cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:04-09-2015
Exécuté par hugo (administrateur) sur HUGO-PC (05-09-2015 11:23:28)
Exécuté depuis C:\Users\hugo\Desktop
Profils chargés: hugo (Profils disponibles: hugo)
Platform: Microsoft Windows 7 Édition Familiale Premium (X86) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Rise Gaming Store\rise_gaming_store_helper_service.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
() C:\Program Files\Samsung\Samsung Update Plus\SUPNotifier.exe
(Microsoft Corporation) C:\Windows\System32\CompatTel\diagtrackrunner.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8092192 2009-11-21] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1578280 2009-10-10] (Synaptics Incorporated)
HKLM\...\Run: [PDVD8LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKU\S-1-5-21-1072828290-3828818215-1948454868-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6490904 2015-08-20] (Piriform Ltd)
GroupPolicy: Stratégie de groupe sur Chrome détecté(e) <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction de Stratégie <======= ATTENTION
CHR HKU\S-1-5-21-1072828290-3828818215-1948454868-1001\SOFTWARE\Policies\Google: Restriction de Stratégie <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{FE67C105-1A11-4CFA-AC2B-6E32C9343A46}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-1072828290-3828818215-1948454868-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction de Stratégie <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1072828290-3828818215-1948454868-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr
SearchScopes: HKLM -> {460C3D19-B3D4-4964-A550-77D263B0CCCB} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7SMSN
SearchScopes: HKLM -> {CC865B26-C31D-4D23-B17B-96548EEF03F6} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1001 -> {06B3C023-E198-47A8-9718-CDE7DF99DE47} URL =
SearchScopes: HKU\S-1-5-21-1072828290-3828818215-1948454868-1001 -> {AC3EB331-D5F3-43C5-BFD1-4B56D5282234} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-08-16] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-16] (Oracle Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-09] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\hugo\AppData\Roaming\Mozilla\Firefox\Profiles\c5hvvjzv.default
FF DefaultSearchEngine: Yahoo!
FF SearchEngineOrder.1: Recherche sécurisée
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll [2013-10-25] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-16] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\3.0.40624.0\npctrl.dll [2009-06-23] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Pas de fichier]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-1072828290-3828818215-1948454868-1001: @tools.google.com/Google Update;version=3 -> C:\Users\hugo\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll Pas de fichier
FF Plugin HKU\S-1-5-21-1072828290-3828818215-1948454868-1001: @tools.google.com/Google Update;version=9 -> C:\Users\hugo\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll Pas de fichier
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\hugo\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation)
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
StartMenuInternet: FIREFOX.EXE - c:\program files\mozilla firefox\firefox.exe
FF ExtraCheck: C:\Program Files\mozilla firefox\browser\defaults\preferences\my-prefs.js [2015-03-25] <==== ATTENTION (Pointe vers un fichier *.cfg)

Chrome:
=======
CHR Profile: C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-16]
CHR Extension: (Google Docs) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-16]
CHR Extension: (Google Drive) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-16]
CHR Extension: (YouTube) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-16]
CHR Extension: (Google Search) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-16]
CHR Extension: (Google Sheets) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-16]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-08-27]
CHR Extension: (Gmail) - C:\Users\hugo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-16]
CHR HKLM\...\Chrome\Extension: [fpgdgofgnobocjhpgifakcoieimjejbm] - http://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gfkbfjcbkhnmiignagpkiijohkcdkffb] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKU\S-1-5-21-1072828290-3828818215-1948454868-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fpgdgofgnobocjhpgifakcoieimjejbm] - http://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 Bright Trick; C:\Program Files\Bright Trick\Bright Trick.exe [8016375 2015-07-07] () [Fichier non signé] <==== ATTENTION
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
S2 Creepy Complex; C:\Program Files\Creepy Complex\Creepy Complex.exe [8016517 2015-07-05] () [Fichier non signé] <==== ATTENTION
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [247152 2009-07-07] ()

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 atksgt; C:\windows\System32\DRIVERS\atksgt.sys [278728 2010-12-12] ()
R1 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [243128 2015-02-12] (Disc Soft Ltd)
S3 hamachi; C:\windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R2 lirsgt; C:\windows\System32\DRIVERS\lirsgt.sys [25416 2010-10-19] ()
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [98520 2015-09-05] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
S1 iSafeKrnl; \??\C:\Program Files\Elex-tech\YAC\iSafeKrnl.sys [X]
S3 iSafeKrnlBoot; system32\DRIVERS\iSafeKrnlBoot.sys [X]
S1 iSafeKrnlKit; \??\C:\Program Files\Elex-tech\YAC\iSafeKrnlKit.sys [X]
S1 iSafeKrnlMon; \??\C:\Program Files\Elex-tech\YAC\iSafeKrnlMon.sys [X]
S1 iSafeKrnlR3; \??\C:\Program Files\Elex-tech\YAC\iSafeKrnlR3.sys [X]
S1 netfilter; system32\drivers\netfilter.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-09-05 11:23 - 2015-09-05 11:23 - 00014472 _____ C:\Users\hugo\Desktop\FRST.txt
2015-09-05 11:23 - 2015-09-05 11:23 - 00000000 ____D C:\FRST
2015-09-05 11:22 - 2015-09-05 11:17 - 01690624 _____ (Farbar) C:\Users\hugo\Desktop\FRST.exe
2015-09-04 19:34 - 2015-09-04 19:34 - 00001267 _____ C:\Users\hugo\Documents\mbam1.txt
2015-09-04 19:33 - 2015-09-04 19:33 - 00001266 _____ C:\Users\hugo\Documents\mbam.txt
2015-09-04 18:45 - 2015-09-04 18:45 - 00015365 _____ C:\Users\hugo\Desktop\ZHPFixReport.txt
2015-09-04 18:34 - 2015-09-04 19:34 - 00001793 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2015-09-04 18:34 - 2015-09-04 18:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-09-04 18:34 - 2015-09-04 18:34 - 00000000 ____D C:\Program Files\ZHPFix
2015-09-04 18:33 - 2015-09-04 18:32 - 03521472 _____ (Nicolas Coolman ) C:\Users\hugo\Desktop\ZHPFix.exe
2015-09-04 18:33 - 2015-09-04 18:31 - 00017702 _____ C:\Users\hugo\Desktop\ZHPFix.txt
2015-09-04 15:05 - 2015-09-05 00:03 - 00080983 _____ C:\Users\hugo\Desktop\ZHPDiag.txt
2015-09-04 15:01 - 2015-09-05 00:00 - 00000818 _____ C:\Users\hugo\Desktop\ZHPDiag.lnk
2015-09-04 15:01 - 2015-09-02 17:09 - 01917952 _____ C:\Users\hugo\Desktop\ZHPDiag3.exe
2015-09-04 15:00 - 2015-09-04 15:00 - 00000058 _____ C:\mbam.txt
