cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-05-2015
Ran by axechen (administrator) on AXECHEN-PC on 04-05-2015 00:56:31
Running from C:\Users\axechen\Desktop
Loaded Profiles: axechen (Available profiles: axechen)
Platform: Microsoft Windows 7 Édition Intégrale (X86) OS Language: Français (France)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Ankama) C:\Users\axechen\AppData\Local\Ankama\Dofus\transition\transition.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-03] (Avast Software s.r.o.)
HKU\S-1-5-21-2950026301-2077354083-2858245436-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6278424 2015-04-23] (Piriform Ltd)
HKU\S-1-5-21-2950026301-2077354083-2858245436-1000\...\Run: [Skype] => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-05-03] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2950026301-2077354083-2858245436-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/fr-fr/?ocid=iehp
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-03] (Avast Software s.r.o.)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254

FireFox:
========
FF ProfilePath: C:\Users\axechen\AppData\Roaming\Mozilla\Firefox\Profiles\cbbtiu3d.default
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-05-03]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-03]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-03] (Avast Software s.r.o.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-05-03] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [74976 2015-05-03] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-05-03] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-05-03] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787760 2015-05-03] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427992 2015-05-03] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [106912 2015-05-03] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [209048 2015-05-03] ()
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [629760 2010-08-10] (Realtek Semiconductor Corporation )

========================== Drivers MD5 =======================

C:\Windows\system32\DRIVERS\1394ohci.sys 6D2ACA41739BFE8CB86EE8E85F29697D
C:\Windows\System32\DRIVERS\ACPI.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys DDC040FDB01EF1712A6B13E52AFB104C
C:\Windows\System32\DRIVERS\AGRSM.sys 7E10E3BB9B258AD8A9300F91214D67B9
C:\Windows\system32\DRIVERS\agp440.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\aliide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdsata.sys 2101A86C25C154F8314B24EF49D7FBC2
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\amdxata.sys B81C2B5616F6420A9941EA093A92B150
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\system32\drivers\aswHwid.sys EFDEF61C488A193986D4672658E91532
C:\Windows\system32\drivers\aswMonFlt.sys 91AAF4792987B43C0653D74516F092C8
C:\Windows\system32\drivers\aswRdr2.sys 8C8FEC9F50898BB814BDFB5F5B2D566C
C:\Windows\system32\Drivers\aswRvrt.sys 2DB91CE80C367ACDD1331DE9B1E3EAEF
C:\Windows\system32\drivers\aswSnx.sys 83DF5B3DE1C6527972946CDB328446F7
C:\Windows\system32\drivers\aswSP.sys CB2B9FBFF7A3104A6AA60E797156800F
C:\Windows\system32\drivers\aswStm.sys A5F0A2EB182C8A137E2C43CB4109EC1E
C:\Windows\system32\Drivers\aswVmm.sys D45875D018F9FB9BF19B976AD8791DE9
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\athr.sys AC4ADAC154563AB41CC79B0257BC685A
C:\Windows\System32\DRIVERS\atikmdag.sys 04F09923A393E4E0E8453A8F78361E73
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys FCAFAEF6798D7B51FF029F99A9898961
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys 8E09E52EE2E3CEB199EF3DD99CF9E3FB
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 39806CFEDDCC55E686A49BCCD2972F23
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\errdev.sys ==> MD5 is legit
C:\Windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legitB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Fs_Rec.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\fvevol.sys 5592F5DBA26282D24D2B080EB438A4D7
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\iaStorV.sys 934AF4D7C5F457B9F0743F4299B77B67
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\intelide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\isapnp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\msiscsi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecpkg.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mrxsmb.sys F4A054BE78AF7F410129C4B64B07DC9B
C:\Windows\System32\DRIVERS\mrxsmb10.sys DEFFA295BD1895C6ED8E3078412AC60B
C:\Windows\System32\DRIVERS\mrxsmb20.sys 24D76ABE5DCAD22F19D105F76FDF0CE1
C:\Windows\System32\DRIVERS\msahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\msdsm.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Ntfs.sys 3795DCD21F740EE799FB7223234215AF
C:\Windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\nvraid.sys 3F3D04B1D08D43C16EA7963954EC768D
C:\Windows\system32\DRIVERS\nvstor.sys C99F251A5DE63C6F129CF71933ACED0F
C:\Windows\system32\DRIVERS\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pci.sys C858CB77C577780ECC456A892E7E7D0F
C:\Windows\System32\DRIVERS\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys 835D7E81BF517A3B72384BDCC85E1CE6
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys 1E016846895B15A99F9A176A05029075
C:\Windows\System32\drivers\rdpdr.sys C5FF95883FFEF704D50C40D21CFB3AB5
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\system32\Drivers\RDPWD.sys 801371BA9782282892D00AADB08EE367
C:\Windows\System32\drivers\rdyboost.sys 4EA225BF1CF05E158853F30A99CA29A7
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Rt86win7.sys 7DFD48E24479B68B258D8770121155A0
C:\Windows\System32\DRIVERS\RTL8192cu.sys 2D4705361D73E83BD55FC7D9CACBF7BA
C:\Windows\system32\DRIVERS\vms3cap.sys 5423D8437051E89DD34749F242C98648
C:\Windows\system32\DRIVERS\sbp2port.sys 34EE0C44B724E3E4CE2EFF29126DE5B5
C:\Windows\System32\DRIVERS\scfilter.sys A95C54B2AC3CC9C73FCDF9E51A1D6B51
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sffp_sd.sys 4F1E5B0FE7C8050668DBFADE8999AEFB
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 2BA4EBC7DFBA845A1EDBE1F75913BE33
C:\Windows\System32\DRIVERS\srv2.sys DCE7E10FEAABD4CAE95948B3DE5340BB
C:\Windows\System32\DRIVERS\srvnet.sys B5665BAA2120B8A54E22E9CD07C05106
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vmstorfl.sys 957E346CA948668F2496A6CCF6FF82CC
C:\Windows\system32\DRIVERS\storvsc.sys D5751969DC3E4B88BF482AC8EC9FE019
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 2CC3D75488ABD3EC628BBB9A4FC84EFC
C:\Windows\System32\DRIVERS\tcpip.sys 2CC3D75488ABD3EC628BBB9A4FC84EFC
C:\Windows\System32\drivers\tcpipreg.sys E64444523ADD154F86567C469BC0B17F
C:\Windows\System32\drivers\tdpipe.sys 1875C1490D99E70E449E3AFAE9FCBADF
C:\Windows\System32\drivers\tdtcp.sys 7551E91EA999EE9A8E9C331D5A9C31F3
C:\Windows\System32\DRIVERS\tdx.sys CB39E896A2A83702D1737BFD402B3542
C:\Windows\System32\DRIVERS\termdd.sys C36F41EE20E6999DBF4B0425963268A5
C:\Windows\System32\DRIVERS\tssecsrv.sys 98AE6FA07D12CB4EC5CF4A9BFA5F4242
C:\Windows\System32\DRIVERS\tunnel.sys 3E461D890A97F9D4C168F5FDA36E1D00
C:\Windows\System32\DRIVERS\TVALZ_O.SYS 792A8B80F8188ABA4B2BE271583F3E46
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys 09CC3E16F8E5EE7168E01CF8FCBE061A
C:\Windows\system32\DRIVERS\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys 049B3A50B3D646BAEEEE9EEC9B0668DC
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbccgp.sys 8455C4ED038EFD09E99327F9D2D48FFA
C:\Windows\system32\DRIVERS\usbcir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbehci.sys 1C333BFD60F2FED2C7AD5DAF533CB742
C:\Windows\System32\DRIVERS\usbhub.sys EE6EF93CCFA94FAE8C6AB298273D8AE2
C:\Windows\System32\DRIVERS\usbohci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS D8889D56E0D27E57ED4591837FE71D27
C:\Windows\system32\DRIVERS\usbuhci.sys ==> MD5 is legit
C:\Windows\System32\Drivers\usbvideo.sys F642A7E4BF78CFA359CCA0A3557C28D7
C:\Windows\System32\DRIVERS\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vhdmp.sys 3BE6E1F3A4F1AFEC8CEE0D7883F93583
C:\Windows\system32\DRIVERS\viaagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\viaide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vmbus.sys 379B349F65F453D2A6E75EA6B7448E49
C:\Windows\system32\DRIVERS\VMBusHID.sys EC2BBAB4B84D0738C6C83D2234DC36FE
C:\Windows\System32\DRIVERS\volmgr.sys 384E5A2AA49934295171E499F86BA6F3
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\volsnap.sys 58DF9D2481A56EDDE167E51B334D44FD
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys 7090D3436EEB4E7DA3373090A23448F7
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys 692A712062146E96D28BA0B7D75DE31B
C:\Windows\System32\DRIVERS\wanarp.sys 692A712062146E96D28BA0B7D75DE31B
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys 6F9B6C0C93232CFF47D0F72D6DB1D21E
C:\Windows\System32\DRIVERS\WUDFRd.sys F91FF1E51FCA30B3C3981DB7D5924252

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== Three Months Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-04 00:56 - 2015-05-04 00:57 - 00020493 _____ () C:\Users\axechen\Desktop\FRST.txt
2015-05-04 00:56 - 2015-05-04 00:56 - 01140736 _____ (Farbar) C:\Users\axechen\Desktop\FRST.exe
2015-05-04 00:53 - 2015-05-04 00:53 - 00006925 _____ () C:\Users\axechen\AppData\Localtransition_ea5dd80f8175d061383d5c1fef4f01a2.ini
2015-05-04 00:53 - 2015-05-04 00:53 - 00001009 _____ () C:\Users\axechen\AppData\Roaming\Microsoft\Windows\Start Menu\Dofus.lnk
2015-05-04 00:53 - 2015-05-04 00:53 - 00001007 _____ () C:\Users\axechen\Desktop\Dofus.lnk
2015-05-04 00:52 - 2015-05-04 00:52 - 00000000 ____D () C:\Users\axechen\AppData\Local\Ankama
2015-05-03 23:58 - 2015-05-03 23:58 - 00000000 ____D () C:\Users\axechen\Desktop\musique
2015-05-03 23:58 - 2015-05-03 23:58 - 00000000 ____D () C:\Users\axechen\Desktop\BUDA
2015-05-03 23:21 - 2015-05-04 00:56 - 00000000 ____D () C:\FRST
2015-05-03 23:04 - 2015-05-03 23:13 - 00000000 ____D () C:\Users\axechen\AppData\Roaming\ZHP
2015-05-03 22:20 - 2015-05-03 22:20 - 00000000 ____D () C:\ProgramData\Skype
2015-05-03 20:10 - 2015-05-04 00:19 - 00000392 _____ () C:\Windows\setupact.log
2015-05-03 20:10 - 2015-05-03 20:10 - 00001286 _____ () C:\Windows\PFRO.log
2015-05-03 20:10 - 2015-05-03 20:10 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-03 19:06 - 2015-05-03 19:06 - 00001131 _____ () C:\Users\axechen\Desktop\Auslogics DiskDefrag.lnk
2015-05-03 19:06 - 2015-05-03 19:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2015-05-03 19:06 - 2015-05-03 19:06 - 00000000 ____D () C:\ProgramData\Auslogics
2015-05-03 19:06 - 2015-05-03 19:06 - 00000000 ____D () C:\Program Files\Auslogics
2015-05-03 19:04 - 2015-02-24 04:23 - 00246920 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-05-03 19:02 - 2015-05-03 19:02 - 00008192 __RSH () C:\BOOTSECT.BAK
2015-05-03 19:02 - 2015-05-03 19:02 - 00000000 ____D () C:\Windows\Panther
2015-05-03 19:02 - 2009-07-14 03:38 - 00383562 __RSH () C:\bootmgr
2015-05-03 19:01 - 2015-05-03 19:01 - 00000969 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-05-03 19:01 - 2015-05-03 19:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-05-03 19:01 - 2015-05-03 19:01 - 00000000 ____D () C:\Program Files\CCleaner
2015-05-03 18:58 - 2015-05-03 18:58 - 00000363 _____ () C:\Users\axechen\Desktop\Ordinateur - Raccourci.lnk
2015-05-03 18:58 - 2015-05-03 18:58 - 00000000 ____D () C:\Users\axechen\AppData\Roaming\AVAST Software
2015-05-03 18:57 - 2015-05-03 18:57 - 00787760 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00427992 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00335112 _____ (AVAST Software s. r. o.) C:\Windows\AswCheck.exe
2015-05-03 18:57 - 2015-05-03 18:57 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-03 18:57 - 2015-05-03 18:57 - 00209048 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00106912 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00081728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00074976 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00049904 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-03 18:57 - 2015-05-03 18:57 - 00024144 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-05-03 18:57 - 2015-05-03 18:57 - 00002079 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-05-03 18:57 - 2015-05-03 18:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-03 18:51 - 2015-05-03 18:51 - 00057560 _____ () C:\Users\axechen\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-03 18:51 - 2015-05-03 18:51 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-05-03 18:51 - 2015-05-03 18:51 - 00000000 ____D () C:\Program Files\AVAST Software
2015-05-03 18:49 - 2015-05-03 18:49 - 00001121 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-05-03 18:49 - 2015-05-03 18:49 - 00001109 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-05-03 18:49 - 2015-05-03 18:49 - 00000000 ____D () C:\Users\axechen\AppData\Roaming\Mozilla
2015-05-03 18:49 - 2015-05-03 18:49 - 00000000 ____D () C:\Users\axechen\AppData\Local\Mozilla
2015-05-03 18:49 - 2015-05-03 18:49 - 00000000 ____D () C:\ProgramData\Mozilla
2015-05-03 18:49 - 2015-05-03 18:49 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-05-03 18:49 - 2015-05-03 18:49 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-05-03 18:20 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-05-03 18:20 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-05-03 18:20 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-05-03 18:20 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-05-03 18:19 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-05-03 18:19 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-05-03 18:13 - 2015-05-03 18:13 - 00203836 __RSH () C:\grldr
2015-05-03 18:13 - 2015-05-03 18:13 - 00000000 __RSH () C:\winx.ld
2015-05-03 18:12 - 2015-05-03 23:59 - 01524562 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-03 18:10 - 2015-05-03 18:10 - 00001433 _____ () C:\Users\axechen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-03 18:10 - 2015-05-03 18:10 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2015-05-03 18:09 - 2015-05-03 18:09 - 00000020 ___SH () C:\Users\axechen\ntuser.ini
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Public\Documents\Mes vidéos
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Public\Documents\Mes images
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Public\Documents\Ma musique
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\Voisinage réseau
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\Voisinage d'impression
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\Modèles
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\Menu Démarrer
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\Documents\Mes vidéos
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\Documents\Mes images
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\Documents\Ma musique
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historique
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default User\Documents\Mes vidéos
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default User\Documents\Mes images
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default User\Documents\Ma musique
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historique
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\Voisinage réseau
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\Voisinage d'impression
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\Modèles
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\Menu Démarrer
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\Documents\Mes vidéos
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\Documents\Mes images
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\Documents\Ma musique
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Users\axechen\AppData\Local\Historique
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\ProgramData\Modèles
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\ProgramData\Menu Démarrer
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\ProgramData\Favoris
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\ProgramData\Bureau
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 _SHDL () C:\Program Files\Fichiers communs
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 __SHD () C:\Recovery
2015-05-03 18:09 - 2015-05-03 18:09 - 00000000 ____D () C:\Users\axechen\AppData\Local\VirtualStore
2015-05-03 18:09 - 2009-07-14 06:42 - 00000000 ___RD () C:\Users\axechen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-03 18:09 - 2009-07-14 06:37 - 00000000 ___RD () C:\Users\axechen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-03 18:06 - 2015-05-04 00:25 - 00331390 _____ () C:\Windows\WindowsUpdate.log
2015-05-03 18:06 - 2015-05-03 18:06 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-05-03 18:06 - 2015-05-03 18:06 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-05-03 18:06 - 2015-05-03 18:06 - 00000000 _____ () C:\Windows\ativpsrm.bin

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-04 01:04 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2015-05-04 00:29 - 2009-07-14 06:34 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-04 00:29 - 2009-07-14 06:34 - 00017136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-04 00:21 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-03 20:13 - 2009-07-14 06:53 - 00003908 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-03 20:06 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-05-03 19:02 - 2009-07-14 06:57 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2015-05-03 19:02 - 2009-07-14 06:52 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2015-05-03 18:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2015-05-03 18:19 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\system32\restore
2015-05-03 18:10 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-05-03 18:09 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Default
2015-05-03 18:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Windows NT
2015-05-03 18:08 - 2009-07-14 06:33 - 00266928 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-03 18:06 - 2009-07-14 06:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-05-03 18:06 - 2009-07-14 04:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-03 18:03 - 2009-07-14 11:01 - 00000000 ____D () C:\Windows\CSC

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-03 18:03

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité