Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-09-2019 01
Exécuté par Pierrette Flodrops (administrateur) sur PIERRETTE (ASUSTeK COMPUTER INC. K55VD) (21-09-2019 13:53:22)
Exécuté depuis C:\Users\Pierrette Flodrops\Desktop
Profils chargés: UpdatusUser & Pierrette Flodrops (Profils disponibles: UpdatusUser & Pierrette Flodrops)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK) [Fichier non signé] C:\Windows\SysWOW64\ACEngSvr.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realsil Microelectronics Inc.) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe********************************************* [107192 2012-09-11] () [Fichier non signé]
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2012-11-27] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé]
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6023488 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-804294774-1027096335-1066270605-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-12-10] (NVIDIA CORPORATION -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-12-10] (NVIDIA CORPORATION -> NVIDIA Corporation)
Startup: C:\Users\Pierrette Flodrops\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Canon IJ Status Monitor Canon MG5500 series Printer.lnk [2019-05-05]
ShortcutAndArgument: Canon IJ Status Monitor Canon MG5500 series Printer.lnk -> C:\WINDOWS\system32\rundll32.exe => C:\Users\PIERRE~1\CNMSSC~1.DLL,SMStarterEntryPoint CNBJNP_F481398A16CC;Canon MG5500 series Printer;cnmss Canon MG5500 series Printer (Local).dll;Canon IJ Status Monitor Canon MG5500 series Printer.lnk
Startup: C:\Users\Pierrette Flodrops\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2019-08-13]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0AB12B25-FA7C-49C2-8140-B9AD529AC5DB} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-13] (Adobe Inc. -> Adobe)
Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {12727E7D-2F1A-4239-A8FD-0ADF5BEC1706} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {161975F7-0B18-4874-8299-C4B05272281B} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032 2012-09-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {4E1D9BC6-F24E-4AB1-A846-AC4FF73705BA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428640 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5701374B-EE31-4838-95DA-D6BDBFF0F0A7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117728 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5795C7E4-24F2-4626-B5E6-F6E059184152} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {5C4617DE-DD23-4D82-A125-10D4030A231B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-23] (Google Inc -> Google Inc.)
Task: {6CB133E8-0A86-4C4B-A8C6-3C578398FEAA} - System32\Tasks\AdwCleaner_onReboot => C:/Users/Pierrette Flodrops/Desktop/adwcleaner_7.4.1 (1).exe [7622344 2019-09-20] (Malwarebytes Inc -> Malwarebytes)
Task: {7618FD62-4F60-437D-9EBA-D71A7670ED6D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {96EEF842-F07E-4615-ABE8-D475D3E0FEF2} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [813856 2014-06-06] (IObit Information Technology -> IObit)
Task: {9F55E726-910C-443E-B00F-5B9CC904E4A6} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1018240 2012-08-24] (ASUSTeK Computer Inc. -> ASUS)
Task: {9FEFC245-E6AC-4061-A9E2-51C536EB7917} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117728 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A191EF69-0903-4B19-96BE-55A31D6BD90A} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [17792 2012-10-31] (ASUSTeK Computer Inc. -> AsusTek)
Task: {A57936DC-3720-45B6-A35D-BE3EE702267D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A6835ECD-E3D8-4E74-A5A5-82801E626152} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {AA216C92-E596-43A9-97ED-9504AFB774F0} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {B05D5853-E5E6-4831-BC44-6C44F553B9B7} - System32\Tasks\Uninstaller_SkipUac_Pierrette_Flodrops => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {BA4E17DB-747C-4232-B6BD-A5A1D676DB82} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {C5E00A6F-6708-4495-893D-9A5AD206E11D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {D0E895F5-CAC8-4571-9CAB-BE7C6266311D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-23] (Google Inc -> Google Inc.)
Task: {D98A63D0-8811-443B-AC62-DFFF555846BC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {DA7CCB03-C252-4B55-9A9D-496B5B3B5294} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428640 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {DBC19FBC-94D3-4EF2-93CB-C841D2749928} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-13] (Adobe Inc. -> Adobe)
Task: {E56A51CA-2E72-4E5A-A3E7-DBEA91710FC8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [101694776 2014-09-25] (Microsoft Windows -> Microsoft Corporation)
Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {FA61C9C8-2AC4-479A-8DB5-4E0BA4523368} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{170CCC3C-31C1-4F81-A057-3C76F2A4766F}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{170CCC3C-31C1-4F81-A057-3C76F2A4766F}: [DhcpNameServer] 87.98.175.85
Tcpip\..\Interfaces\{2F7ECB1D-2F90-464E-AA03-D3DF8AD0CA28}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{47852F02-B63E-4F91-8398-E9388C9F359D}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{47852F02-B63E-4F91-8398-E9388C9F359D}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{59350f03-4828-11e4-824f-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{B895E0FE-102A-4A8C-8049-8BC71714E26F}: [NameServer] 8.8.8.8
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.30,1]
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-804294774-1027096335-1066270605-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com
HKU\S-1-5-21-804294774-1027096335-1066270605-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-804294774-1027096335-1066270605-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: he1oaypd.default-1514032955629
FF ProfilePath: C:\Users\Pierrette Flodrops\AppData\Roaming\Mozilla\Firefox\Profiles\he1oaypd.default-1514032955629 [2019-09-21]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-13] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-13] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default [2019-09-21]
CHR Extension: (NewNoteCenter) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbmonpdioffoenpdbllicfjjobbhhpnk [2019-09-21]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-09-21]
CHR Extension: (FileConvertOnline) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafegaaojdkpkbhdaimhkdhjiaodegbc [2019-09-21]
CHR Extension: (MyFileConvert) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnckbjbhoclehoieokgiecdiakbaoodg [2019-09-21]
CHR Extension: (EasyPDFCombine) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekamneaohnpkfjaffmimdhgbpdablhbn [2019-09-21]
CHR Extension: (File Send Suite) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffkkhnmhakkikpkabfmoejhlohnceknd [2019-09-21]
CHR Extension: (MyTransitGuide) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\geeagoabbeagdhepnpejfcjcljkpijlk [2019-09-21]
CHR Extension: (AdBlock) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-09-21]
CHR Extension: (Video Converter by VideoConverterHQ) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\glohakccicfcgpelekfpgllfnlameopo [2019-09-21]
CHR Extension: (SmartEasyMaps) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjkkeblfbjbklichcnfhecghafokbcol [2019-09-21]
CHR Extension: (TotalRecipeSearch) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\mamgcopfdmhhimapcbcokhpjnmhfenjh [2019-09-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-21]
CHR Extension: (NewNoteCenter) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnednkgifidkacnebhienjimimflbmj [2019-09-21]
CHR Extension: (FromDocToPDF) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbneiecbhikjapoihjpemfmpaalkafkh [2019-09-21]
CHR Extension: (Chrome Media Router) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-21]
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUSTeK Computer Inc. -> ASUS)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11568144 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-10-22] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72992 2014-06-06] (IObit Information Technology -> IObit)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-09-30] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-09-30] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athw8x.sys [3915264 2013-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [14992 2012-08-02] (ASUSTeK Computer Inc. -> )
R3 RTL8168; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [35856 2014-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [257880 2014-09-30] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123224 2014-09-30] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-21 13:53 - 2019-09-21 13:53 - 000029065 _____ C:\Users\Pierrette Flodrops\Desktop\FRST.txt
2019-09-21 09:42 - 2019-09-21 09:49 - 000018734 _____ C:\Users\Pierrette Flodrops\Desktop\Fixlog.txt
2019-09-20 19:07 - 2019-09-21 13:53 - 000000000 ____D C:\FRST
2019-09-20 19:07 - 2019-09-20 19:07 - 001615360 _____ (Farbar) C:\Users\Pierrette Flodrops\Downloads\FRST64.exe
2019-09-20 19:05 - 2019-09-20 19:05 - 001615360 _____ (Farbar) C:\Users\Pierrette Flodrops\Desktop\FRST64.exe
2019-09-20 19:05 - 2019-09-20 19:05 - 001615360 _____ (Farbar) C:\Users\Pierrette Flodrops\Desktop\FRST64 (1).exe
2019-09-20 17:21 - 2019-09-20 17:21 - 000281554 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPDiag.txt
2019-09-20 10:59 - 2019-09-20 10:59 - 000023713 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPCleaner (R).txt
2019-09-20 10:57 - 2019-09-20 10:57 - 000023561 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPCleaner (S).txt
2019-09-20 10:56 - 2019-09-20 10:56 - 000000000 ____D C:\Program Files (x86)\Allin1Convert_8h
2019-09-20 10:39 - 2019-09-20 10:39 - 000001925 _____ C:\Users\Pierrette Flodrops\Desktop\AdwCleaner[C01].txt
2019-09-20 10:30 - 2019-09-20 10:37 - 000245513 _____ C:\Users\Pierrette Flodrops\Desktop\malwerbythe rapport.txt
2019-09-20 10:04 - 2019-09-20 10:04 - 000001885 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-20 10:04 - 2019-09-20 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-20 10:04 - 2019-09-20 10:04 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-09-20 10:04 - 2019-08-27 05:50 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-09-20 09:47 - 2019-09-20 09:48 - 066233600 _____ (Malwarebytes ) C:\Users\Pierrette Flodrops\Desktop\mb3-setup-consumer-3.8.3.2965-1.0.625-1.0.12555.exe
2019-09-20 09:19 - 2019-09-20 09:19 - 003329920 _____ (Nicolas Coolman) C:\Users\Pierrette Flodrops\Downloads\ZHPCleaner (1).exe
2019-09-20 09:18 - 2019-09-20 09:20 - 000000853 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPCleaner.lnk
2019-09-20 09:17 - 2019-09-20 09:17 - 003329920 _____ (Nicolas Coolman) C:\Users\Pierrette Flodrops\Downloads\ZHPCleaner.exe
2019-09-20 09:13 - 2019-09-20 09:13 - 007622344 _____ (Malwarebytes) C:\Users\Pierrette Flodrops\Desktop\adwcleaner_7.4.1 (1).exe
2019-09-20 01:14 - 2019-09-20 17:21 - 000000135 _____ C:\Users\Pierrette
2019-09-20 01:14 - 2019-09-20 01:14 - 000000843 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPDiag.lnk
2019-09-20 01:13 - 2019-09-20 01:13 - 003248512 _____ (Nicolas Coolman) C:\Users\Pierrette Flodrops\Downloads\ZHPDiag3.exe
2019-09-19 23:59 - 2019-09-19 23:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-09-18 09:42 - 2019-09-18 09:42 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-09-18 09:42 - 2019-09-18 09:42 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-09-18 09:42 - 2019-09-18 09:42 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-09-18 09:42 - 2019-09-18 09:42 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-09-13 17:15 - 2019-09-13 17:17 - 000000000 ____D C:\Program Files (x86)\Canon
2019-09-13 17:13 - 2019-09-13 17:13 - 017141416 _____ C:\Users\Pierrette Flodrops\Downloads\win-ts5000-1_0-n_mcd.exe
2019-09-13 17:04 - 2019-09-20 09:36 - 000003132 _____ C:\WINDOWS\System32\Tasks\AdwCleaner_onReboot
2019-09-13 16:46 - 2019-09-13 16:47 - 007636680 _____ (Malwarebytes) C:\Users\Pierrette Flodrops\Downloads\adwcleaner_7.4.1.exe
2019-09-13 16:35 - 2019-09-13 16:35 - 000066556 _____ C:\ProgramData\agent.uninstall.1568385312.bdinstall.v2.bin
2019-09-13 16:28 - 2019-09-13 16:28 - 000403300 _____ C:\ProgramData\cl.uninstall.1568384640.bdinstall.v2.bin
2019-09-13 16:24 - 2019-09-13 16:24 - 000035756 _____ C:\ProgramData\dm.uninstall.1568384651.bdinstall.bin
2019-09-13 16:22 - 2019-09-13 16:22 - 000000000 ____D C:\WINDOWS\pss
2019-09-13 12:54 - 2019-09-13 12:54 - 000275414 _____ C:\Users\Pierrette Flodrops\Downloads\volotea (1).pdf
2019-09-13 12:49 - 2019-09-13 12:49 - 000396190 _____ C:\Users\Pierrette Flodrops\Downloads\volotea.pdf
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-21 13:51 - 2014-04-07 10:45 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-804294774-1027096335-1066270605-1002
2019-09-21 13:46 - 2015-11-17 15:05 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-09-21 13:46 - 2014-04-06 19:49 - 000000408 _____ C:\Users\Pierrette Flodrops\AppData\Roaming\sp_data.sys
2019-09-21 10:55 - 2015-11-17 15:05 - 000001230 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-09-21 10:09 - 2019-08-10 15:00 - 000000000 __RDO C:\Users\Pierrette Flodrops\OneDrive (2)
2019-09-21 09:52 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-21 09:51 - 2013-08-22 15:25 - 000524288 ___SH C:\WINDOWS\system32\config\BBI
2019-09-21 09:50 - 2014-04-07 12:05 - 000000000 _____ C:\Users\Pierrette Flodrops\AppData\LocalLow\ChangeTaskbarRect
2019-09-21 09:48 - 2017-03-16 20:09 - 000000008 __RSH C:\ProgramData\ntuser.pol
2019-09-21 09:43 - 2013-08-22 17:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-09-21 09:43 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2019-09-20 17:21 - 2017-04-21 15:56 - 000000000 ____D C:\Users\Pierrette Flodrops\AppData\Roaming\ZHP
2019-09-20 10:58 - 2014-04-07 10:56 - 000000000 ____D C:\ProgramData\IObit
2019-09-20 09:18 - 2017-04-21 15:56 - 000000000 ____D C:\Users\Pierrette Flodrops\AppData\Local\ZHP
2019-09-20 01:25 - 2015-01-15 10:54 - 000000000 ____D C:\Program Files (x86)\NirSoft
2019-09-20 00:00 - 2015-11-17 15:04 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-09-19 23:23 - 2013-08-22 17:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-19 23:22 - 2012-11-27 06:07 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-09-19 22:34 - 2016-03-23 20:33 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-13 16:48 - 2017-05-03 16:34 - 000000000 ____D C:\AdwCleaner
2019-09-13 16:38 - 2012-12-28 18:29 - 000000000 ____D C:\Program Files\ASUS
2019-09-13 16:29 - 2017-05-28 22:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2019-09-13 16:29 - 2014-04-07 11:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-13 16:24 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2019-09-13 12:55 - 2019-06-12 16:31 - 000000000 ____D C:\Users\Pierrette Flodrops\Documents\Administratif
2019-09-13 12:32 - 2018-03-13 19:41 - 000004662 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-13 12:32 - 2014-04-07 13:38 - 000004460 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-09-13 12:32 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-13 12:32 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-09-08 21:15 - 2018-05-04 22:52 - 000007343 _____ C:\Users\Pierrette Flodrops\Documents\pense bête.odt
2019-09-08 21:04 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-09-08 21:02 - 2015-01-15 11:09 - 000002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2019-08-28 17:54 - 2019-08-15 19:58 - 000000000 ____D C:\Users\Pierrette Flodrops\Desktop\Patrick
2019-08-25 15:58 - 2018-11-18 19:57 - 000000000 ___RD C:\Users\Pierrette Flodrops\Documents\PATRICK
2019-08-25 12:32 - 2014-03-18 12:02 - 001824010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-25 12:32 - 2014-03-18 11:26 - 000812350 _____ C:\WINDOWS\system32\perfh00C.dat
2019-08-25 12:32 - 2014-03-18 11:26 - 000159412 _____ C:\WINDOWS\system32\perfc00C.dat
==================== Fichiers à la racine de certains dossiers ================
2014-05-10 17:56 - 2014-06-02 10:59 - 000000000 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2015-11-12 20:41 - 2015-11-12 20:41 - 000000021 _____ () C:\Users\Pierrette Flodrops\AppData\Roaming\my_intel.sys
2014-04-06 19:49 - 2019-09-21 13:46 - 000000408 _____ () C:\Users\Pierrette Flodrops\AppData\Roaming\sp_data.sys
2014-08-07 12:31 - 2018-04-17 21:45 - 000021504 _____ () C:\Users\Pierrette Flodrops\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-03 21:55 - 2017-11-11 00:32 - 000007605 _____ () C:\Users\Pierrette Flodrops\AppData\Local\resmon.resmoncfg
2016-01-29 17:03 - 2016-01-29 17:03 - 000000000 _____ () C:\Users\Pierrette Flodrops\AppData\Local\{8F99ED62-EAFF-4BCD-AFD7-4F14EEAD2FCF}
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ============================
Exécuté par Pierrette Flodrops (administrateur) sur PIERRETTE (ASUSTeK COMPUTER INC. K55VD) (21-09-2019 13:53:22)
Exécuté depuis C:\Users\Pierrette Flodrops\Desktop
Profils chargés: UpdatusUser & Pierrette Flodrops (Profils disponibles: UpdatusUser & Pierrette Flodrops)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK) [Fichier non signé] C:\Windows\SysWOW64\ACEngSvr.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realsil Microelectronics Inc.) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe********************************************* [107192 2012-09-11] () [Fichier non signé]
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2012-11-27] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé]
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6023488 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
HKU\S-1-5-21-804294774-1027096335-1066270605-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-12-10] (NVIDIA CORPORATION -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-12-10] (NVIDIA CORPORATION -> NVIDIA Corporation)
Startup: C:\Users\Pierrette Flodrops\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Canon IJ Status Monitor Canon MG5500 series Printer.lnk [2019-05-05]
ShortcutAndArgument: Canon IJ Status Monitor Canon MG5500 series Printer.lnk -> C:\WINDOWS\system32\rundll32.exe => C:\Users\PIERRE~1\CNMSSC~1.DLL,SMStarterEntryPoint CNBJNP_F481398A16CC;Canon MG5500 series Printer;cnmss Canon MG5500 series Printer (Local).dll;Canon IJ Status Monitor Canon MG5500 series Printer.lnk
Startup: C:\Users\Pierrette Flodrops\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2019-08-13]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0AB12B25-FA7C-49C2-8140-B9AD529AC5DB} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-13] (Adobe Inc. -> Adobe)
Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {12727E7D-2F1A-4239-A8FD-0ADF5BEC1706} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {161975F7-0B18-4874-8299-C4B05272281B} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032 2012-09-18] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {4E1D9BC6-F24E-4AB1-A846-AC4FF73705BA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428640 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5701374B-EE31-4838-95DA-D6BDBFF0F0A7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117728 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5795C7E4-24F2-4626-B5E6-F6E059184152} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {5C4617DE-DD23-4D82-A125-10D4030A231B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-23] (Google Inc -> Google Inc.)
Task: {6CB133E8-0A86-4C4B-A8C6-3C578398FEAA} - System32\Tasks\AdwCleaner_onReboot => C:/Users/Pierrette Flodrops/Desktop/adwcleaner_7.4.1 (1).exe [7622344 2019-09-20] (Malwarebytes Inc -> Malwarebytes)
Task: {7618FD62-4F60-437D-9EBA-D71A7670ED6D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {96EEF842-F07E-4615-ABE8-D475D3E0FEF2} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [813856 2014-06-06] (IObit Information Technology -> IObit)
Task: {9F55E726-910C-443E-B00F-5B9CC904E4A6} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1018240 2012-08-24] (ASUSTeK Computer Inc. -> ASUS)
Task: {9FEFC245-E6AC-4061-A9E2-51C536EB7917} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117728 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A191EF69-0903-4B19-96BE-55A31D6BD90A} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [17792 2012-10-31] (ASUSTeK Computer Inc. -> AsusTek)
Task: {A57936DC-3720-45B6-A35D-BE3EE702267D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A6835ECD-E3D8-4E74-A5A5-82801E626152} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {AA216C92-E596-43A9-97ED-9504AFB774F0} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
Task: {B05D5853-E5E6-4831-BC44-6C44F553B9B7} - System32\Tasks\Uninstaller_SkipUac_Pierrette_Flodrops => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {BA4E17DB-747C-4232-B6BD-A5A1D676DB82} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {C5E00A6F-6708-4495-893D-9A5AD206E11D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {D0E895F5-CAC8-4571-9CAB-BE7C6266311D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-23] (Google Inc -> Google Inc.)
Task: {D98A63D0-8811-443B-AC62-DFFF555846BC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {DA7CCB03-C252-4B55-9A9D-496B5B3B5294} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428640 2019-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {DBC19FBC-94D3-4EF2-93CB-C841D2749928} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-13] (Adobe Inc. -> Adobe)
Task: {E56A51CA-2E72-4E5A-A3E7-DBEA91710FC8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [101694776 2014-09-25] (Microsoft Windows -> Microsoft Corporation)
Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {FA61C9C8-2AC4-479A-8DB5-4E0BA4523368} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{170CCC3C-31C1-4F81-A057-3C76F2A4766F}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{170CCC3C-31C1-4F81-A057-3C76F2A4766F}: [DhcpNameServer] 87.98.175.85
Tcpip\..\Interfaces\{2F7ECB1D-2F90-464E-AA03-D3DF8AD0CA28}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{47852F02-B63E-4F91-8398-E9388C9F359D}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{47852F02-B63E-4F91-8398-E9388C9F359D}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{59350f03-4828-11e4-824f-806e6f6e6963}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{B895E0FE-102A-4A8C-8049-8BC71714E26F}: [NameServer] 8.8.8.8
HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.30,1]
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-804294774-1027096335-1066270605-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com
HKU\S-1-5-21-804294774-1027096335-1066270605-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-804294774-1027096335-1066270605-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [Fichier non signé]
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: he1oaypd.default-1514032955629
FF ProfilePath: C:\Users\Pierrette Flodrops\AppData\Roaming\Mozilla\Firefox\Profiles\he1oaypd.default-1514032955629 [2019-09-21]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-13] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-13] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default [2019-09-21]
CHR Extension: (NewNoteCenter) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbmonpdioffoenpdbllicfjjobbhhpnk [2019-09-21]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-09-21]
CHR Extension: (FileConvertOnline) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafegaaojdkpkbhdaimhkdhjiaodegbc [2019-09-21]
CHR Extension: (MyFileConvert) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnckbjbhoclehoieokgiecdiakbaoodg [2019-09-21]
CHR Extension: (EasyPDFCombine) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekamneaohnpkfjaffmimdhgbpdablhbn [2019-09-21]
CHR Extension: (File Send Suite) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffkkhnmhakkikpkabfmoejhlohnceknd [2019-09-21]
CHR Extension: (MyTransitGuide) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\geeagoabbeagdhepnpejfcjcljkpijlk [2019-09-21]
CHR Extension: (AdBlock) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-09-21]
CHR Extension: (Video Converter by VideoConverterHQ) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\glohakccicfcgpelekfpgllfnlameopo [2019-09-21]
CHR Extension: (SmartEasyMaps) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjkkeblfbjbklichcnfhecghafokbcol [2019-09-21]
CHR Extension: (TotalRecipeSearch) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\mamgcopfdmhhimapcbcokhpjnmhfenjh [2019-09-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-21]
CHR Extension: (NewNoteCenter) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojnednkgifidkacnebhienjimimflbmj [2019-09-21]
CHR Extension: (FromDocToPDF) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbneiecbhikjapoihjpemfmpaalkafkh [2019-09-21]
CHR Extension: (Chrome Media Router) - C:\Users\Pierrette Flodrops\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-21]
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUSTeK Computer Inc. -> ASUS)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11568144 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-09-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-10-22] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72992 2014-06-06] (IObit Information Technology -> IObit)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-09-30] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-09-30] (Microsoft Corporation -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athw8x.sys [3915264 2013-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-10-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [14992 2012-08-02] (ASUSTeK Computer Inc. -> )
R3 RTL8168; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [35856 2014-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [257880 2014-09-30] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123224 2014-09-30] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-21 13:53 - 2019-09-21 13:53 - 000029065 _____ C:\Users\Pierrette Flodrops\Desktop\FRST.txt
2019-09-21 09:42 - 2019-09-21 09:49 - 000018734 _____ C:\Users\Pierrette Flodrops\Desktop\Fixlog.txt
2019-09-20 19:07 - 2019-09-21 13:53 - 000000000 ____D C:\FRST
2019-09-20 19:07 - 2019-09-20 19:07 - 001615360 _____ (Farbar) C:\Users\Pierrette Flodrops\Downloads\FRST64.exe
2019-09-20 19:05 - 2019-09-20 19:05 - 001615360 _____ (Farbar) C:\Users\Pierrette Flodrops\Desktop\FRST64.exe
2019-09-20 19:05 - 2019-09-20 19:05 - 001615360 _____ (Farbar) C:\Users\Pierrette Flodrops\Desktop\FRST64 (1).exe
2019-09-20 17:21 - 2019-09-20 17:21 - 000281554 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPDiag.txt
2019-09-20 10:59 - 2019-09-20 10:59 - 000023713 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPCleaner (R).txt
2019-09-20 10:57 - 2019-09-20 10:57 - 000023561 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPCleaner (S).txt
2019-09-20 10:56 - 2019-09-20 10:56 - 000000000 ____D C:\Program Files (x86)\Allin1Convert_8h
2019-09-20 10:39 - 2019-09-20 10:39 - 000001925 _____ C:\Users\Pierrette Flodrops\Desktop\AdwCleaner[C01].txt
2019-09-20 10:30 - 2019-09-20 10:37 - 000245513 _____ C:\Users\Pierrette Flodrops\Desktop\malwerbythe rapport.txt
2019-09-20 10:04 - 2019-09-20 10:04 - 000001885 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-20 10:04 - 2019-09-20 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-20 10:04 - 2019-09-20 10:04 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-09-20 10:04 - 2019-08-27 05:50 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-09-20 09:47 - 2019-09-20 09:48 - 066233600 _____ (Malwarebytes ) C:\Users\Pierrette Flodrops\Desktop\mb3-setup-consumer-3.8.3.2965-1.0.625-1.0.12555.exe
2019-09-20 09:19 - 2019-09-20 09:19 - 003329920 _____ (Nicolas Coolman) C:\Users\Pierrette Flodrops\Downloads\ZHPCleaner (1).exe
2019-09-20 09:18 - 2019-09-20 09:20 - 000000853 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPCleaner.lnk
2019-09-20 09:17 - 2019-09-20 09:17 - 003329920 _____ (Nicolas Coolman) C:\Users\Pierrette Flodrops\Downloads\ZHPCleaner.exe
2019-09-20 09:13 - 2019-09-20 09:13 - 007622344 _____ (Malwarebytes) C:\Users\Pierrette Flodrops\Desktop\adwcleaner_7.4.1 (1).exe
2019-09-20 01:14 - 2019-09-20 17:21 - 000000135 _____ C:\Users\Pierrette
2019-09-20 01:14 - 2019-09-20 01:14 - 000000843 _____ C:\Users\Pierrette Flodrops\Desktop\ZHPDiag.lnk
2019-09-20 01:13 - 2019-09-20 01:13 - 003248512 _____ (Nicolas Coolman) C:\Users\Pierrette Flodrops\Downloads\ZHPDiag3.exe
2019-09-19 23:59 - 2019-09-19 23:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-09-18 09:42 - 2019-09-18 09:42 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-09-18 09:42 - 2019-09-18 09:42 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-09-18 09:42 - 2019-09-18 09:42 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-09-18 09:42 - 2019-09-18 09:42 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-09-13 17:15 - 2019-09-13 17:17 - 000000000 ____D C:\Program Files (x86)\Canon
2019-09-13 17:13 - 2019-09-13 17:13 - 017141416 _____ C:\Users\Pierrette Flodrops\Downloads\win-ts5000-1_0-n_mcd.exe
2019-09-13 17:04 - 2019-09-20 09:36 - 000003132 _____ C:\WINDOWS\System32\Tasks\AdwCleaner_onReboot
2019-09-13 16:46 - 2019-09-13 16:47 - 007636680 _____ (Malwarebytes) C:\Users\Pierrette Flodrops\Downloads\adwcleaner_7.4.1.exe
2019-09-13 16:35 - 2019-09-13 16:35 - 000066556 _____ C:\ProgramData\agent.uninstall.1568385312.bdinstall.v2.bin
2019-09-13 16:28 - 2019-09-13 16:28 - 000403300 _____ C:\ProgramData\cl.uninstall.1568384640.bdinstall.v2.bin
2019-09-13 16:24 - 2019-09-13 16:24 - 000035756 _____ C:\ProgramData\dm.uninstall.1568384651.bdinstall.bin
2019-09-13 16:22 - 2019-09-13 16:22 - 000000000 ____D C:\WINDOWS\pss
2019-09-13 12:54 - 2019-09-13 12:54 - 000275414 _____ C:\Users\Pierrette Flodrops\Downloads\volotea (1).pdf
2019-09-13 12:49 - 2019-09-13 12:49 - 000396190 _____ C:\Users\Pierrette Flodrops\Downloads\volotea.pdf
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-09-21 13:51 - 2014-04-07 10:45 - 000003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-804294774-1027096335-1066270605-1002
2019-09-21 13:46 - 2015-11-17 15:05 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-09-21 13:46 - 2014-04-06 19:49 - 000000408 _____ C:\Users\Pierrette Flodrops\AppData\Roaming\sp_data.sys
2019-09-21 10:55 - 2015-11-17 15:05 - 000001230 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-09-21 10:09 - 2019-08-10 15:00 - 000000000 __RDO C:\Users\Pierrette Flodrops\OneDrive (2)
2019-09-21 09:52 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-21 09:51 - 2013-08-22 15:25 - 000524288 ___SH C:\WINDOWS\system32\config\BBI
2019-09-21 09:50 - 2014-04-07 12:05 - 000000000 _____ C:\Users\Pierrette Flodrops\AppData\LocalLow\ChangeTaskbarRect
2019-09-21 09:48 - 2017-03-16 20:09 - 000000008 __RSH C:\ProgramData\ntuser.pol
2019-09-21 09:43 - 2013-08-22 17:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-09-21 09:43 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2019-09-20 17:21 - 2017-04-21 15:56 - 000000000 ____D C:\Users\Pierrette Flodrops\AppData\Roaming\ZHP
2019-09-20 10:58 - 2014-04-07 10:56 - 000000000 ____D C:\ProgramData\IObit
2019-09-20 09:18 - 2017-04-21 15:56 - 000000000 ____D C:\Users\Pierrette Flodrops\AppData\Local\ZHP
2019-09-20 01:25 - 2015-01-15 10:54 - 000000000 ____D C:\Program Files (x86)\NirSoft
2019-09-20 00:00 - 2015-11-17 15:04 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-09-19 23:23 - 2013-08-22 17:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-19 23:22 - 2012-11-27 06:07 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-09-19 22:34 - 2016-03-23 20:33 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-13 16:48 - 2017-05-03 16:34 - 000000000 ____D C:\AdwCleaner
2019-09-13 16:38 - 2012-12-28 18:29 - 000000000 ____D C:\Program Files\ASUS
2019-09-13 16:29 - 2017-05-28 22:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2019-09-13 16:29 - 2014-04-07 11:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-13 16:24 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2019-09-13 12:55 - 2019-06-12 16:31 - 000000000 ____D C:\Users\Pierrette Flodrops\Documents\Administratif
2019-09-13 12:32 - 2018-03-13 19:41 - 000004662 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-13 12:32 - 2014-04-07 13:38 - 000004460 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-09-13 12:32 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-13 12:32 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-09-08 21:15 - 2018-05-04 22:52 - 000007343 _____ C:\Users\Pierrette Flodrops\Documents\pense bête.odt
2019-09-08 21:04 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-09-08 21:02 - 2015-01-15 11:09 - 000002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2019-08-28 17:54 - 2019-08-15 19:58 - 000000000 ____D C:\Users\Pierrette Flodrops\Desktop\Patrick
2019-08-25 15:58 - 2018-11-18 19:57 - 000000000 ___RD C:\Users\Pierrette Flodrops\Documents\PATRICK
2019-08-25 12:32 - 2014-03-18 12:02 - 001824010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-25 12:32 - 2014-03-18 11:26 - 000812350 _____ C:\WINDOWS\system32\perfh00C.dat
2019-08-25 12:32 - 2014-03-18 11:26 - 000159412 _____ C:\WINDOWS\system32\perfc00C.dat
==================== Fichiers à la racine de certains dossiers ================
2014-05-10 17:56 - 2014-06-02 10:59 - 000000000 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2015-11-12 20:41 - 2015-11-12 20:41 - 000000021 _____ () C:\Users\Pierrette Flodrops\AppData\Roaming\my_intel.sys
2014-04-06 19:49 - 2019-09-21 13:46 - 000000408 _____ () C:\Users\Pierrette Flodrops\AppData\Roaming\sp_data.sys
2014-08-07 12:31 - 2018-04-17 21:45 - 000021504 _____ () C:\Users\Pierrette Flodrops\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-03 21:55 - 2017-11-11 00:32 - 000007605 _____ () C:\Users\Pierrette Flodrops\AppData\Local\resmon.resmoncfg
2016-01-29 17:03 - 2016-01-29 17:03 - 000000000 _____ () C:\Users\Pierrette Flodrops\AppData\Local\{8F99ED62-EAFF-4BCD-AFD7-4F14EEAD2FCF}
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ============================