Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018 Exécuté par Pierre (administrateur) sur HOME (29-01-2018 17:47:11) Exécuté depuis C:\Users\Pierre\Downloads Profils chargés: Pierre (Profils disponibles: Pierre) Platform: Windows 8.1 (Update) (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BavSvc.exe (Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BHipsSvc.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe () C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\bavhm.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Baidu, Inc.) C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BavTray.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE (Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13196432 2012-09-27] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Baidu Antivirus] => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BavTray.exe [1997296 2016-08-30] (Baidu, Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd) HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.) HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\...\Run: [SelfVault] => C:\Program Files (x86)\SelfVault\SelfVault.exe [750080 2013-11-01] () HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\...\Run: [cacaoweb] => "C:\Users\Pierre\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplaye HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\...\MountPoints2: {0cd440f0-b640-11e6-825c-7054d2c1368e} - "I:\Autorun.exe" HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\...\MountPoints2: {93e40b03-b68f-11e6-825d-7054d2c1368e} - "I:\Autorun.exe" HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Corporation) IFEO\OSppSvc.exe: [Debugger] KMS-R@1nHook.exe IFEO\SppExtComObj.exe: [Debugger] KMS-R@1nHook.exe Startup: C:\Users\Pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2018-01-14] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) GroupPolicy: Restriction <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 10.182.0.1 Tcpip\..\Interfaces\{F247B0A1-3BBC-48C3-AADC-C60EE0DFCB7F}: [DhcpNameServer] 10.181.0.1 Tcpip\..\Interfaces\{F96EF0F4-05F8-46F2-94E4-24CC3EFBB9BE}: [DhcpNameServer] 10.182.0.1 Internet Explorer: ================== HKU\S-1-5-21-3355688020-1154033816-1204595866-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-01-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-11-19] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-19] (Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-19] (Microsoft Corporation) Handler: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - Pas de fichier FireFox: ======== FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems) FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-19] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-19] (Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-12-19] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems) Chrome: ======= CHR HomePage: Default -> chrome://apps/ CHR Profile: C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default [2018-01-29] CHR Extension: (Slides) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Duolingo sur le Web) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2016-08-30] CHR Extension: (Docs) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-30] CHR Extension: (Audiotool) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkgoccjhfjgjedhkiefaclppgbmoobnk [2016-11-04] CHR Extension: (YouTube) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-30] CHR Extension: (GeoGebra Classique) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnbaboaihhkjoaolfnfoablhllahjnee [2017-09-13] CHR Extension: (Facebook) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2016-08-30] CHR Extension: (Adblock Plus) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-27] CHR Extension: (Piano virtuel) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohgcponedmbhgbbdinajeoapmoaifdj [2017-12-24] CHR Extension: (Adobe Acrobat) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04] CHR Extension: (Free Rider HD) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\emikpifndnjfkgofoglceekhkbaicbde [2016-11-04] CHR Extension: (Sheets) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Google Docs hors connexion) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-30] CHR Extension: (Lilo Search) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldhcdlnondjolfdmlagafpjnhglkfefl [2017-02-09] CHR Extension: (Lilo Tab) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfifcboiomeogenbbmnbeiobeplcmdhm [2017-02-09] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22] CHR Extension: (piZap Photo Editor) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\occpjibghkbopohbefbejkklnfdkdmok [2016-11-04] CHR Extension: (Lilo.org) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejnkhmeilmiplpmenkegjaibnjbappo [2017-08-09] CHR Extension: (Gmail) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-30] CHR Extension: (Chrome Media Router) - C:\Users\Pierre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-15] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated) R2 BavSvc; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BavSvc.exe [2572928 2016-08-30] (Baidu, Inc.) S3 BdSandboxSrv; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BdSandboxSrv64.exe [490528 2015-03-05] (Baidu, Inc.) R2 BHipsSvc; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BHipsSvc.exe [531232 2016-08-30] (Baidu, Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7761576 2018-01-02] (Microsoft Corporation) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] () S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201360 2012-09-27] (Realtek Semiconductor) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) S2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BdApiUtil; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BdApiUtil64.sys [116936 2016-08-30] (Baidu, Inc.) R3 bdark64; C:\Windows\system32\drivers\bdark64.sys [78792 2015-05-27] () S3 BdCameraProtect; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\BdCameraProtect64.sys [25032 2016-08-30] (Baidu, Inc.) S3 BdSandbox; C:\Windows\System32\drivers\BdSandbox.sys [236920 2015-03-05] (Baidu, Inc.) R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [62920 2016-08-30] (Baidu, Inc.) R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [38344 2016-08-30] (Baidu, Inc.) R1 Bnbase; C:\Windows\System32\drivers\bnbasex64.sys [62792 2016-08-30] (Baidu, Inc.) R1 Bndef; C:\Windows\System32\drivers\bndef64.sys [485672 2016-08-30] (Baidu, Inc.) R3 Bnmon; C:\Program Files (x86)\Baidu Security\Baidu Antivirus\5.4.3.147185.0\Bnmon64.sys [82376 2016-08-30] (Baidu, Inc.) R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [169416 2016-08-30] (Baidu, Inc.) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-11-29] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-11-29] (Disc Soft Ltd) R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2946264 2013-10-21] (Realtek Semiconductor Corporation ) R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-01-29 17:47 - 2018-01-29 17:49 - 000017960 _____ C:\Users\Pierre\Downloads\FRST.txt 2018-01-29 17:43 - 2018-01-29 17:43 - 000045587 _____ C:\Users\Pierre\Desktop\FRST.txt 2018-01-29 17:43 - 2018-01-29 17:43 - 000033448 _____ C:\Users\Pierre\Desktop\Addition.txt 2018-01-29 17:24 - 2018-01-29 17:47 - 000000000 ____D C:\FRST 2018-01-29 17:23 - 2018-01-29 17:23 - 002393088 _____ (Farbar) C:\Users\Pierre\Downloads\FRST64.exe 2018-01-29 16:15 - 2018-01-29 16:15 - 002967936 _____ C:\Users\Pierre\Downloads\ZHPDiag3.exe 2018-01-29 16:12 - 2018-01-29 16:13 - 008206624 _____ (Malwarebytes) C:\Users\Pierre\Downloads\adwcleaner_7.0.7.0.exe 2018-01-29 13:21 - 2018-01-29 13:21 - 000048953 _____ C:\Users\Pierre\Downloads\www-fun-mooc-fr.pdf 2018-01-27 21:55 - 2018-01-27 21:55 - 000192495 _____ C:\Users\Pierre\Downloads\Lettre de motivation.pdf 2018-01-27 21:50 - 2018-01-27 21:50 - 000192495 _____ C:\Users\Pierre\Desktop\Lettre de motivation.pdf 2018-01-27 21:20 - 2018-01-27 21:21 - 000016187 _____ C:\Users\Pierre\Desktop\EDT.pdf 2018-01-27 15:06 - 2018-01-27 15:06 - 000000000 ___RD C:\Users\Pierre\Desktop\Sans titre Project 2018-01-24 23:03 - 2018-01-24 23:03 - 001226133 _____ C:\Users\Pierre\Downloads\Droit des biens - 2018 - par 1.pdf 2018-01-23 21:17 - 2018-01-23 21:36 - 017860096 _____ C:\Users\Pierre\Downloads\2018Aménagement du territoire.ppt 2018-01-23 13:21 - 2018-01-23 13:26 - 006119964 _____ C:\Users\Pierre\Desktop\Tab3_ populationBis.xlsm 2018-01-22 19:57 - 2018-01-22 21:11 - 000000305 _____ C:\Users\Pierre\Desktop\MACRO virgule etre les cellules.txt 2018-01-22 18:59 - 2018-01-22 21:37 - 006100824 _____ C:\Users\Pierre\Desktop\Tab3_ populationBis.xlsx 2018-01-21 19:22 - 2018-01-21 19:23 - 000000056 _____ C:\Users\Pierre\Desktop\Adresse mail stage.txt 2018-01-21 18:08 - 2018-01-21 18:08 - 001348755 _____ C:\Users\Pierre\Desktop\StageDUT_INRA_Abeilles Environnement-1.pdf 2018-01-21 18:08 - 2018-01-21 18:08 - 000028211 _____ C:\Users\Pierre\Desktop\2018 ELA Offre de stage Echalote CG(1).pdf 2018-01-21 16:45 - 2018-01-21 17:24 - 000369710 _____ C:\Users\Pierre\Desktop\CV.pdf 2018-01-14 16:47 - 2018-01-14 16:47 - 000000000 ____D C:\Users\Pierre\Documents\Blocs-notes OneNote 2018-01-13 13:06 - 2018-01-13 15:16 - 000039424 _____ C:\Users\Pierre\Downloads\plaque-de-PY.xls 2018-01-12 18:44 - 2017-12-21 00:56 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2018-01-12 18:44 - 2017-12-21 00:56 - 000177648 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2018-01-09 10:09 - 2018-01-02 06:38 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2018-01-09 10:08 - 2018-01-02 08:56 - 002530400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2018-01-09 10:08 - 2018-01-02 07:39 - 022374248 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2018-01-09 10:08 - 2018-01-02 07:39 - 007408984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2018-01-09 10:08 - 2018-01-02 07:39 - 002013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2018-01-09 10:08 - 2018-01-02 07:39 - 000418648 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2018-01-09 10:08 - 2018-01-02 07:39 - 000354648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2018-01-09 10:08 - 2018-01-02 07:38 - 002176064 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2018-01-09 10:08 - 2018-01-02 07:38 - 001662096 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2018-01-09 10:08 - 2018-01-02 07:37 - 001737600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2018-01-09 10:08 - 2018-01-02 07:37 - 001676056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2018-01-09 10:08 - 2018-01-02 07:37 - 001536120 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2018-01-09 10:08 - 2018-01-02 07:37 - 001500432 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2018-01-09 10:08 - 2018-01-02 07:37 - 001371352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2018-01-09 10:08 - 2018-01-02 07:37 - 001135280 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2018-01-09 10:08 - 2018-01-02 07:37 - 000685440 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2018-01-09 10:08 - 2018-01-02 07:35 - 000989528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2018-01-09 10:08 - 2018-01-02 07:03 - 025739264 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2018-01-09 10:08 - 2018-01-02 07:00 - 019790760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2018-01-09 10:08 - 2018-01-02 06:59 - 001565520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2018-01-09 10:08 - 2018-01-02 06:59 - 001213784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2018-01-09 10:08 - 2018-01-02 06:39 - 000686080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2018-01-09 10:08 - 2018-01-02 06:30 - 002900480 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2018-01-09 10:08 - 2018-01-02 06:28 - 005796352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2018-01-09 10:08 - 2018-01-02 06:20 - 020275200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2018-01-09 10:08 - 2018-01-02 06:18 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2018-01-09 10:08 - 2018-01-02 06:16 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2018-01-09 10:08 - 2018-01-02 05:49 - 002294272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2018-01-09 10:08 - 2018-01-02 05:44 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2018-01-09 10:08 - 2018-01-02 05:40 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2018-01-09 10:08 - 2018-01-02 05:29 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2018-01-09 10:08 - 2018-01-02 05:27 - 001696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll 2018-01-09 10:08 - 2018-01-02 05:26 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2018-01-09 10:08 - 2018-01-02 05:25 - 000795648 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2018-01-09 10:08 - 2018-01-02 05:23 - 004508160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2018-01-09 10:08 - 2018-01-02 05:20 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2018-01-09 10:08 - 2018-01-02 05:16 - 000881152 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2018-01-09 10:08 - 2018-01-02 05:15 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2018-01-09 10:08 - 2018-01-02 05:06 - 000626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2018-01-09 10:08 - 2018-01-02 04:55 - 003548160 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2018-01-09 10:08 - 2017-12-10 14:46 - 007079424 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll 2018-01-09 10:08 - 2017-12-10 14:24 - 005275136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll 2018-01-09 10:08 - 2017-12-10 14:06 - 007797760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2018-01-09 10:08 - 2017-12-10 13:59 - 005270528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2018-01-09 10:08 - 2017-12-06 05:42 - 002452816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2018-01-09 10:08 - 2017-12-05 17:58 - 004168192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2018-01-09 10:07 - 2018-01-02 09:00 - 000590680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2018-01-09 10:07 - 2018-01-02 09:00 - 000242520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys 2018-01-09 10:07 - 2018-01-02 09:00 - 000214392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll 2018-01-09 10:07 - 2018-01-02 08:56 - 000567656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2018-01-09 10:07 - 2018-01-02 08:56 - 000397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2018-01-09 10:07 - 2018-01-02 08:56 - 000136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys 2018-01-09 10:07 - 2018-01-02 07:38 - 001063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2018-01-09 10:07 - 2018-01-02 07:35 - 001307840 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2018-01-09 10:07 - 2018-01-02 07:05 - 000164296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll 2018-01-09 10:07 - 2018-01-02 07:03 - 000341384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2018-01-09 10:07 - 2018-01-02 07:01 - 001902328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2018-01-09 10:07 - 2018-01-02 06:58 - 001502000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2018-01-09 10:07 - 2018-01-02 06:48 - 000507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2018-01-09 10:07 - 2018-01-02 06:40 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2018-01-09 10:07 - 2018-01-02 06:39 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys 2018-01-09 10:07 - 2018-01-02 06:39 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2018-01-09 10:07 - 2018-01-02 06:39 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys 2018-01-09 10:07 - 2018-01-02 06:38 - 000445952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2018-01-09 10:07 - 2018-01-02 06:38 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2018-01-09 10:07 - 2018-01-02 06:38 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2018-01-09 10:07 - 2018-01-02 06:38 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2018-01-09 10:07 - 2018-01-02 06:38 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys 2018-01-09 10:07 - 2018-01-02 06:38 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2018-01-09 10:07 - 2018-01-02 06:37 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2018-01-09 10:07 - 2018-01-02 06:37 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys 2018-01-09 10:07 - 2018-01-02 06:34 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll 2018-01-09 10:07 - 2018-01-02 06:31 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll 2018-01-09 10:07 - 2018-01-02 06:28 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2018-01-09 10:07 - 2018-01-02 06:28 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2018-01-09 10:07 - 2018-01-02 06:28 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2018-01-09 10:07 - 2018-01-02 06:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2018-01-09 10:07 - 2018-01-02 06:19 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll 2018-01-09 10:07 - 2018-01-02 06:17 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2018-01-09 10:07 - 2018-01-02 06:17 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2018-01-09 10:07 - 2018-01-02 06:09 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2018-01-09 10:07 - 2018-01-02 06:06 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2018-01-09 10:07 - 2018-01-02 06:02 - 000862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2018-01-09 10:07 - 2018-01-02 05:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2018-01-09 10:07 - 2018-01-02 05:59 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2018-01-09 10:07 - 2018-01-02 05:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2018-01-09 10:07 - 2018-01-02 05:56 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2018-01-09 10:07 - 2018-01-02 05:54 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2018-01-09 10:07 - 2018-01-02 05:53 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2018-01-09 10:07 - 2018-01-02 05:52 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2018-01-09 10:07 - 2018-01-02 05:51 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2018-01-09 10:07 - 2018-01-02 05:48 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2018-01-09 10:07 - 2018-01-02 05:45 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll 2018-01-09 10:07 - 2018-01-02 05:44 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2018-01-09 10:07 - 2018-01-02 05:43 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2018-01-09 10:07 - 2018-01-02 05:42 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2018-01-09 10:07 - 2018-01-02 05:42 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2018-01-09 10:07 - 2018-01-02 05:41 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2018-01-09 10:07 - 2018-01-02 05:40 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2018-01-09 10:07 - 2018-01-02 05:40 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2018-01-09 10:07 - 2018-01-02 05:38 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2018-01-09 10:07 - 2018-01-02 05:37 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2018-01-09 10:07 - 2018-01-02 05:34 - 001217536 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2018-01-09 10:07 - 2018-01-02 05:34 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2018-01-09 10:07 - 2018-01-02 05:33 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2018-01-09 10:07 - 2018-01-02 05:33 - 000845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2018-01-09 10:07 - 2018-01-02 05:33 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll 2018-01-09 10:07 - 2018-01-02 05:32 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2018-01-09 10:07 - 2018-01-02 05:29 - 000754176 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll 2018-01-09 10:07 - 2018-01-02 05:27 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2018-01-09 10:07 - 2018-01-02 05:25 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2018-01-09 10:07 - 2018-01-02 05:25 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2018-01-09 10:07 - 2018-01-02 05:23 - 002882048 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2018-01-09 10:07 - 2018-01-02 05:22 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2018-01-09 10:07 - 2018-01-02 05:22 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll 2018-01-09 10:07 - 2018-01-02 05:21 - 000391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2018-01-09 10:07 - 2018-01-02 05:18 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll 2018-01-09 10:07 - 2018-01-02 05:18 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2018-01-09 10:07 - 2018-01-02 05:17 - 001547264 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2018-01-09 10:07 - 2018-01-02 05:17 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2018-01-09 10:07 - 2018-01-02 05:17 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll 2018-01-09 10:07 - 2018-01-02 05:17 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2018-01-09 10:07 - 2018-01-02 05:16 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2018-01-09 10:07 - 2018-01-02 05:16 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2018-01-09 10:07 - 2018-01-02 05:16 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2018-01-09 10:07 - 2018-01-02 05:13 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll 2018-01-09 10:07 - 2018-01-02 05:11 - 000185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll 2018-01-09 10:07 - 2018-01-02 05:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll 2018-01-09 10:07 - 2018-01-02 05:09 - 000827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2018-01-09 10:07 - 2018-01-02 05:09 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2018-01-09 10:07 - 2018-01-02 05:09 - 000543232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll 2018-01-09 10:07 - 2018-01-02 05:08 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll 2018-01-09 10:07 - 2018-01-02 05:07 - 001265664 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2018-01-09 10:07 - 2018-01-02 05:07 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll 2018-01-09 10:07 - 2018-01-02 05:05 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll 2018-01-09 10:07 - 2018-01-02 05:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2018-01-09 10:07 - 2018-01-02 04:59 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll 2018-01-09 10:07 - 2018-01-02 04:58 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2018-01-09 10:07 - 2018-01-02 04:57 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll 2018-01-09 10:07 - 2018-01-02 04:56 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2018-01-09 10:07 - 2018-01-02 04:54 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2018-01-09 10:07 - 2018-01-02 04:53 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2018-01-09 10:07 - 2017-12-29 09:21 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2018-01-09 10:07 - 2017-12-15 00:26 - 000374096 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2018-01-09 10:07 - 2017-12-14 22:39 - 000315736 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2018-01-09 10:07 - 2017-12-14 11:19 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2018-01-09 10:07 - 2017-12-14 11:17 - 000044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2018-01-09 10:07 - 2017-12-10 14:59 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2018-01-09 10:07 - 2017-12-10 14:58 - 000035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2018-01-09 10:07 - 2014-11-08 05:00 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys 2018-01-09 10:07 - 2014-11-08 04:56 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp 2018-01-09 10:07 - 2014-11-08 04:56 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll 2018-01-09 10:07 - 2014-11-08 04:56 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll 2018-01-09 10:07 - 2014-11-08 04:24 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll 2018-01-09 10:07 - 2014-11-08 04:13 - 000039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp 2018-01-09 10:07 - 2014-11-08 04:13 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll 2018-01-09 10:07 - 2014-11-08 04:13 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll 2018-01-09 10:07 - 2014-11-08 03:48 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll 2018-01-09 10:07 - 2014-11-04 07:27 - 000128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe 2018-01-05 02:49 - 2018-01-05 02:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2018-01-05 02:49 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys 2018-01-05 01:08 - 2018-01-05 01:11 - 000000000 ____D C:\BavSandboxRoot 2018-01-04 22:35 - 2018-01-04 22:35 - 000000000 ____D C:\ProgramData\Malwarebytes 2018-01-04 22:35 - 2018-01-04 22:35 - 000000000 ____D C:\Program Files\Malwarebytes 2018-01-04 20:15 - 2018-01-05 02:40 - 000000000 ____D C:\AdwCleaner 2018-01-04 19:34 - 2018-01-04 19:34 - 000000000 ____D C:\Users\Pierre\AppData\Local\CrashDumps 2018-01-04 19:03 - 2018-01-05 02:40 - 000000000 ____D C:\ProgramData\RogueKiller 2018-01-04 19:00 - 2018-01-05 02:40 - 000000000 ____D C:\Program Files\RogueKiller 2018-01-04 18:11 - 2018-01-05 01:03 - 000000000 ____D C:\Program Files\bVappltlpbVo9iO5 2018-01-04 18:07 - 2018-01-04 18:07 - 000000000 ____D C:\Windows\system32\sstmp 2018-01-04 18:03 - 2018-01-05 02:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2018-01-04 18:00 - 2018-01-05 02:40 - 000000000 ____D C:\Users\Pierre\AppData\Roaming\UpProVerified 2018-01-04 18:00 - 2018-01-05 02:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Up Pro (Verified) 2018-01-04 17:58 - 2018-01-05 00:53 - 000000000 ___HD C:\Program Files (x86)\vadim 2018-01-04 17:58 - 2018-01-05 00:51 - 000000000 ___HD C:\Program Files (x86)\Parmer 2018-01-04 17:58 - 2018-01-05 00:49 - 000000000 ___HD C:\Program Files (x86)\Adenauer ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-01-29 17:32 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf 2018-01-29 16:43 - 2017-05-28 23:44 - 000000000 ____D C:\Users\Pierre\AppData\Roaming\SmartSteamEmu 2018-01-29 12:35 - 2016-08-30 10:16 - 000003924 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4704A221-3929-4D2F-B26B-C517D9380D10} 2018-01-28 12:12 - 2016-08-30 10:16 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3355688020-1154033816-1204595866-1001 2018-01-28 12:06 - 2016-08-30 17:57 - 000000000 ____D C:\Users\Pierre\AppData\Local\Adobe 2018-01-27 15:33 - 2017-09-13 22:46 - 000000000 ____D C:\Users\Pierre\AppData\Local\ElevatedDiagnostics 2018-01-27 13:09 - 2016-08-30 09:39 - 001826754 _____ C:\Windows\system32\PerfStringBackup.INI 2018-01-27 13:09 - 2013-08-22 23:24 - 000813248 _____ C:\Windows\system32\perfh00C.dat 2018-01-27 13:09 - 2013-08-22 23:24 - 000159750 _____ C:\Windows\system32\perfc00C.dat 2018-01-23 22:44 - 2016-08-30 10:10 - 000000000 ____D C:\Users\Pierre\AppData\Local\Packages 2018-01-21 14:46 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps 2018-01-21 14:46 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppReadiness 2018-01-21 14:37 - 2017-02-09 21:34 - 000000000 ____D C:\Users\Pierre\Desktop\COURS 2018-01-21 14:23 - 2017-02-09 21:43 - 000000000 ____D C:\Users\Pierre\Desktop\PAPIERS 2018-01-15 23:53 - 2016-09-09 19:44 - 000000000 ____D C:\ProgramData\CanonIJPLM 2018-01-13 21:18 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache 2018-01-12 18:48 - 2016-08-30 10:12 - 000000000 ___DO C:\Users\Pierre\SkyDrive 2018-01-12 18:48 - 2013-08-22 16:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2018-01-12 18:43 - 2017-11-20 01:00 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2018-01-12 18:42 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-01-12 18:42 - 2013-08-22 15:44 - 000563320 _____ C:\Windows\system32\FNTCACHE.DAT 2018-01-12 18:39 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI 2018-01-12 18:34 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData 2018-01-10 15:27 - 2017-09-28 17:39 - 000003166 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3355688020-1154033816-1204595866-1001 2018-01-10 15:27 - 2017-09-28 17:39 - 000002349 _____ C:\Users\Pierre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk 2018-01-10 14:45 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp 2018-01-10 14:44 - 2016-08-30 11:18 - 000000000 ____D C:\Windows\system32\MRT 2018-01-10 14:40 - 2017-10-12 04:51 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe 2018-01-10 14:40 - 2016-08-30 11:18 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-01-09 05:41 - 2016-08-30 17:54 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-01-09 05:41 - 2016-08-30 17:54 - 000002201 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-01-05 02:45 - 2016-08-30 10:09 - 000000000 ____D C:\Users\Pierre 2018-01-05 02:41 - 2017-11-20 00:49 - 000000000 ____D C:\Windows\System32\Tasks\R@1n-KMS 2018-01-05 02:41 - 2016-08-30 10:10 - 000000000 ____D C:\Windows\System32\Tasks\WPD 2018-01-05 02:41 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2018-01-05 02:41 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2018-01-05 02:41 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\spool 2018-01-05 02:40 - 2017-08-15 12:15 - 000000000 ____D C:\Program Files (x86)\SelfVault 2018-01-05 02:33 - 2016-08-30 12:09 - 000000000 ____D C:\Windows\system32\SRSLabs 2018-01-05 02:33 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\registration 2018-01-05 02:32 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Licenses 2018-01-05 02:31 - 2016-08-30 17:56 - 000000000 ____D C:\ProgramData\Baidu 2018-01-05 00:41 - 2013-08-22 14:36 - 000000000 ____D C:\Program Files\NoteBurner Lite 2018-01-04 18:16 - 2016-09-10 12:09 - 000000000 ____D C:\ProgramData\BavSvc_exe 2018-01-04 18:00 - 2017-05-23 18:09 - 000000000 ____D C:\Users\Pierre\AppData\Roaming\Mozilla ==================== Fichiers à la racine de certains dossiers ======= 2017-05-28 15:29 - 2017-05-28 15:31 - 325407814 _____ () C:\Users\Pierre\AppData\Local\ACCCx4_0_1_188.zip 2017-03-05 20:38 - 2017-03-06 02:26 - 000013824 _____ () C:\Users\Pierre\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini Certains fichiers dans TEMP: ==================== 2017-11-19 23:32 - 2017-11-19 23:32 - 001856576 _____ (Oracle Corporation) C:\Users\Pierre\AppData\Local\Temp\jre-8u151-windows-au.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2018-01-23 19:53 ==================== Fin de FRST.txt ============================