.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000026941 _____ C:\Users\ziwass\Downloads\SM1_DS01_Logique_Ensembles_Applications.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000022579 _____ C:\Users\ziwass\Downloads\SM1_DS02Bis_Generality_Fcts_Barycentre.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000021972 _____ C:\Users\ziwass\Downloads\SM1_DM02_Generality_Foncts_Barycentre.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000021804 _____ C:\Users\ziwass\Downloads\SM1_DM01_Logique_Ensembles_Applications.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000021709 _____ C:\Users\ziwass\Downloads\SM1_DS02_Generality_Fcts_Barycentre.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000017374 _____ C:\Users\ziwass\Downloads\SM1_DM00_revision_TCS.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000233464 _____ C:\Users\ziwass\Downloads\DERIVABILITE.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000130939 _____ C:\Users\ziwass\Downloads\denomb.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000076768 _____ C:\Users\ziwass\Downloads\continuite.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000055423 _____ C:\Users\ziwass\Downloads\ensembles_applications.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000055214 _____ C:\Users\ziwass\Downloads\sujet_etude_1Bac.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000055214 _____ C:\Users\ziwass\Downloads\sujet_etude_1Bac (1).pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000046273 _____ C:\Users\ziwass\Downloads\serie3_deri.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000045080 _____ C:\Users\ziwass\Downloads\logique.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000044105 _____ C:\Users\ziwass\Downloads\serie1_deri.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000040021 _____ C:\Users\ziwass\Downloads\serie2_deri.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000027696 _____ C:\Users\ziwass\Downloads\log.pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie (1).pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000099291 _____ C:\Users\ziwass\Downloads\DM.pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000099291 _____ C:\Users\ziwass\Downloads\DM (1).pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000093002 _____ C:\Users\ziwass\Downloads\trigo_limites.pdf
2017-12-01 14:08 - 2017-12-01 14:08 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie.pdf
2017-12-01 14:00 - 2017-12-01 14:01 - 009907112 _____ C:\Users\ziwass\Downloads\عبد الله بن لختير-أحمد مومني-خ.هدار- ياسين المغازلي-20171201T140048Z-001.zip
2017-12-01 14:00 - 2017-12-01 14:00 - 000068941 _____ C:\Users\ziwass\Downloads\DmS2Sr15A-002-Mghazli-12_13 (1).pdf
2017-12-01 13:59 - 2017-12-01 13:59 - 000068941 _____ C:\Users\ziwass\Downloads\DmS2Sr15A-002-Mghazli-12_13.pdf
2017-12-01 13:57 - 2017-12-01 13:57 - 000100817 _____ C:\Users\ziwass\Downloads\1 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf
2017-12-01 13:57 - 2017-12-01 13:57 - 000100728 _____ C:\Users\ziwass\Downloads\3 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf
2017-12-01 13:57 - 2017-12-01 13:57 - 000098031 _____ C:\Users\ziwass\Downloads\2 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf
2017-12-01 13:53 - 2017-12-01 13:53 - 000063806 _____ C:\Users\ziwass\Downloads\plugin-d1s1_1sm_bel.pdf
2017-12-01 12:42 - 2017-12-01 12:42 - 000000000 ____D C:\Users\ziwass\Downloads\devoir-1-partier-1-maths-1bac-sci-maths-1trim
2017-11-29 23:33 - 2017-11-29 23:34 - 000096256 _____ C:\Users\ziwass\Downloads\20171025131440tableau.xls
2017-11-29 00:11 - 2017-11-29 00:12 - 021759906 _____ C:\Users\ziwass\Downloads\Foxit Phantom PDF Business v8.2.0.2192 Crack.rar
2017-11-29 00:04 - 2017-11-29 00:04 - 000001089 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk
2017-11-29 00:03 - 2017-11-29 00:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2017-11-29 00:01 - 2017-11-29 00:01 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2017-11-28 01:30 - 2017-11-29 00:05 - 000000000 ____D C:\ProgramData\Foxit Software
2017-11-28 01:29 - 2017-11-29 00:04 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-28 01:28 - 2017-11-28 01:33 - 000000000 ____D C:\Users\Public\Foxit Software
2017-11-28 01:27 - 2017-11-29 00:03 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\Foxit Software
2017-11-26 23:46 - 2017-11-26 23:46 - 000186537 _____ C:\Users\ziwass\Downloads\رياضيات-النجاح-141763504290472.pdf
2017-11-25 13:32 - 2017-11-25 13:32 - 000344409 _____ C:\Users\ziwass\Downloads\output (3).pdf
2017-11-25 13:25 - 2017-11-25 13:25 - 000340018 _____ C:\Users\ziwass\Downloads\exercices_corriges_ensembles_et_applications.pdf
2017-11-24 23:24 - 2017-11-29 00:20 - 000756277 _____ C:\Users\ziwass\Downloads\ANALY5.PDF
2017-11-24 22:58 - 2017-11-24 22:58 - 000381268 _____ C:\Users\ziwass\Downloads\resume-etude-de-fonction.pdf
2017-11-24 22:56 - 2017-11-24 22:56 - 001954380 _____ C:\Users\ziwass\Downloads\al7ma02tepa0113-sequence-02.pdf
2017-11-24 22:54 - 2017-11-24 22:54 - 000072210 _____ C:\Users\ziwass\Downloads\resume_recurrence.pdf
2017-11-24 22:54 - 2017-11-24 22:54 - 000052530 _____ C:\Users\ziwass\Downloads\limites_suite_schema.pdf
2017-11-24 22:54 - 2017-11-24 22:54 - 000051615 _____ C:\Users\ziwass\Downloads\02_fiche_recurrence_limite_suite.pdf
2017-11-24 22:53 - 2017-11-24 22:53 - 000085219 _____ C:\Users\ziwass\Downloads\resume_suites.pdf
2017-11-24 22:53 - 2017-11-24 22:53 - 000046860 _____ C:\Users\ziwass\Downloads\03_limites_radicaux.pdf
2017-11-24 22:53 - 2017-11-24 22:53 - 000031358 _____ C:\Users\ziwass\Downloads\resume_dev_usuelles.pdf
2017-11-24 22:52 - 2017-11-24 22:52 - 000127589 _____ C:\Users\ziwass\Downloads\resume_lim_cont_dev.pdf
2017-11-24 15:21 - 2017-11-24 15:21 - 000117605 _____ C:\Users\ziwass\Downloads\output (2).pdf
2017-11-24 15:16 - 2017-11-24 15:16 - 000115477 _____ C:\Users\ziwass\Downloads\serie4-1sc-scalaire.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-24 13:16 - 2009-07-14 05:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-24 10:08 - 2017-04-20 20:29 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\DMCache
2017-12-24 02:06 - 2017-06-22 16:41 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\WhatsApp
2017-12-23 09:15 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-23 09:15 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-21 13:02 - 2017-11-19 14:09 - 000003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForziwass
2017-12-21 13:02 - 2017-11-19 14:09 - 000000336 _____ C:\Windows\Tasks\HPCeeScheduleForziwass.job
2017-12-18 22:50 - 2017-11-23 21:30 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\TeXstudio
2017-12-16 01:02 - 2017-09-22 14:50 - 000000000 ____D C:\Users\ziwass\Desktop\Cours
2017-12-15 14:23 - 2015-11-11 20:44 - 000000000 ____D C:\Users\ziwass
2017-12-15 14:20 - 2015-11-14 11:17 - 000000000 ____D C:\Users\ziwass\AppData\Local\Google
2017-12-15 14:20 - 2015-11-14 11:17 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-10 23:30 - 2017-06-22 16:42 - 000002155 _____ C:\Users\ziwass\Desktop\WhatsApp.lnk
2017-12-10 23:30 - 2017-06-22 16:42 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2017-12-10 23:30 - 2017-06-22 16:41 - 000000000 ____D C:\Users\ziwass\AppData\Local\WhatsApp
2017-12-10 23:29 - 2017-06-22 16:40 - 000000000 ____D C:\Users\ziwass\AppData\Local\SquirrelTemp
2017-12-07 12:11 - 2015-11-14 11:15 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-03 19:31 - 2017-11-06 23:34 - 000087313 _____ C:\Users\ziwass\Desktop\sujet.pdf
2017-12-01 22:20 - 2017-04-12 00:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 19:23 - 2017-04-02 18:39 - 000000000 ____D C:\ProgramData\AVAST Software
2017-11-29 00:22 - 2017-04-20 20:29 - 000000000 ____D C:\Users\ziwass\Downloads\Compressed
2017-11-24 23:15 - 2017-11-07 00:34 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\inkscape
==================== Fichiers à la racine de certains dossiers =======
2017-11-07 00:53 - 2017-11-07 00:53 - 000000813 _____ () C:\Users\ziwass\AppData\Local\recently-used.xbel
2017-07-21 23:27 - 2017-07-21 23:27 - 000000000 _____ () C:\Users\ziwass\AppData\Local\{5838B9F2-3237-435A-BAD2-3FF522B20E4B}
Certains fichiers dans TEMP:
====================
2017-12-22 23:35 - 2010-11-21 03:23 - 001731936 _____ (Microsoft Corporation) C:\Users\ziwass\AppData\Local\Temp\dllnt_dump.dll
2017-11-28 23:30 - 2017-10-18 19:55 - 004782656 _____ (Foxit Corporation) C:\Users\ziwass\AppData\Local\Temp\FoxitUpdater.exe
2017-11-19 14:02 - 2017-10-17 14:01 - 000927784 _____ () C:\Users\ziwass\AppData\Local\Temp\TAInstaller.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll
[2010-11-21 03:24] - [2010-11-21 03:24] - 001008640 _____ (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E
C:\Windows\SysWOW64\User32.dll
[2015-11-13 23:02] - [2015-11-13 23:02] - 000833024 _____ (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-19 01:02
==================== Fin de FRST.txt ============================
Exécuté par ziwass (administrateur) sur ZIWASS-PC (24-12-2017 13:28:36)
Exécuté depuis C:\Users\ziwass\Desktop
Profils chargés: ziwass (Profils disponibles: ziwass)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\FPSensor\bin\DpHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(ZKSoftware Inc) C:\Program Files (x86)\FPSensor\bin\iZHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Dell) C:\Users\ziwass\AppData\Local\Apps\2.0\QH42T5EL.049\PB7JH6LD.V13\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(PowerISO Computing, Inc.) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2176296 2010-06-10] (Synaptics Incorporated)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1926928 2009-09-21] (Intel(R) Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-01-21] (IDT, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [167936 2008-11-02] (PowerISO Computing, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3487128 2012-05-02] (Tonec Inc.)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [GoogleChromeAutoLaunch_0AE31B4F8E820B2D8D16F4B1040B7242] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1592664 2017-12-06] (Google Inc.)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [41061856 2017-11-20] ()
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Run: [DellSystemDetect] => C:\Users\ziwass\AppData\Local\Apps\2.0\QH42T5EL.049\PB7JH6LD.V13\dell..tion_6d0a76327dca4869_0007.000b_df227eeaae3cac0d\DellSystemDetect.exe [310728 2017-02-05] (Dell)
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: F - F:\SETUP.EXE
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: H - H:\RunThis.exe
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\MountPoints2: {045d4196-13a9-11e6-9186-9439e5e402d6} - G:\SISetup.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5D5AB2D4-9DDB-4A85-830B-056445B2AE3E}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5D5AB2D4-9DDB-4A85-830B-056445B2AE3E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6F0D3AE9-A095-4A4E-BE52-FA013C9FA412}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{8BA257E3-E890-4E62-BB0A-10DCE9A543E4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8BE25FBB-84AE-437D-A4EC-8CBCB1AF59A9}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/
HKU\S-1-5-21-700845423-2606857621-1733508647-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-700845423-2606857621-1733508647-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-700845423-2606857621-1733508647-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://maktoob.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10440__171028__yaie&p={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-05-02] (Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-05-02] (Internet Download Manager, Tonec Inc.)
BHO-x32: Foxit PhantomPDF Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2017-10-21] ()
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Foxit PhantomPDF Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2017-10-21] ()
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: sb6luiyl.default
FF ProfilePath: C:\Users\ziwass\AppData\Roaming\Mozilla\Firefox\Profiles\sb6luiyl.default [2017-12-23]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2017-10-09] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5 [2017-04-24] [Legacy] [non signé]
FF HKU\S-1-5-21-700845423-2606857621-1733508647-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ziwass\AppData\Roaming\IDM\idmmzcc5
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2013-04-10] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default [2017-12-24]
CHR Extension: (Slides) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Docs) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-25]
CHR Extension: (YouTube) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-25]
CHR Extension: (Foxit PDF Creator) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\cifnddnffldieaamihfkhkdgnbhfmaci [2017-11-29]
CHR Extension: (Adobe Acrobat) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-25]
CHR Extension: (Sheets) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-25]
CHR Extension: (AdBlock) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
CHR Extension: (Skype) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-12-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Browsec VPN - Free and Unlimited VPN) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\omghfjlpggmjjaagoclmmobgdodcjboh [2017-11-22]
CHR Extension: (Gmail) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-25]
CHR Extension: (Chrome Media Router) - C:\Users\ziwass\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-07]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKU\S-1-5-21-700845423-2606857621-1733508647-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 DpHost; C:\Program Files (x86)\FPSensor\bin\DpHost.exe [237568 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé]
S3 FoxitPhantomService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2017-10-29] (Foxit Software Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [332144 2017-11-21] (HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc.)
R2 iZHost; C:\Program Files (x86)\FPSensor\bin\iZHost.exe [244736 2009-12-21] (ZKSoftware Inc) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [315664 2009-09-21] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe [244736 2010-01-21] (IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S3 OverwolfUpdater; "C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe" /RunningFrom SCM" [X]
S2 Soda PDF Desktop Creator; "C:\Program Files\Soda PDF Desktop\creator\common\creator-ws.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dpK00701; C:\Windows\SysWOW64\DRIVERS\dpK00701.sys [46592 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé]
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] ()
S3 fwlanusb6_860; C:\Windows\System32\DRIVERS\fwlanusb6_860.sys [2274336 2015-07-20] (AVM GmbH)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2017-12-23] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-12-24] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-12-24] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-12-24] (Malwarebytes)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2017-12-23] ()
S3 usbdpfp; C:\Windows\SysWOW64\DRIVERS\usbdpfp.sys [47104 2009-05-25] (DigitalPersona, Inc.) [Fichier non signé]
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-24 13:28 - 2017-12-24 13:29 - 000019884 _____ C:\Users\ziwass\Desktop\FRST.txt
2017-12-24 13:28 - 2017-12-24 13:28 - 000000000 ____D C:\FRST
2017-12-24 13:26 - 2017-12-24 13:26 - 002392064 _____ (Farbar) C:\Users\ziwass\Desktop\FRST64.exe
2017-12-24 13:17 - 2017-12-24 13:22 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-12-24 01:58 - 2017-12-24 01:58 - 001150079 _____ C:\Users\ziwass\Desktop\rslt_mvtens_col_2018171223.pdf
2017-12-24 01:42 - 2017-12-24 01:42 - 000004954 _____ C:\Users\ziwass\Desktop\scan.txt
2017-12-23 23:57 - 2017-12-24 13:17 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-12-23 23:57 - 2017-12-23 23:57 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-12-23 23:56 - 2017-12-24 00:53 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-23 23:56 - 2017-12-23 23:56 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-23 23:56 - 2017-12-23 23:56 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-23 23:56 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-23 23:49 - 2017-12-23 23:49 - 000007154 _____ C:\Users\ziwass\Desktop\rk_F410.tmp.txt
2017-12-23 23:46 - 2017-12-23 23:46 - 000006866 _____ C:\Users\ziwass\Desktop\rk_25D8.tmp.txt
2017-12-22 23:38 - 2017-12-23 23:11 - 000028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-12-22 23:35 - 2017-12-22 23:35 - 000000858 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\ProgramData\RogueKiller
2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-12-22 23:35 - 2017-12-22 23:35 - 000000000 ____D C:\Program Files\RogueKiller
2017-12-18 22:09 - 2017-12-18 22:49 - 000000000 ____D C:\Users\ziwass\Desktop\Nouveau dossier (2)
2017-12-18 21:44 - 2017-12-18 21:45 - 002923021 _____ C:\Users\ziwass\Downloads\exo.ps
2017-12-18 00:01 - 2017-12-18 00:01 - 000042136 _____ C:\Users\ziwass\Downloads\meth_19.pdf
2017-12-18 00:00 - 2017-12-18 00:00 - 000092755 _____ C:\Users\ziwass\Downloads\exo1_20.pdf
2017-12-18 00:00 - 2017-12-18 00:00 - 000055513 _____ C:\Users\ziwass\Downloads\colle_20.pdf
2017-12-18 00:00 - 2017-12-18 00:00 - 000037395 _____ C:\Users\ziwass\Downloads\exo1_21.pdf
2017-12-17 23:59 - 2017-12-17 23:59 - 000070063 _____ C:\Users\ziwass\Downloads\colle_19.pdf
2017-12-17 23:59 - 2017-12-17 23:59 - 000057693 _____ C:\Users\ziwass\Downloads\meth_18.pdf
2017-12-17 23:57 - 2017-12-17 23:57 - 000317890 _____ C:\Users\ziwass\Downloads\colles1213_enonces.pdf
2017-12-15 22:47 - 2017-12-15 22:48 - 000262144 _____ C:\Windows\Minidump\121517-22479-01.dmp
2017-12-15 22:47 - 2017-12-15 22:47 - 476906126 _____ C:\Windows\MEMORY.DMP
2017-12-15 22:47 - 2017-12-15 22:47 - 000000000 ____D C:\Windows\Minidump
2017-12-15 14:23 - 2017-12-24 13:20 - 000000000 ___RD C:\Users\ziwass\Google Drive
2017-12-15 14:23 - 2017-12-15 14:23 - 000001672 _____ C:\Users\ziwass\Desktop\Google Drive.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000002042 _____ C:\Users\Public\Desktop\Google Slides.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000002040 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000002030 _____ C:\Users\Public\Desktop\Google Docs.lnk
2017-12-15 14:20 - 2017-12-15 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2017-12-15 14:18 - 2017-12-15 14:18 - 001129816 _____ (Google Inc.) C:\Users\ziwass\Downloads\installbackupandsync.exe
2017-12-11 00:06 - 2017-12-11 00:06 - 000417870 _____ C:\Users\ziwass\Downloads\www.mathprepa.fr-solutions-exercices-chap01.pdf
2017-12-11 00:04 - 2017-12-11 00:04 - 000278223 _____ C:\Users\ziwass\Downloads\www.mathprepa.fr-exercices-chap01.pdf
2017-12-09 16:28 - 2017-12-09 16:37 - 000000000 ____D C:\Users\ziwass\Desktop\DS
2017-12-09 00:02 - 2017-12-09 00:02 - 000195636 _____ C:\Users\ziwass\Downloads\Demande_de_Mouvement_Enseignant-20171209.pdf
2017-12-08 18:02 - 2017-12-08 18:02 - 000222133 _____ C:\Users\ziwass\Desktop\serie4-1sc-scalaire.pdf
2017-12-07 14:25 - 2017-12-07 14:25 - 000000000 ____D C:\Users\ziwass\AppData\Local\Foxit PhantomPDF
2017-12-07 14:11 - 2017-12-07 14:11 - 000100555 _____ C:\Users\ziwass\Downloads\Cours_Suites (1).pdf
2017-12-07 14:10 - 2017-12-07 14:11 - 000100555 _____ C:\Users\ziwass\Downloads\Cours_Suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000272829 _____ C:\Users\ziwass\Downloads\Liste 20 suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000213601 _____ C:\Users\ziwass\Downloads\Liste 21 suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000127674 _____ C:\Users\ziwass\Downloads\Liste 19 suites .pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000105040 _____ C:\Users\ziwass\Downloads\Liste 16 suites.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000101158 _____ C:\Users\ziwass\Downloads\Liste 18 suite.pdf
2017-12-07 12:27 - 2017-12-07 12:27 - 000100946 _____ C:\Users\ziwass\Downloads\Liste 17 suites.pdf
2017-12-07 12:26 - 2017-12-07 12:26 - 000105328 _____ C:\Users\ziwass\Downloads\Liste 15 suites.pdf
2017-12-07 12:25 - 2017-12-07 12:25 - 000158316 _____ C:\Users\ziwass\Downloads\complexes.pdf
2017-12-07 12:24 - 2017-12-07 12:24 - 000272616 _____ C:\Users\ziwass\Downloads\complexe et ensemble de points.pdf
2017-12-07 12:24 - 2017-12-07 12:24 - 000267801 _____ C:\Users\ziwass\Downloads\asymptote.pdf
2017-12-07 12:24 - 2017-12-07 12:24 - 000206545 _____ C:\Users\ziwass\Downloads\arithmétique.pdf
2017-12-04 14:42 - 2017-12-04 14:59 - 000000000 ____D C:\Users\ziwass\Desktop\Barycentre
2017-12-01 14:13 - 2017-12-01 14:13 - 000169699 _____ C:\Users\ziwass\Downloads\فرض محروس رقم 1 الدورة الاولى في المنطق.pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000588440 _____ C:\Users\ziwass\Downloads\solution.rar
2017-12-01 14:12 - 2017-12-01 14:12 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie (2).pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000099291 _____ C:\Users\ziwass\Downloads\DM (2).pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000093002 _____ C:\Users\ziwass\Downloads\trigo_limites (1).pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000042309 _____ C:\Users\ziwass\Downloads\SM1_DS05_Rotation_Limites.pdf
2017-12-01 14:12 - 2017-12-01 14:12 - 000027796 _____ C:\Users\ziwass\Downloads\SM1_DS06_Derivat_Etude_FctNum.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000034923 _____ C:\Users\ziwass\Downloads\SM1_DS03_Produit_Scalaire_Analytique.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000031111 _____ C:\Users\ziwass\Downloads\SM1_DS04_Trigo_Suites_Num.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000026941 _____ C:\Users\ziwass\Downloads\SM1_DS01_Logique_Ensembles_Applications.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000022579 _____ C:\Users\ziwass\Downloads\SM1_DS02Bis_Generality_Fcts_Barycentre.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000021972 _____ C:\Users\ziwass\Downloads\SM1_DM02_Generality_Foncts_Barycentre.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000021804 _____ C:\Users\ziwass\Downloads\SM1_DM01_Logique_Ensembles_Applications.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000021709 _____ C:\Users\ziwass\Downloads\SM1_DS02_Generality_Fcts_Barycentre.pdf
2017-12-01 14:11 - 2017-12-01 14:11 - 000017374 _____ C:\Users\ziwass\Downloads\SM1_DM00_revision_TCS.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000233464 _____ C:\Users\ziwass\Downloads\DERIVABILITE.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000130939 _____ C:\Users\ziwass\Downloads\denomb.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000076768 _____ C:\Users\ziwass\Downloads\continuite.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000055423 _____ C:\Users\ziwass\Downloads\ensembles_applications.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000055214 _____ C:\Users\ziwass\Downloads\sujet_etude_1Bac.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000055214 _____ C:\Users\ziwass\Downloads\sujet_etude_1Bac (1).pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000046273 _____ C:\Users\ziwass\Downloads\serie3_deri.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000045080 _____ C:\Users\ziwass\Downloads\logique.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000044105 _____ C:\Users\ziwass\Downloads\serie1_deri.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000040021 _____ C:\Users\ziwass\Downloads\serie2_deri.pdf
2017-12-01 14:10 - 2017-12-01 14:10 - 000027696 _____ C:\Users\ziwass\Downloads\log.pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie (1).pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000099291 _____ C:\Users\ziwass\Downloads\DM.pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000099291 _____ C:\Users\ziwass\Downloads\DM (1).pdf
2017-12-01 14:09 - 2017-12-01 14:09 - 000093002 _____ C:\Users\ziwass\Downloads\trigo_limites.pdf
2017-12-01 14:08 - 2017-12-01 14:08 - 000177150 _____ C:\Users\ziwass\Downloads\DS_SM1 - Copie.pdf
2017-12-01 14:00 - 2017-12-01 14:01 - 009907112 _____ C:\Users\ziwass\Downloads\عبد الله بن لختير-أحمد مومني-خ.هدار- ياسين المغازلي-20171201T140048Z-001.zip
2017-12-01 14:00 - 2017-12-01 14:00 - 000068941 _____ C:\Users\ziwass\Downloads\DmS2Sr15A-002-Mghazli-12_13 (1).pdf
2017-12-01 13:59 - 2017-12-01 13:59 - 000068941 _____ C:\Users\ziwass\Downloads\DmS2Sr15A-002-Mghazli-12_13.pdf
2017-12-01 13:57 - 2017-12-01 13:57 - 000100817 _____ C:\Users\ziwass\Downloads\1 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf
2017-12-01 13:57 - 2017-12-01 13:57 - 000100728 _____ C:\Users\ziwass\Downloads\3 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf
2017-12-01 13:57 - 2017-12-01 13:57 - 000098031 _____ C:\Users\ziwass\Downloads\2 - فرض منزلي من اقتراح الاستاذ عبدالله بن لختير.pdf
2017-12-01 13:53 - 2017-12-01 13:53 - 000063806 _____ C:\Users\ziwass\Downloads\plugin-d1s1_1sm_bel.pdf
2017-12-01 12:42 - 2017-12-01 12:42 - 000000000 ____D C:\Users\ziwass\Downloads\devoir-1-partier-1-maths-1bac-sci-maths-1trim
2017-11-29 23:33 - 2017-11-29 23:34 - 000096256 _____ C:\Users\ziwass\Downloads\20171025131440tableau.xls
2017-11-29 00:11 - 2017-11-29 00:12 - 021759906 _____ C:\Users\ziwass\Downloads\Foxit Phantom PDF Business v8.2.0.2192 Crack.rar
2017-11-29 00:04 - 2017-11-29 00:04 - 000001089 _____ C:\Users\Public\Desktop\Foxit PhantomPDF.lnk
2017-11-29 00:03 - 2017-11-29 00:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2017-11-29 00:01 - 2017-11-29 00:01 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2017-11-28 01:30 - 2017-11-29 00:05 - 000000000 ____D C:\ProgramData\Foxit Software
2017-11-28 01:29 - 2017-11-29 00:04 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-28 01:28 - 2017-11-28 01:33 - 000000000 ____D C:\Users\Public\Foxit Software
2017-11-28 01:27 - 2017-11-29 00:03 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\Foxit Software
2017-11-26 23:46 - 2017-11-26 23:46 - 000186537 _____ C:\Users\ziwass\Downloads\رياضيات-النجاح-141763504290472.pdf
2017-11-25 13:32 - 2017-11-25 13:32 - 000344409 _____ C:\Users\ziwass\Downloads\output (3).pdf
2017-11-25 13:25 - 2017-11-25 13:25 - 000340018 _____ C:\Users\ziwass\Downloads\exercices_corriges_ensembles_et_applications.pdf
2017-11-24 23:24 - 2017-11-29 00:20 - 000756277 _____ C:\Users\ziwass\Downloads\ANALY5.PDF
2017-11-24 22:58 - 2017-11-24 22:58 - 000381268 _____ C:\Users\ziwass\Downloads\resume-etude-de-fonction.pdf
2017-11-24 22:56 - 2017-11-24 22:56 - 001954380 _____ C:\Users\ziwass\Downloads\al7ma02tepa0113-sequence-02.pdf
2017-11-24 22:54 - 2017-11-24 22:54 - 000072210 _____ C:\Users\ziwass\Downloads\resume_recurrence.pdf
2017-11-24 22:54 - 2017-11-24 22:54 - 000052530 _____ C:\Users\ziwass\Downloads\limites_suite_schema.pdf
2017-11-24 22:54 - 2017-11-24 22:54 - 000051615 _____ C:\Users\ziwass\Downloads\02_fiche_recurrence_limite_suite.pdf
2017-11-24 22:53 - 2017-11-24 22:53 - 000085219 _____ C:\Users\ziwass\Downloads\resume_suites.pdf
2017-11-24 22:53 - 2017-11-24 22:53 - 000046860 _____ C:\Users\ziwass\Downloads\03_limites_radicaux.pdf
2017-11-24 22:53 - 2017-11-24 22:53 - 000031358 _____ C:\Users\ziwass\Downloads\resume_dev_usuelles.pdf
2017-11-24 22:52 - 2017-11-24 22:52 - 000127589 _____ C:\Users\ziwass\Downloads\resume_lim_cont_dev.pdf
2017-11-24 15:21 - 2017-11-24 15:21 - 000117605 _____ C:\Users\ziwass\Downloads\output (2).pdf
2017-11-24 15:16 - 2017-11-24 15:16 - 000115477 _____ C:\Users\ziwass\Downloads\serie4-1sc-scalaire.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-24 13:16 - 2009-07-14 05:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-24 10:08 - 2017-04-20 20:29 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\DMCache
2017-12-24 02:06 - 2017-06-22 16:41 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\WhatsApp
2017-12-23 09:15 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-23 09:15 - 2009-07-14 04:45 - 000016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-21 13:02 - 2017-11-19 14:09 - 000003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForziwass
2017-12-21 13:02 - 2017-11-19 14:09 - 000000336 _____ C:\Windows\Tasks\HPCeeScheduleForziwass.job
2017-12-18 22:50 - 2017-11-23 21:30 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\TeXstudio
2017-12-16 01:02 - 2017-09-22 14:50 - 000000000 ____D C:\Users\ziwass\Desktop\Cours
2017-12-15 14:23 - 2015-11-11 20:44 - 000000000 ____D C:\Users\ziwass
2017-12-15 14:20 - 2015-11-14 11:17 - 000000000 ____D C:\Users\ziwass\AppData\Local\Google
2017-12-15 14:20 - 2015-11-14 11:17 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-10 23:30 - 2017-06-22 16:42 - 000002155 _____ C:\Users\ziwass\Desktop\WhatsApp.lnk
2017-12-10 23:30 - 2017-06-22 16:42 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2017-12-10 23:30 - 2017-06-22 16:41 - 000000000 ____D C:\Users\ziwass\AppData\Local\WhatsApp
2017-12-10 23:29 - 2017-06-22 16:40 - 000000000 ____D C:\Users\ziwass\AppData\Local\SquirrelTemp
2017-12-07 12:11 - 2015-11-14 11:15 - 000002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-03 19:31 - 2017-11-06 23:34 - 000087313 _____ C:\Users\ziwass\Desktop\sujet.pdf
2017-12-01 22:20 - 2017-04-12 00:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-29 19:23 - 2017-04-02 18:39 - 000000000 ____D C:\ProgramData\AVAST Software
2017-11-29 00:22 - 2017-04-20 20:29 - 000000000 ____D C:\Users\ziwass\Downloads\Compressed
2017-11-24 23:15 - 2017-11-07 00:34 - 000000000 ____D C:\Users\ziwass\AppData\Roaming\inkscape
==================== Fichiers à la racine de certains dossiers =======
2017-11-07 00:53 - 2017-11-07 00:53 - 000000813 _____ () C:\Users\ziwass\AppData\Local\recently-used.xbel
2017-07-21 23:27 - 2017-07-21 23:27 - 000000000 _____ () C:\Users\ziwass\AppData\Local\{5838B9F2-3237-435A-BAD2-3FF522B20E4B}
Certains fichiers dans TEMP:
====================
2017-12-22 23:35 - 2010-11-21 03:23 - 001731936 _____ (Microsoft Corporation) C:\Users\ziwass\AppData\Local\Temp\dllnt_dump.dll
2017-11-28 23:30 - 2017-10-18 19:55 - 004782656 _____ (Foxit Corporation) C:\Users\ziwass\AppData\Local\Temp\FoxitUpdater.exe
2017-11-19 14:02 - 2017-10-17 14:01 - 000927784 _____ () C:\Users\ziwass\AppData\Local\Temp\TAInstaller.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll
[2010-11-21 03:24] - [2010-11-21 03:24] - 001008640 _____ (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E
C:\Windows\SysWOW64\User32.dll
[2015-11-13 23:02] - [2015-11-13 23:02] - 000833024 _____ (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-19 01:02
==================== Fin de FRST.txt ============================