2015-09-04 14:53 - 2015-09-04 14:53 - 00000000 __RSH C:\MSDOS.SYS
2015-09-04 14:53 - 2015-09-04 14:53 - 00000000 __RSH C:\IO.SYS
2015-09-04 13:30 - 2015-09-05 11:16 - 00415406 _____ C:\windows\PFRO.log
2015-09-04 13:30 - 2015-09-05 11:16 - 00000280 _____ C:\windows\setupact.log
2015-09-04 13:30 - 2015-09-04 13:30 - 00000000 _____ C:\windows\setuperr.log
2015-09-04 13:23 - 2015-08-16 17:01 - 00273504 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2015-09-04 13:23 - 2015-08-16 17:01 - 00191584 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2015-09-04 13:23 - 2015-08-16 17:01 - 00190560 _____ (Oracle Corporation) C:\windows\system32\java.exe
2015-09-04 13:23 - 2015-08-16 17:01 - 00096352 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2015-09-04 13:11 - 2015-09-04 19:34 - 00001433 _____ C:\Users\hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-09-04 12:30 - 2015-09-04 12:30 - 00613255 _____ C:\Users\hugo\AppData\Local\nsi1F45.tmp
2015-09-04 12:26 - 2015-09-04 12:26 - 00000000 ____D C:\Program Files\Opera
2015-09-04 12:05 - 2015-09-05 11:17 - 00098520 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-04 12:05 - 2015-09-04 19:34 - 00001058 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-04 12:05 - 2015-09-04 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-04 12:05 - 2015-09-04 13:35 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-09-04 12:05 - 2015-09-04 12:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-04 12:05 - 2015-09-02 19:21 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\hugo\Desktop\mbam-setup-2.1.8.1057.exe
2015-09-04 12:05 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-09-04 12:05 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-09-04 12:05 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-09-04 11:58 - 2015-09-04 13:35 - 00000002 _____ C:\END
2015-09-04 11:57 - 2015-09-04 11:58 - 00000584 _____ C:\task.vbs
2015-09-04 11:41 - 2015-09-04 11:53 - 00062639 _____ C:\Users\hugo\Desktop\ZHPCleaner.txt
2015-09-04 11:26 - 2015-09-04 11:26 - 00000000 ____D C:\Users\Invité\AppData\Local\MyBrowser
2015-09-04 11:26 - 2015-09-04 11:26 - 00000000 ____D C:\Users\hugo\AppData\Local\MyBrowser
2015-09-04 11:26 - 2015-09-04 11:26 - 00000000 ____D C:\Users\HomeGroupUser$\AppData\Local\MyBrowser
2015-09-04 11:26 - 2015-09-04 11:26 - 00000000 ____D C:\Users\Administrateur\AppData\Local\MyBrowser
2015-09-04 11:25 - 2015-09-04 11:26 - 00001034 _____ C:\windows\Tasks\MyBrowser.job
2015-09-04 11:22 - 2015-09-04 11:22 - 00000102 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-09-04 11:14 - 2015-09-04 19:34 - 00000828 _____ C:\Users\hugo\Desktop\ZHPCleaner.lnk
2015-09-04 11:14 - 2015-09-04 11:14 - 01947648 _____ C:\Users\hugo\ZHPCleaner.exe
2015-09-04 11:14 - 2015-09-04 11:14 - 00000000 ____D C:\Users\hugo\AppData\Local\Mozilla
2015-09-04 11:14 - 2015-09-02 18:51 - 01941504 _____ C:\Users\hugo\Desktop\ZHPCleaner (1).exe
2015-09-04 11:08 - 2015-09-04 11:08 - 00000000 __SHD C:\found.006
2015-09-04 10:52 - 2015-09-02 18:52 - 01654272 _____ C:\Users\hugo\Desktop\adwcleaner_5.005.exe
2015-08-27 11:42 - 2015-08-27 11:42 - 00000000 ____D C:\Users\hugo\AppData\Local\Download Bus
2015-08-26 18:08 - 2015-08-26 18:08 - 00000000 _____ C:\Users\hugo\AppData\Local\Temp.dat
2015-08-26 18:01 - 2015-08-26 18:01 - 00001560 _____ C:\Users\hugo\Documents\${LOGFILE}
2015-08-26 18:01 - 2015-08-26 18:01 - 00000000 ____D C:\Program Files\CutterProc
2015-08-26 17:58 - 2015-08-26 17:59 - 00216484 _____ C:\Users\hugo\Documents\cc_20150826_175825.reg
2015-08-26 17:29 - 2015-09-04 19:34 - 00000963 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-26 17:29 - 2015-08-26 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-26 17:29 - 2015-08-26 17:29 - 00000000 ____D C:\Program Files\CCleaner
2015-08-26 17:26 - 2015-08-26 17:28 - 06667640 _____ (Piriform Ltd) C:\Users\hugo\Downloads\ccsetup509.exe
2015-08-16 17:02 - 2015-08-16 17:02 - 00000000 ____D C:\Program Files\Common Files\Java
2015-08-16 16:59 - 2015-08-16 16:59 - 00563296 _____ (Oracle Corporation) C:\Users\hugo\Downloads\chromeinstall-8u51.exe
2015-08-16 16:25 - 2015-08-26 18:45 - 00000000 ____D C:\Users\hugo\AppData\Roaming\.minecraft
2015-08-16 16:05 - 2015-09-04 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-14 12:23 - 2015-08-14 12:26 - 06805386 _____ C:\Users\hugo\Downloads\Pack de Mods Utile pour le pvp .zip

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-09-05 11:20 - 2009-12-05 01:54 - 01665062 _____ C:\windows\WindowsUpdate.log
2015-09-05 11:17 - 2015-05-31 14:11 - 00000530 _____ C:\windows\Tasks\rise_gaming_store_helper_service.job
2015-09-05 11:17 - 2010-04-16 12:37 - 00000000 ____D C:\Users\hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2015-09-05 11:16 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-09-05 00:00 - 2014-12-13 18:50 - 00000000 ____D C:\Users\hugo\AppData\Roaming\ZHP
2015-09-04 19:46 - 2009-07-14 06:34 - 00020608 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-04 19:46 - 2009-07-14 06:34 - 00020608 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-04 19:38 - 2009-07-14 06:53 - 00032480 _____ C:\windows\Tasks\SCHEDLGU.TXT
2015-09-04 19:34 - 2015-07-08 14:45 - 00000938 _____ C:\Users\Public\Desktop\Gyazo GIF.lnk
2015-09-04 19:34 - 2015-02-12 18:56 - 00001894 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2015-09-04 19:34 - 2014-12-30 21:50 - 00001786 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
2015-09-04 19:34 - 2014-12-30 21:50 - 00001780 _____ C:\Users\Public\Desktop\Vuze.lnk
2015-09-04 19:34 - 2014-12-14 10:51 - 00001807 _____ C:\Users\Public\Desktop\GeoGebra.lnk
2015-09-04 19:34 - 2014-12-01 01:24 - 00000938 _____ C:\Users\Public\Desktop\Gyazo.lnk
2015-09-04 19:34 - 2014-08-15 12:56 - 00001154 _____ C:\Users\hugo\Desktop\Dofus2.lnk
2015-09-04 19:34 - 2014-05-30 10:24 - 00000961 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-09-04 19:34 - 2014-03-12 20:25 - 00002497 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-04 19:34 - 2013-11-21 20:45 - 00001607 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2015-09-04 19:34 - 2011-06-01 11:37 - 00001797 _____ C:\Users\hugo\Desktop\Call of Duty Modern Warfare 2.lnk
2015-09-04 19:34 - 2011-06-01 11:37 - 00001797 _____ C:\Users\hugo\Desktop\Call of Duty Modern Warfare 2 - Multiplayer.lnk
2015-09-04 19:34 - 2010-10-14 18:28 - 00000406 _____ C:\Users\hugo\Desktop\Lecteur de CD - Raccourci.lnk
2015-09-04 19:34 - 2010-04-21 19:16 - 00001104 _____ C:\Users\hugo\Desktop\video michael jackson - Raccourci.lnk
2015-09-04 19:34 - 2010-04-17 10:57 - 00001777 _____ C:\Users\hugo\Desktop\Jeux.lnk
2015-09-04 19:34 - 2010-04-17 10:30 - 00001063 _____ C:\Users\hugo\Desktop\bandes dessinees.lnk
2015-09-04 19:34 - 2010-04-17 10:30 - 00000896 _____ C:\Users\hugo\Desktop\Ma musique.lnk
2015-09-04 19:34 - 2010-04-16 12:56 - 00001079 _____ C:\Users\hugo\Desktop\CyberLink YouCam.lnk
2015-09-04 19:34 - 2010-04-16 12:44 - 00001129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lanceur de tâches Microsoft Works.lnk
2015-09-04 19:34 - 2010-04-16 12:39 - 00002119 _____ C:\Users\Public\Desktop\Game Pack.lnk
2015-09-04 19:34 - 2010-04-16 12:38 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2015-09-04 19:34 - 2010-04-16 12:38 - 00001978 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk
2015-09-04 19:34 - 2009-12-05 18:48 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-09-04 19:34 - 2009-12-05 18:48 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-09-04 19:34 - 2009-07-14 06:46 - 00001479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-09-04 19:34 - 2009-07-14 06:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2015-09-04 19:34 - 2009-07-14 06:42 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2015-09-04 19:34 - 2009-07-14 06:42 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2015-09-04 19:34 - 2009-07-14 06:42 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2015-09-04 19:34 - 2009-07-14 06:42 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2015-09-04 19:34 - 2009-07-14 06:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2015-09-04 15:09 - 2012-09-23 16:06 - 00000000 ____D C:\Users\hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-09-04 14:58 - 2014-11-09 14:15 - 00000000 ____D C:\Users\hugo\Desktop\minecraft
2015-09-04 14:05 - 2012-09-23 16:01 - 00001074 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1072828290-3828818215-1948454868-1001UA.job
2015-09-04 14:05 - 2012-09-23 16:01 - 00001022 _____ C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1072828290-3828818215-1948454868-1001Core.job
2015-09-04 13:24 - 2013-08-09 14:22 - 00000000 ____D C:\Program Files\Java
2015-09-04 13:23 - 2015-03-15 15:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-04 13:22 - 2015-07-05 10:23 - 00000000 ____D C:\ProgramData\GlarySoft
2015-09-04 13:22 - 2015-07-05 10:20 - 00000000 ____D C:\Users\hugo\AppData\Roaming\GlarySoft
2015-09-04 13:17 - 2015-07-31 17:17 - 00000000 ____D C:\Users\hugo\AppData\Local\CrashDumps
2015-09-04 11:14 - 2010-04-16 12:37 - 00000000 ____D C:\Users\hugo
2015-09-04 11:12 - 2014-11-09 15:58 - 00000020 _____ C:\Users\hugo\AppData\Roaming\appdataFr2.bin
2015-09-04 11:01 - 2015-06-11 18:33 - 00000000 ____D C:\windows\system32\MpEngineStore
2015-09-04 10:59 - 2014-12-11 00:39 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-09-04 10:59 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System
2015-09-04 10:56 - 2014-12-13 19:06 - 00000000 ____D C:\AdwCleaner
2015-09-04 10:54 - 2009-07-26 22:06 - 01557510 _____ C:\windows\system32\PerfStringBackup.INI
2015-09-01 16:13 - 2015-03-28 11:40 - 00000016 _____ C:\InjectIntoProcess crash
2015-08-26 18:34 - 2015-08-01 18:48 - 00000000 ____D C:\Users\hugo\AppData\Roaming\.lifecraft
2015-08-26 18:28 - 2010-04-17 10:20 - 00000000 ____D C:\Users\hugo\films
2015-08-26 18:25 - 2014-02-16 13:57 - 00351232 ___SH C:\Users\hugo\Documents\Thumbs.db
2015-08-26 17:43 - 2014-12-01 01:24 - 00000000 ____D C:\Program Files\Gyazo
2015-08-26 17:41 - 2015-02-12 18:55 - 00000000 ____D C:\Users\hugo\AppData\Roaming\DAEMON Tools Lite
2015-08-26 17:41 - 2014-12-30 21:49 - 00000000 ____D C:\Users\hugo\AppData\Roaming\Azureus
2015-08-26 17:41 - 2010-04-16 14:24 - 00000000 ____D C:\Users\hugo\Tracing
2015-08-16 22:29 - 2013-10-22 23:00 - 00000000 ____D C:\Users\hugo\AppData\Roaming\Skype
2015-08-16 16:05 - 2009-12-05 02:23 - 00000000 ____D C:\Program Files\Google
2015-08-14 15:55 - 2015-06-13 13:07 - 00000000 ____D C:\Users\hugo\AppData\Roaming\.NationsGloryW
2015-08-14 15:29 - 2015-03-20 18:53 - 00000000 ____D C:\Users\hugo\AppData\Roaming\.NationsGloryP

==================== Fichiers à la racine de certains dossiers =======

2015-05-05 18:57 - 2015-05-05 18:57 - 0000079 _____ () C:\Program Files\prefs.js
2015-07-05 15:40 - 2015-07-05 15:40 - 0001082 _____ () C:\Users\hugo\AppData\Roaming\.minecraft - Raccourci.lnk
2014-01-19 17:52 - 2014-01-23 13:28 - 0000010 _____ () C:\Users\hugo\AppData\Roaming\010112.txt
2014-11-09 15:58 - 2015-09-04 11:12 - 0000020 _____ () C:\Users\hugo\AppData\Roaming\appdataFr2.bin
2015-05-23 16:23 - 2015-07-07 10:15 - 0000024 _____ () C:\Users\hugo\AppData\Roaming\appdataFr25.bin
2012-10-03 20:33 - 2014-06-07 16:25 - 0000113 _____ () C:\Users\hugo\AppData\Roaming\D2Info0
2012-10-03 20:33 - 2014-06-07 16:48 - 0000008 _____ () C:\Users\hugo\AppData\Roaming\DofusAppId0_1
2012-10-04 18:43 - 2014-02-24 11:52 - 0000008 _____ () C:\Users\hugo\AppData\Roaming\DofusAppId0_2
2013-03-30 12:38 - 2014-03-22 19:14 - 0000008 _____ () C:\Users\hugo\AppData\Roaming\DofusAppId0_3
2013-07-30 18:34 - 2014-01-18 22:53 - 0000008 _____ () C:\Users\hugo\AppData\Roaming\DofusAppId0_4
2013-12-07 17:42 - 2013-12-08 16:16 - 0000008 _____ () C:\Users\hugo\AppData\Roaming\DofusAppId0_5
2013-12-07 17:43 - 2013-12-08 19:06 - 0000008 _____ () C:\Users\hugo\AppData\Roaming\DofusAppId0_6
2013-12-07 22:46 - 2013-12-07 23:33 - 0000008 _____ () C:\Users\hugo\AppData\Roaming\DofusAppId0_7
2014-04-02 13:54 - 2014-04-02 13:54 - 0000036 _____ () C:\Users\hugo\AppData\Roaming\DOK52P4Q3J.dat
2015-02-23 13:13 - 2015-02-23 13:12 - 41251037 _____ () C:\Users\hugo\AppData\Roaming\empireeye.rar
2014-01-19 17:52 - 2014-01-19 17:52 - 0000000 _____ () C:\Users\hugo\AppData\Roaming\MaTEln2781.txt
2014-07-30 22:13 - 2014-07-30 22:13 - 0000036 _____ () C:\Users\hugo\AppData\Roaming\SuYZkvrV.tmp
2015-07-05 15:40 - 2015-07-05 15:43 - 0032768 ___SH () C:\Users\hugo\AppData\Roaming\Thumbs.db
2014-05-07 19:17 - 2014-11-01 15:18 - 0000093 _____ () C:\Users\hugo\AppData\Roaming\WB.CFG
2014-01-22 17:33 - 2014-12-07 13:07 - 0000650 _____ () C:\Users\hugo\AppData\Roaming\wklnhst.dat
2015-09-04 12:30 - 2015-09-04 12:30 - 0613255 _____ () C:\Users\hugo\AppData\Local\nsi1F45.tmp
2015-08-26 18:08 - 2015-08-26 18:08 - 0000000 _____ () C:\Users\hugo\AppData\Local\Temp.dat
2010-04-16 12:38 - 2009-08-17 06:55 - 0131368 _____ () C:\ProgramData\FullRemove.exe
2009-12-05 02:03 - 2009-12-05 02:03 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2015-09-04 11:22 - 2015-09-04 11:22 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2009-12-05 02:01 - 2009-12-05 02:02 - 0000106 _____ () C:\ProgramData\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}.log
2009-12-05 01:57 - 2009-12-05 01:58 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-12-05 02:02 - 2009-12-05 02:03 - 0000110 _____ () C:\ProgramData\{B7A0CE06-068E-11D6-97FD-0050BACBF861}.log
2009-12-05 01:57 - 2009-12-05 01:57 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-12-05 01:58 - 2009-12-05 02:01 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\windows\explorer.exe => Le fichier est signé numériquement
C:\windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\windows\system32\wininit.exe => Le fichier est signé numériquement
C:\windows\system32\svchost.exe => Le fichier est signé numériquement
C:\windows\system32\services.exe => Le fichier est signé numériquement
C:\windows\system32\User32.dll => Le fichier est signé numériquement
C:\windows\system32\userinit.exe => Le fichier est signé numériquement
C:\windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-02-13 21:43

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité