cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01.12.2018 01
Exécuté par Richard Bouthillette (administrateur) sur RICHARD (02-12-2018 14:07:51)
Exécuté depuis C:\Users\Richard Bouthillette\Desktop
Profils chargés: Richard Bouthillette (Profils disponibles: Richard Bouthillette & postgres)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Safe Mode (with Networking)
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Users\Richard Bouthillette\AppData\Local\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Users\Richard Bouthillette\AppData\Local\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Users\Richard Bouthillette\AppData\Local\Mozilla Firefox\firefox.exe
() C:\Users\Richard Bouthillette\AppData\Local\Ranieri.exe
() C:\Users\Richard Bouthillette\AppData\Local\Ranieri.exe
(Mozilla Corporation) C:\Users\Richard Bouthillette\AppData\Local\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4108209693-4143714759-1921156933-1016\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19476424 2018-11-06] (Piriform Software Ltd)
HKU\S-1-5-21-4108209693-4143714759-1921156933-1016\...\Run: [andras] => C:\Program Files (x86)\undoes\andras.exe [49502 2018-11-30] ()
HKU\S-1-5-21-4108209693-4143714759-1921156933-1016\...\Run: [Blogger] => C:\ProgramData\Blogger\Blogger.exe [80896 2018-11-30] ()
HKU\S-1-5-21-4108209693-4143714759-1921156933-1016\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-13] (Microsoft Corporation)
Startup: C:\Users\Richard Bouthillette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\grownup.lnk [2018-11-30]
ShortcutTarget: grownup.lnk -> C:\Program Files (x86)\Fiberboard\Ranieri.exe (Pas de fichier)
Startup: C:\Users\Richard Bouthillette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\grownupgrownup.lnk [2018-11-30]
ShortcutTarget: grownupgrownup.lnk -> C:\Program Files (x86)\unflattering\Mousy.exe (Pas de fichier)
GroupPolicyScripts: Restriction <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{270C819A-8D9A-4539-A800-454A401BE112}: [DhcpNameServer] 192.168.0.11
Tcpip\..\Interfaces\{403797AB-CFF0-4A1D-B145-9800CEE6D1A1}: [DhcpNameServer] 192.168.0.11
Tcpip\..\Interfaces\{46669C73-509F-4B13-AB8B-58BD90BC36C8}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{FD353CF6-95A4-45FA-A733-207BA0AAAF9B}: [DhcpNameServer] 192.168.0.11

Internet Explorer:
==================
HKU\S-1-5-21-4108209693-4143714759-1921156933-1016\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoI37El3suDg82bQbRg22Hbq9Vn_X8xmsmksXnd-UC-MHqaVit0M-ZZD359ASS_qlBqNo5sgfrcVKjWXUbkKty3tH3IgW_h65XX40_deuQD3-hevAp7azNlhALHhltFLMFCrq-yAvl4fv_a7L6hpy6gGsXl0Erfk7JUU6oOZAz6&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKU\S-1-5-21-4108209693-4143714759-1921156933-1016 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-07-19] (IObit)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13] (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-19] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-19] (Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Richard Bouthillette\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2017-11-22] (Dashlane, Inc.)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13] (Advanced Micro Devices)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Richard Bouthillette\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2017-11-22] (Dashlane, Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices)

FireFox:
========
FF DefaultProfile: oqh33h86.default
FF ProfilePath: C:\Users\Richard Bouthillette\AppData\Roaming\Mozilla\Firefox\Profiles\oqh33h86.default [2018-12-02]
FF Extension: (French spelling dictionary) - C:\Users\Richard Bouthillette\AppData\Roaming\Mozilla\Firefox\Profiles\oqh33h86.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org.xpi [2018-12-01]
FF Extension: (Français Language Pack) - C:\Users\Richard Bouthillette\AppData\Roaming\Mozilla\Firefox\Profiles\oqh33h86.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2018-12-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-10-03] ()
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-19] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-10-03] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2017-08-07] (DivX, LLC)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-23] (NVIDIA Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2018-06-07] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-22] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-22] (Google Inc.)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2009-09-25] (Wacom, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
StartMenuInternet: Firefox-81D64950BEBC0579 - C:\Users\Richard Bouthillette\AppData\Local\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://encrypted.google.com"
CHR Profile: C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default [2018-12-02]
CHR Extension: (Slides) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-23]
CHR Extension: (Docs) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-23]
CHR Extension: (Google Drive) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-22]
CHR Extension: (YouTube) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-22]
CHR Extension: (Bing) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2018-12-02]
CHR Extension: (Sheets) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-11]
CHR Extension: (PlayTo for Chromecast™) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\jngkenaoceimiimeokpdbmejeonaaami [2017-03-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-23]
CHR Extension: (Gmail) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-22]
CHR Extension: (Chrome Media Router) - C:\Users\Richard Bouthillette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-13]
CHR HKU\S-1-5-21-4108209693-4143714759-1921156933-1016\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
S2 AdobeActiveFileMonitor7.0; K:\adobe photoshop 7.0\PhotoshopElementsFileAgent.exe [169312 2008-09-16] (Adobe Systems Incorporated)
S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2910696 2018-09-10] (Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2704872 2018-09-10] (Adobe Systems, Incorporated)
S2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [239616 2014-09-15] (AMD) [Fichier non signé]
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7201680 2018-07-24] ()
S2 Capture Device Service; C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [610464 2018-01-18] (EasyAntiCheat Ltd)
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation)
S2 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-14] (SEIKO EPSON CORPORATION)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2017-07-30] (Macrovision Europe Ltd.) [Fichier non signé]
S2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [391744 2017-07-11] ()
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [149776 2018-06-28] (IObit)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-07-20] (IObit)
S2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109024 2017-11-08] (Panda Security, S.L.)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-16] (Nero AG)
S2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-12-15] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-12-15] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2269504 2018-10-25] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3130184 2018-10-25] (Electronic Arts)
S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-19] ()
S2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security, S.L.)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2018-01-16] ()
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48784 2018-05-30] (Panda Security, S.L.)
S2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [431616 2017-11-07] (Razer Inc.) [Fichier non signé]
S2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [919200 2017-11-29] (Razer Inc.)
S2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2015-09-02] (CyberLink)
S2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-09-17] (Microsoft Corporation)
S2 WTouchService; C:\Program Files\WTouch\WTouchService.exe [127784 2009-11-23] (Wacom Technology, Corp.)
S2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
S2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 postgresql-x64-9.5; "C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.5" -D "C:\Program Files\PostgreSQL\9.5\data" -w

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 aftap0901; C:\Windows\System32\DRIVERS\aftap0901.sys [48624 2018-03-06] (The OpenVPN Project)
R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11832 2010-06-29] (Advanced Micro Devices Inc.)
S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [16750080 2014-09-15] (Advanced Micro Devices, Inc.) [Fichier non signé]
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [576000 2014-09-15] (Advanced Micro Devices, Inc.) [Fichier non signé]
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2017-09-23] (Asmedia Technology)
S0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [76544 2016-06-01] (AVG Technologies CZ, s.r.o.)
S3 CLMirrorDriver; C:\Windows\System32\DRIVERS\CLMirrorDriver.sys [21264 2015-11-13] (CyberLink)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2017-03-07] (Disc Soft Ltd)
S3 Envy24HFS; C:\Windows\System32\drivers\Envy24HF.sys [211328 2008-06-10] (VIA - IC Ensemble, Inc.) [Fichier non signé]
S1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-09-16] (REALiX(tm))
S3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUProcessFilter.sys [19312 2018-05-12] (IObit)
S3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegistryFilter.sys [25488 2018-05-15] (IObit)
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [Fichier non signé]
S1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [107848 2017-11-03] (Panda Security, S.L.)
S1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [212360 2017-11-03] (Panda Security, S.L.)
S1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [121232 2017-11-03] (Panda Security, S.L.)
S1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [126352 2017-11-03] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\System32\DRIVERS\NNSNAHSL.sys [94392 2017-09-18] (Panda Security, S.L.)
S1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [118136 2017-11-03] (Panda Security, S.L.)
S1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [85176 2017-11-03] (Panda Security, S.L.)
S1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [135640 2017-11-03] (Panda Security, S.L.)
S1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [337520 2017-11-03] (Panda Security, S.L.)
S1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [249976 2017-11-03] (Panda Security, S.L.)
S1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [123304 2017-11-03] (Panda Security, S.L.)
S1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [281912 2017-11-03] (Panda Security, S.L.)
S1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [125840 2017-11-03] (Panda Security, S.L.)
S3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-11-18] (Renesas Electronics Corporation) [Fichier non signé]
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-12-15] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-12-15] (NVIDIA Corporation)
S3 OV550I; C:\Windows\System32\Drivers\OVTX16.sys [139520 2010-06-04] (Omnivision Technologies, Inc.)
S3 OV550I; C:\Windows\SysWOW64\Drivers\OVTX16.sys [139520 2010-06-04] (Omnivision Technologies, Inc.)
S2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [190552 2017-11-08] (Panda Security, S.L.)
S2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [153176 2018-01-22] (Panda Security, S.L.)
S1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [206424 2018-01-30] (Panda Security, S.L.)
S2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [146976 2017-11-06] (Panda Security, S.L.)
S2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [159312 2017-11-06] (Panda Security, S.L.)
S2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [129448 2017-11-06] (Panda Security, S.L.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [72280 2017-05-22] (Panda Security, S.L.)
S3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [51728 2016-08-16] (Razer Inc)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2017-07-02] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Fichier non signé]
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S2 AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
S2 APXACC; system32\DRIVERS\appexDrv.sys [X]
U3 aswbdisk; pas de ImagePath
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-12-02 14:07 - 2018-12-02 14:08 - 000022261 _____ C:\Users\Richard Bouthillette\Desktop\FRST.txt
2018-12-02 14:07 - 2018-12-02 14:07 - 000000000 ____D C:\FRST
2018-12-02 14:04 - 2018-12-02 14:04 - 002417152 _____ (Farbar) C:\Users\Richard Bouthillette\Desktop\FRST64.exe
2018-12-02 12:32 - 2018-12-02 12:32 - 000093646 _____ C:\Windows\ntbtlog.txt
2018-12-02 12:30 - 2018-12-02 12:30 - 007321808 _____ (Malwarebytes) C:\Users\Richard Bouthillette\Downloads\adwcleaner_7.2.5.0.exe
2018-12-02 09:29 - 2018-12-02 09:29 - 000411690 _____ C:\Users\Richard Bouthillette\Desktop\ZHPDiag.txt
2018-12-02 09:25 - 2018-12-02 09:25 - 000000834 _____ C:\Users\Richard Bouthillette\Desktop\ZHPDiag.lnk
2018-12-02 09:24 - 2018-12-02 09:24 - 003180928 _____ C:\Users\Richard Bouthillette\Downloads\ZHPDiag3.exe
2018-12-01 20:55 - 2018-12-02 12:31 - 000000336 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job
2018-12-01 16:26 - 2018-12-01 16:26 - 000001248 _____ C:\Users\Richard Bouthillette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-12-01 16:26 - 2018-12-01 16:26 - 000001240 _____ C:\Users\Richard Bouthillette\Desktop\Firefox.lnk
2018-12-01 16:26 - 2018-12-01 16:26 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\Mozilla Firefox
2018-12-01 16:06 - 2018-11-30 11:01 - 000012800 _____ C:\Users\Richard Bouthillette\AppData\Local\Ranieri.exe
2018-12-01 15:03 - 2018-12-01 15:03 - 000000844 _____ C:\Users\Richard Bouthillette\Desktop\ZHPCleaner.lnk
2018-12-01 13:28 - 2018-12-01 13:28 - 000319976 _____ (Mozilla) C:\Users\Richard Bouthillette\Downloads\Firefox Installer.exe
2018-11-30 18:26 - 2018-11-30 18:26 - 007321808 _____ (Malwarebytes) C:\Users\Richard Bouthillette\Desktop\adwcleaner_7.2.5.0.exe
2018-11-30 18:16 - 2018-12-02 09:25 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\ZHP
2018-11-30 18:16 - 2018-11-30 18:16 - 003293568 _____ C:\Users\Richard Bouthillette\Desktop\ZHPCleaner.exe
2018-11-30 16:41 - 2018-12-02 09:41 - 000001540 _____ C:\Windows\Tasks\Cornwell.job
2018-11-30 16:41 - 2018-11-30 16:41 - 000013974 _____ C:\Windows\System32\Tasks\Cornwell
2018-11-30 16:41 - 2018-11-30 16:41 - 000000000 ____D C:\Program Files\Cornwell
2018-11-30 16:40 - 2018-11-30 17:01 - 000001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2018-11-30 16:40 - 2018-11-30 16:40 - 000003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-11-30 16:40 - 2018-11-30 16:40 - 000003846 _____ C:\Windows\System32\Tasks\columbia tute mainscolumbia tute mains
2018-11-30 16:40 - 2018-11-30 16:40 - 000003842 _____ C:\Windows\System32\Tasks\teambuilding_bucklingteambuilding_buckling
2018-11-30 16:40 - 2018-11-30 16:40 - 000003830 _____ C:\Windows\System32\Tasks\steuartsteuart
2018-11-30 16:40 - 2018-11-30 16:40 - 000003826 _____ C:\Windows\System32\Tasks\pentane-oldsterspentane-oldsters
2018-11-30 16:40 - 2018-11-30 16:40 - 000003826 _____ C:\Windows\System32\Tasks\madamemadame
2018-11-30 16:40 - 2018-11-30 16:40 - 000003824 _____ C:\Windows\System32\Tasks\axels_jansenaxels_jansen
2018-11-30 16:40 - 2018-11-30 16:40 - 000003820 _____ C:\Windows\System32\Tasks\paramilitaries insecurityparamilitaries insecurity
2018-11-30 16:40 - 2018-11-30 16:40 - 000003820 _____ C:\Windows\System32\Tasks\fedorfedor
2018-11-30 16:40 - 2018-11-30 16:40 - 000000012 _____ C:\Windows\b73746523
2018-11-30 16:40 - 2018-11-30 16:40 - 000000000 ___HD C:\Program Files (x86)\undoes
2018-11-30 16:40 - 2018-11-30 16:40 - 000000000 ____D C:\Program Files (x86)\tollway
2018-11-30 16:40 - 2018-11-30 16:40 - 000000000 ____D C:\Program Files (x86)\Inhibitor
2018-11-30 16:39 - 2018-11-30 16:39 - 006860752 _____ (NeoSoft Tools ) C:\Users\Richard Bouthillette\AppData\Roaming\cexplorer.exe
2018-11-30 16:39 - 2018-11-30 16:39 - 000000000 ____D C:\ProgramData\OPA
2018-11-30 16:39 - 2018-11-30 16:39 - 000000000 ____D C:\ProgramData\Blogger
2018-11-30 16:35 - 2018-12-01 13:22 - 000722944 _____ C:\Users\Richard Bouthillette\AppData\Local\sham.db
2018-11-30 16:35 - 2018-11-30 16:36 - 000000000 ____D C:\ProgramData\KoLka
2018-11-30 16:35 - 2018-11-30 16:35 - 007813632 _____ C:\Users\Richard Bouthillette\AppData\Local\agent.dat
2018-11-30 16:35 - 2018-11-30 16:35 - 002025201 _____ C:\Users\Richard Bouthillette\AppData\Local\Zimtip.tst
2018-11-30 16:35 - 2018-11-30 16:35 - 001895381 _____ C:\Users\Richard Bouthillette\AppData\Local\Gold-Fan.bin
2018-11-30 16:35 - 2018-11-30 16:35 - 000278509 _____ C:\Users\Richard Bouthillette\AppData\Local\Techtax.tst
2018-11-30 16:35 - 2018-11-30 16:35 - 000140800 _____ C:\Users\Richard Bouthillette\AppData\Local\installer.dat
2018-11-30 16:35 - 2018-11-30 16:35 - 000126464 _____ C:\Users\Richard Bouthillette\AppData\Local\noah.dat
2018-11-30 16:35 - 2018-11-30 16:35 - 000070896 _____ C:\Users\Richard Bouthillette\AppData\Local\Config.xml
2018-11-30 16:35 - 2018-11-30 16:35 - 000005568 _____ C:\Users\Richard Bouthillette\AppData\Local\md.xml
2018-11-30 16:35 - 2018-11-30 16:35 - 000000000 ____D C:\ProgramData\Popa
2018-11-30 16:35 - 2018-11-30 16:34 - 001995264 _____ (TODO: ) C:\Users\Richard Bouthillette\AppData\Local\Zimtip.exe
2018-11-30 16:35 - 2018-11-30 16:34 - 001995264 _____ (TODO: ) C:\Users\Richard Bouthillette\AppData\Local\Techtax.exe
2018-11-30 16:34 - 2018-11-30 16:34 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2018-11-30 16:34 - 2018-11-30 16:34 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2018-11-30 16:34 - 2018-11-30 16:34 - 000016384 _____ C:\Users\Richard Bouthillette\AppData\Local\gthnoy.dll
2018-11-30 16:34 - 2018-11-30 16:34 - 000000000 ____D C:\ProgramData\VkMusic
2018-11-30 16:34 - 2018-11-30 16:34 - 000000000 ____D C:\ProgramData\M2WYIQYCJ130DLCSGOBQ
2018-11-30 16:34 - 2018-11-30 16:34 - 000000000 ____D C:\ProgramData\DoSound
2018-11-30 16:33 - 2018-11-30 16:34 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\clipdiarysys
2018-11-30 16:33 - 2018-11-30 16:33 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\clipdiary
2018-11-30 16:33 - 2018-11-30 16:33 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\ToolwizCareFree
2018-11-30 16:33 - 2018-11-30 16:33 - 000000000 ____D C:\Program Files (x86)\1BTC Software
2018-11-30 16:08 - 2018-11-30 16:08 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\CrashRpt
2018-11-30 16:07 - 2018-11-30 16:07 - 000012288 _____ C:\ProgramData\crsoxhya.gfw
2018-11-30 11:01 - 2018-11-30 11:01 - 000012800 _____ C:\Windows\muffler.exe
2018-11-29 11:54 - 2018-11-29 14:59 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\AVAST Software
2018-11-29 11:53 - 2018-11-29 11:53 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-11-28 14:04 - 2018-11-28 14:04 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_point64_01011.Wdf
2018-11-28 14:04 - 2018-03-23 18:05 - 000138120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2018-11-28 11:57 - 2018-11-28 11:57 - 000000000 ____D C:\Users\Richard Bouthillette\Documents\3DMark
2018-11-28 11:57 - 2018-11-28 11:57 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\IsolatedStorage
2018-11-28 11:46 - 2018-11-28 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2018-11-28 11:46 - 2018-11-28 11:46 - 000000000 ____D C:\Program Files (x86)\Futuremark
2018-11-28 11:45 - 2018-11-28 11:45 - 000000000 ____D C:\Program Files\Futuremark
2018-11-21 08:52 - 2017-05-22 05:29 - 000072280 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2018-11-19 11:58 - 2018-11-19 11:58 - 000000000 ____D C:\Users\Richard Bouthillette\Desktop\tender moment au sax
2018-11-18 09:50 - 2018-11-18 09:50 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\JGsoft
2018-11-18 09:43 - 2018-11-18 09:43 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\Sublime Text 2
2018-11-17 09:10 - 2018-11-17 09:12 - 000000000 ____D C:\Users\Public\Documents\RonyaSoft
2018-11-15 12:01 - 2018-11-16 11:45 - 000001746 _____ C:\Users\Richard Bouthillette\Desktop\maria.txt
2018-11-14 09:31 - 2018-11-29 11:52 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-11-14 09:31 - 2018-11-14 09:31 - 000002836 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-11-14 09:31 - 2018-11-14 09:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-11-14 09:30 - 2018-11-14 09:31 - 000000000 ____D C:\Program Files\CCleaner
2018-11-09 15:02 - 2018-11-10 12:06 - 000000000 ____D C:\Users\Richard Bouthillette\Desktop\Smartparts Pictures
2018-11-09 15:00 - 2018-11-09 15:00 - 000002749 _____ C:\Users\Richard Bouthillette\Desktop\OptiPix.lnk
2018-11-09 15:00 - 2018-11-09 15:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smartparts
2018-11-09 15:00 - 2018-11-09 15:00 - 000000000 ____D C:\Program Files (x86)\Smartparts
2018-11-08 09:26 - 2018-11-29 16:12 - 002428752 _____ C:\Users\Richard Bouthillette\Desktop\les supers heros.pds
2018-11-03 07:58 - 2018-11-14 09:10 - 000000885 _____ C:\Users\Richard Bouthillette\Desktop\ou sont les femmes.txt
2018-11-03 07:40 - 2018-11-03 07:40 - 000001624 _____ C:\Users\Richard Bouthillette\Desktop\vien t'en.txt

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-12-02 13:54 - 2017-02-20 11:30 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\LocalLow\Mozilla
2018-12-02 12:36 - 2009-07-14 10:24 - 000750438 _____ C:\Windows\system32\perfh00C.dat
2018-12-02 12:36 - 2009-07-14 10:24 - 000151084 _____ C:\Windows\system32\perfc00C.dat
2018-12-02 12:36 - 2009-07-14 00:13 - 001677522 _____ C:\Windows\system32\PerfStringBackup.INI
2018-12-02 12:36 - 2009-07-13 22:20 - 000000000 ____D C:\Windows\inf
2018-12-02 12:32 - 2018-10-17 11:50 - 000049664 ___SH C:\Users\Richard Bouthillette\Desktop\Thumbs.db
2018-12-02 12:13 - 2017-03-02 08:24 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\CrashDumps
2018-12-02 09:41 - 2017-02-18 15:51 - 000000000 ____D C:\ProgramData\NVIDIA
2018-12-02 09:41 - 2009-07-14 00:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-12-02 09:30 - 2009-07-13 23:45 - 000057776 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-12-02 09:30 - 2009-07-13 23:45 - 000057776 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-12-02 09:29 - 2017-07-02 15:24 - 000000135 _____ C:\Users\Richard
2018-12-02 09:29 - 2017-03-07 15:30 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\ZHP
2018-12-01 20:55 - 2018-01-05 16:34 - 000000000 ____D C:\Users\postgres
2018-12-01 16:26 - 2017-02-20 11:30 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\Mozilla
2018-12-01 13:25 - 2017-02-18 17:36 - 000000000 ____D C:\Users\Richard Bouthillette
2018-11-30 18:27 - 2017-02-18 17:36 - 000001433 _____ C:\Users\Richard Bouthillette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2018-11-30 16:40 - 2012-08-27 08:14 - 000797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-11-30 16:40 - 2012-08-27 08:14 - 000142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-11-30 16:15 - 2018-08-16 07:54 - 000000000 ____D C:\Users\Richard Bouthillette\Desktop\photo party 2018 les super hero
2018-11-30 16:08 - 2017-03-02 08:29 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\Movavi
2018-11-29 15:39 - 2017-02-18 18:47 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\vlc
2018-11-29 14:47 - 2018-09-22 13:49 - 000000000 ____D C:\Users\Richard Bouthillette\Desktop\albume 30
2018-11-29 11:57 - 2017-02-19 19:18 - 000000000 ___RD C:\Users\Richard Bouthillette\Desktop\reparation
2018-11-29 11:56 - 2017-10-19 06:40 - 000000000 ____D C:\Windows\Minidump
2018-11-28 15:25 - 2017-07-02 15:24 - 000000000 ____D C:\ProgramData\ProductData
2018-11-28 14:07 - 2017-02-28 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-11-28 14:04 - 2017-02-18 15:50 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-11-28 11:46 - 2012-08-24 13:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-11-26 20:33 - 2012-08-24 14:02 - 000592416 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-11-21 11:03 - 2017-07-30 08:43 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\WTablet
2018-11-21 09:24 - 2018-01-27 14:41 - 000000000 ____D C:\ProgramData\CanonIJPLM
2018-11-15 18:57 - 2014-08-05 04:25 - 000000000 ____D C:\Windows\system32\MRT
2018-11-15 18:57 - 2012-08-24 15:08 - 137810048 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-11-15 18:55 - 2012-12-14 12:40 - 001651654 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-11-15 10:58 - 2018-01-28 11:22 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\ElevatedDiagnostics
2018-11-14 09:31 - 2018-04-01 10:13 - 000000000 ____D C:\ProgramData\AVAST Software
2018-11-13 16:43 - 2018-07-23 06:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-11-13 11:00 - 2017-04-12 07:39 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-11-11 08:32 - 2017-12-26 09:06 - 000000000 ____D C:\Program Files (x86)\Razer
2018-11-09 15:00 - 2017-03-27 13:12 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\Downloaded Installations
2018-11-09 09:36 - 2018-03-10 10:01 - 000000016 _____ C:\Users\Richard Bouthillette\AppData\Roaming\msregsvv.dll
2018-11-09 09:36 - 2018-03-10 10:01 - 000000016 _____ C:\ProgramData\autobk.inc
2018-11-08 08:46 - 2017-02-21 10:55 - 000000000 ____D C:\Users\Public\Cyberlink
2018-11-07 15:38 - 2017-02-19 19:01 - 000000000 ___RD C:\Users\Richard Bouthillette\Desktop\mes documents
2018-11-06 08:56 - 2017-05-03 16:41 - 000000000 ____D C:\Program Files (x86)\Origin
2018-11-05 14:35 - 2017-02-19 19:18 - 000000000 ___RD C:\Users\Richard Bouthillette\Desktop\video
2018-11-05 11:20 - 2012-08-24 14:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2018-11-03 11:12 - 2017-03-01 18:26 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2018-11-03 11:12 - 2017-03-01 18:26 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Local\Facebook
2018-11-03 11:12 - 2017-02-19 19:01 - 000001180 _____ C:\Users\Richard Bouthillette\Desktop\Facebook Gameroom.lnk
2018-11-02 08:27 - 2017-02-18 18:47 - 000000000 ____D C:\Users\Richard Bouthillette\AppData\Roaming\dvdcss

==================== Fichiers à la racine de certains dossiers =======

2018-11-30 16:34 - 2018-11-30 16:34 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2018-11-30 16:34 - 2018-11-30 16:34 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2018-11-30 16:39 - 2018-11-30 16:39 - 006860752 _____ (NeoSoft Tools ) C:\Users\Richard Bouthillette\AppData\Roaming\cexplorer.exe
2018-03-10 10:01 - 2018-11-09 09:36 - 000000016 _____ () C:\Users\Richard Bouthillette\AppData\Roaming\msregsvv.dll
2017-02-21 09:54 - 2018-01-23 09:30 - 000004406 _____ () C:\Users\Richard Bouthillette\AppData\Roaming\RICHARD.MTBF.txt
2017-12-10 10:47 - 2018-01-23 09:34 - 000001474 _____ () C:\Users\Richard Bouthillette\AppData\Roaming\__AvidCloudManager.log
2017-12-10 10:47 - 2018-01-07 11:18 - 000000672 _____ () C:\Users\Richard Bouthillette\AppData\Roaming\__AvidCloudManagerPrevious.log
2018-11-30 16:35 - 2018-11-30 16:35 - 007813632 _____ () C:\Users\Richard Bouthillette\AppData\Local\agent.dat
2018-11-30 16:35 - 2018-11-30 16:35 - 000070896 _____ () C:\Users\Richard Bouthillette\AppData\Local\Config.xml
2017-03-27 13:56 - 2018-01-07 11:11 - 000007680 _____ () C:\Users\Richard Bouthillette\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-30 16:35 - 2018-11-30 16:35 - 001895381 _____ () C:\Users\Richard Bouthillette\AppData\Local\Gold-Fan.bin
2018-11-30 16:34 - 2018-11-30 16:34 - 000016384 _____ () C:\Users\Richard Bouthillette\AppData\Local\gthnoy.dll
2018-11-30 16:35 - 2018-11-30 16:35 - 000140800 _____ () C:\Users\Richard Bouthillette\AppData\Local\installer.dat
2018-11-30 16:35 - 2018-11-30 16:35 - 000005568 _____ () C:\Users\Richard Bouthillette\AppData\Local\md.xml
2018-11-30 16:35 - 2018-11-30 16:35 - 000126464 _____ () C:\Users\Richard Bouthillette\AppData\Local\noah.dat
2018-09-28 07:47 - 2018-09-28 07:47 - 000000000 _____ () C:\Users\Richard Bouthillette\AppData\Local\oobelibMkey.log
2018-12-01 16:06 - 2018-11-30 11:01 - 000012800 _____ () C:\Users\Richard Bouthillette\AppData\Local\Ranieri.exe
2018-11-30 16:35 - 2018-12-01 13:22 - 000722944 _____ () C:\Users\Richard Bouthillette\AppData\Local\sham.db
2018-11-30 16:35 - 2018-11-30 16:34 - 001995264 _____ (TODO: ) C:\Users\Richard Bouthillette\AppData\Local\Techtax.exe
2018-11-30 16:35 - 2018-11-30 16:35 - 000278509 _____ () C:\Users\Richard Bouthillette\AppData\Local\Techtax.tst
2018-11-30 16:35 - 2018-11-30 16:35 - 000032038 _____ () C:\Users\Richard Bouthillette\AppData\Local\uninstall_temp.ico
2018-11-30 16:35 - 2018-11-30 16:34 - 001995264 _____ (TODO: ) C:\Users\Richard Bouthillette\AppData\Local\Zimtip.exe
2018-11-30 16:35 - 2018-11-30 16:35 - 002025201 _____ () C:\Users\Richard Bouthillette\AppData\Local\Zimtip.tst

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-10-20 06:29

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité