cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:10-06-2016
Exécuté par nam-anh (administrateur) sur JUDOKID (12-06-2016 11:10:38)
Exécuté depuis C:\Users\nam-anh\Desktop
Profils chargés: nam-anh (Profils disponibles: nam-anh)
Platform: Windows 8.1 Pro (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
() C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Users\nam-anh\Desktop\ZHPDiag3.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13674712 2014-07-28] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3281160 2014-08-26] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-07-04] (Avast Software s.r.o.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-04-22] (Razer Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-2769093233-3446896453-2347769216-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2769093233-3446896453-2347769216-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2769093233-3446896453-2347769216-1001\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-06-26] (SteelSeries ApS)
HKU\S-1-5-21-2769093233-3446896453-2347769216-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50676864 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-2769093233-3446896453-2347769216-1001\...\MountPoints2: {03ab29d4-3019-11e6-839e-6c626d353816} - "F:\startme.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-02] (Avast Software s.r.o.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-01-14]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-06-13]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe ()

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

ProxyEnable: [S-1-5-21-2769093233-3446896453-2347769216-1001] => Proxy est activé.
ProxyServer: [S-1-5-21-2769093233-3446896453-2347769216-1001] => http=127.0.0.1:49699;https=127.0.0.1:49699
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BC832357-AE5B-47D8-821C-A85BCA891C25}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F53C77F5-36B5-445E-932F-EE10A977200C}: [DhcpNameServer] 192.168.1.1
ManualProxies: 1http=127.0.0.1:49699;https=127.0.0.1:49699

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2769093233-3446896453-2347769216-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.fr.msn.com/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-02] (Avast Software s.r.o.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-02] (Avast Software s.r.o.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\nam-anh\AppData\Roaming\Mozilla\Firefox\Profiles\yjyjziwu.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-16] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-16] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Extension: Greasemonkey - C:\Users\nam-anh\AppData\Roaming\Mozilla\Firefox\Profiles\yjyjziwu.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-12-19]
FF Extension: Adblock Plus - C:\Users\nam-anh\AppData\Roaming\Mozilla\Firefox\Profiles\yjyjziwu.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-03]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-12]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-19]
CHR Extension: (Google Drive) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-25]
CHR Extension: (YouTube) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-25]
CHR Extension: (Recherche Google) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-25]
CHR Extension: (Avast Online Security) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-02-24]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-06]
CHR Extension: (Gmail) - C:\Users\nam-anh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-24]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-02]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-07-02] (Avast Software s.r.o.)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-07-02] (Avast Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [124520 2014-10-21] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-03-12] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-10-06] (Rivet Networks) [Fichier non signé]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-05-29] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-05-29] (Intel® Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-07-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-07-02] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-02] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-07-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-07-02] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-07-04] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-07-02] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-07-02] ()
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [142408 2015-09-16] (Rivet Networks, LLC.)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [141624 2014-05-13] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2014-06-17] (Motorola Solutions, Inc.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-06-15] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [225008 2014-10-21] (Intel Corporation)
R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [157752 2015-09-03] (Qualcomm Atheros, Inc.)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3446240 2014-06-18] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [466648 2014-02-21] (Realsil Semiconductor Corporation)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39592 2014-12-30] (Razer Inc)
S3 rzmpos; C:\Windows\System32\drivers\rzmpos.sys [35496 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2014-10-23] (Razer, Inc.)
R3 SAlphaPS2; C:\Windows\System32\drivers\SAlphaPS264.sys [27520 2014-03-05] (SteelSeries Corporation)
S3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [32792 2015-06-01] (SteelSeries ApS)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-02] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R3 WUDFWpdComp; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-06-12 11:10 - 2016-06-12 11:10 - 00019733 _____ C:\Users\nam-anh\Desktop\FRST.txt
2016-06-12 11:10 - 2016-06-12 11:10 - 00000000 ____D C:\FRST
2016-06-12 11:10 - 2016-06-12 11:08 - 02385408 ____N (Farbar) C:\Users\nam-anh\Desktop\FRST64.exe
2016-06-12 10:18 - 2016-06-12 10:18 - 00109199 _____ C:\Users\nam-anh\Desktop\ZHPDiag.txt
2016-06-12 10:16 - 2016-06-12 10:17 - 00000000 ____D C:\Users\nam-anh\AppData\Roaming\ZHP
2016-06-12 10:16 - 2016-06-12 10:16 - 00000871 _____ C:\Users\nam-anh\Desktop\ZHPDiag.lnk
2016-06-12 10:16 - 2016-06-12 10:08 - 02213888 ____N C:\Users\nam-anh\Desktop\ZHPDiag3.exe
2016-06-10 00:02 - 2016-06-11 15:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-09 01:24 - 2016-06-09 01:27 - 00000000 ____D C:\Users\nam-anh\Desktop\new usb
2016-06-03 22:24 - 2016-06-03 22:24 - 00000000 ____D C:\Windows\LastGood
2016-06-03 01:15 - 2016-06-03 01:15 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-06-03 01:15 - 2016-05-04 04:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-06-03 01:15 - 2016-05-04 04:22 - 00130848 _____ C:\Windows\system32\vulkan-1.dll
2016-06-03 01:15 - 2016-05-04 04:22 - 00045344 _____ C:\Windows\system32\vulkaninfo.exe
2016-06-03 01:15 - 2016-05-04 04:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-06-03 01:13 - 2016-05-20 09:01 - 39979576 _____ C:\Windows\system32\nvcompiler.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 35117112 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 31600696 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 25372096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 21794064 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 21336720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 19110968 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 18138232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 17732936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 17236560 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 16693208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 14293592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 13412408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-06-03 01:13 - 2016-05-20 09:01 - 10642728 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 08733096 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 03447232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 03001792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 01922496 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436822.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436822.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00984512 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00911416 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00770496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00708032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00669952 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00565392 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00501384 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00423360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00422240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00379448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00177952 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-06-03 01:13 - 2016-05-20 09:01 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-06-03 01:13 - 2016-05-20 09:01 - 00000594 _____ C:\Windows\system32\nv-vk64.json
2016-06-03 01:09 - 2016-06-03 01:14 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-06-03 01:09 - 2016-05-02 07:39 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-06-03 01:09 - 2016-05-02 07:38 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-06-03 01:09 - 2016-05-02 07:38 - 00112032 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-06-03 01:09 - 2016-04-14 07:38 - 00102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-06-03 01:09 - 2016-04-14 07:38 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-06-03 01:07 - 2016-06-04 03:42 - 00000000 ____D C:\Users\nam-anh\Documents\Overwatch
2016-06-02 23:51 - 2016-06-02 23:51 - 00001119 _____ C:\Users\Public\Desktop\Overwatch.lnk
2016-06-02 23:51 - 2016-06-02 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-06-02 23:23 - 2016-06-08 01:45 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-05-22 22:35 - 2016-05-22 22:35 - 00003076 _____ C:\Windows\System32\Tasks\{5C384559-DBC3-4704-BA83-997C7864CFE5}
2016-05-20 23:35 - 2014-07-21 01:56 - 392732082 _____ C:\Users\nam-anh\Desktop\Jacky.Au.Royaume.Des.Filles.2014.FRENCH.720p.BluRay.x264-BRAZiL.mkv
2016-05-18 16:35 - 2016-05-18 16:35 - 00000000 ____D C:\Users\nam-anh\Desktop\London Baby 3.0

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-06-12 10:56 - 2015-09-09 00:07 - 00000000 ____D C:\Users\nam-anh\AppData\Roaming\Skype
2016-06-12 10:41 - 2014-05-11 01:22 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-12 10:30 - 2014-05-11 00:23 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-12 10:14 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-06-12 10:13 - 2014-05-11 00:23 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-12 10:13 - 2014-05-10 23:06 - 00000000 __RDO C:\Users\nam-anh\SkyDrive
2016-06-11 23:43 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2016-06-11 23:20 - 2014-06-19 19:48 - 00849408 ___SH C:\Users\nam-anh\Desktop\Thumbs.db
2016-06-11 23:17 - 2013-09-30 06:15 - 01824010 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-11 23:17 - 2013-09-30 05:56 - 00812350 _____ C:\Windows\system32\perfh00C.dat
2016-06-11 23:17 - 2013-09-30 05:56 - 00159412 _____ C:\Windows\system32\perfc00C.dat
2016-06-11 23:11 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-11 23:10 - 2013-08-22 15:25 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-06-11 15:59 - 2014-05-11 00:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-11 15:36 - 2015-07-02 22:30 - 00000000 ____D C:\Program Files (x86)\Search Extensions
2016-06-11 15:00 - 2015-01-09 20:03 - 00000000 ____D C:\Users\nam-anh\AppData\Local\75c6736e-3e62-4ecc-ba4b-308ede2df7ce
2016-06-11 14:54 - 2014-07-14 23:27 - 00000000 ____D C:\Users\nam-anh\AppData\Local\Adobe
2016-06-11 14:51 - 2014-07-14 23:14 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-11 14:51 - 2014-06-16 21:37 - 00000000 ____D C:\Users\nam-anh\AppData\Roaming\Azureus
2016-06-10 22:14 - 2014-05-10 23:10 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2769093233-3446896453-2347769216-1001
2016-06-10 21:52 - 2014-11-14 21:08 - 00000000 ____D C:\Users\nam-anh\AppData\Local\Battle.net
2016-06-10 21:52 - 2014-11-14 21:08 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-06-10 21:47 - 2014-05-27 23:17 - 00000000 ____D C:\Users\nam-anh\AppData\Roaming\vlc
2016-06-08 01:31 - 2014-05-11 00:24 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-06 22:20 - 2014-06-16 21:37 - 00000000 ____D C:\Users\nam-anh\Documents\Vuze Downloads
2016-06-04 16:26 - 2014-05-11 00:24 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-06-04 15:50 - 2015-05-19 18:54 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2016-06-03 01:15 - 2016-01-02 16:11 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-03 01:15 - 2015-01-01 23:27 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-03 01:15 - 2015-01-01 23:27 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-06-03 01:14 - 2015-01-01 23:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-06-03 01:10 - 2016-01-02 16:05 - 00000000 ____D C:\Users\nam-anh\AppData\Local\NVIDIA Corporation
2016-06-03 01:10 - 2015-01-04 13:21 - 00000000 ____D C:\Users\nam-anh\AppData\Local\NVIDIA
2016-06-03 01:10 - 2015-01-01 23:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-02 22:52 - 2016-01-02 16:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2016-06-02 22:52 - 2014-11-14 22:41 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-06-02 22:45 - 2014-11-14 21:08 - 00000000 ____D C:\Users\nam-anh\AppData\Roaming\Battle.net
2016-06-02 22:45 - 2014-11-14 20:46 - 00000000 ____D C:\ProgramData\Battle.net
2016-05-31 01:39 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-31 01:39 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-05-26 21:06 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-05-26 21:05 - 2015-04-05 15:46 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-26 21:05 - 2015-04-05 15:46 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-20 09:01 - 2016-01-02 16:03 - 03383448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-05-20 09:01 - 2014-12-11 12:43 - 00039124 _____ C:\Windows\system32\nvinfo.pb
2016-05-20 09:01 - 2014-12-11 12:42 - 03825384 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-05-20 04:11 - 2015-01-01 23:27 - 06346688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-05-20 04:11 - 2015-01-01 23:27 - 02454976 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-05-20 04:11 - 2015-01-01 23:27 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-05-20 04:11 - 2015-01-01 23:27 - 01352760 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-05-20 04:11 - 2015-01-01 23:27 - 00531904 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-05-20 04:11 - 2015-01-01 23:27 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-05-20 04:11 - 2015-01-01 23:27 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-05-20 04:11 - 2015-01-01 23:27 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-05-19 23:29 - 2016-03-23 17:45 - 00000000 ____D C:\Users\nam-anh\Desktop\Cours
2016-05-19 01:25 - 2015-01-01 23:27 - 06448223 _____ C:\Windows\system32\nvcoproc.bin
2016-05-18 19:50 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-05-18 15:36 - 2013-08-22 16:44 - 05179936 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-18 15:35 - 2015-04-15 15:08 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-18 15:35 - 2014-05-10 23:04 - 00000000 ____D C:\Users\nam-anh
2016-05-18 15:35 - 2013-09-30 06:00 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-16 20:41 - 2014-05-11 01:22 - 00003890 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

==================== Fichiers à la racine de certains dossiers =======

2016-01-14 22:10 - 2016-01-14 22:10 - 0000000 _____ () C:\Users\nam-anh\AppData\Local\Driver_LOM_8161Present.flag

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-06-07 20:11

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité