cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-07-2016
Exécuté par Genemesis (administrateur) sur GENEMESIS-PC (21-07-2016 16:13:59)
Exécuté depuis C:\Users\Genemesis\Desktop
Profils chargés: Genemesis (Profils disponibles: Genemesis)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
() C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(AVAST Software) C:\Users\Genemesis\AppData\Roaming\AVAST Software\Browser Cleanup\bcusched.exe
(BitTorrent Inc.) C:\Users\Genemesis\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\Genemesis\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Genemesis\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Genemesis\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7156296 2013-03-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024 2013-03-05] (Realtek Semiconductor)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4859592 2015-11-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2014-06-27] (Power Software Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2851408 2016-07-09] (Valve Corporation)
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424960 2016-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\...\Run: [tcactive] => C:\Program Files (x86)\The Cleaner\tcap.exe
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\...\MountPoints2: {9cb60acf-0945-11e6-9707-e7ab41a63a18} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
AppInit_DLLs-x32: �ȍ呒㡌꙰࣡婢��ᯁ婢�豐ߵ婢�廀õ�က€ => Pas de fichier
IFEO\mbam.exe: [Debugger] svchost.exe
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

AutoConfigURL: [S-1-5-21-3944704560-2691552256-2514596556-1001] => hxxp://un-stop.info/wpad.dat?a23a8964a2c6b82183270a97fdc26fa211766658
Hosts: 127.0.0.1 activation.guitar-pro.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{247E2883-6052-4FA9-A247-2762AD03F518}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{700880C8-64DD-4AD2-BAFE-5457768EBB13}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{D9797EC1-B794-40DB-B852-49680E1A57AE}: [DhcpNameServer] 192.168.0.254
ManualProxies: 0hxxp://un-stop.info/wpad.dat?a23a8964a2c6b82183270a97fdc26fa211766658

Internet Explorer:
==================
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://localoem.msn.com/?pc=SBJB
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com/?pc=SBJB
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.ldlc.com
HKU\S-1-5-21-3944704560-2691552256-2514596556-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.ldlc.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO-x32: Pas de nom -> {1A2641AE-2C42-4C51-A05F-8ECEC3FDC94D} -> Pas de fichier
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-10-05] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-10-05] (Oracle Corporation)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

FireFox:
========
FF ProfilePath: C:\Users\Genemesis\AppData\Roaming\Mozilla\Firefox\Profiles\dsjb6y5d.default
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-10-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-10-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [Pas de fichier]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Genemesis\AppData\Roaming\Mozilla\Firefox\Profiles\dsjb6y5d.default\user.js [2016-06-17]
FF Extension: uBlock Origin - C:\Users\Genemesis\AppData\Roaming\Mozilla\Firefox\Profiles\dsjb6y5d.default\Extensions\uBlock0@raymondhill.net.xpi [2016-07-20]
FF Extension: Adblock Plus - C:\Users\Genemesis\AppData\Roaming\Mozilla\Firefox\Profiles\dsjb6y5d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-06-20]

Chrome:
=======
CHR HomePage: Default -> hxxp://trovi.com/?ctid=CT2504091&SearchSource=48&CUI=UN40626313841237029&UM=1&SSPV=NI_DUM2
CHR StartupUrls: Default -> "hxxps://www.google.fr/","hxxp://www.default-search.net?sid=476&aid=163&itype=n&ver=12349&tm=355&src=hmp","hxxp://www.default-search.net?sid=476&aid=163&itype=a&ver=12692&tm=355&src=hmp","hxxp://www.default-search.net?sid=476&aid=163&itype=a&ver=13337&tm=355&src=hmp"
CHR Profile: C:\Users\Genemesis\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Genemesis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2016-07-21]
CHR Extension: (uBlock Origin) - C:\Users\Genemesis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-07-20]
CHR Extension: (AdBlock) - C:\Users\Genemesis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Genemesis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-26]
CHR Extension: (Mon thème Chrome) - C:\Users\Genemesis\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2016-07-20]
CHR Extension: (Stone) - C:\Users\Genemesis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pambecobpnjjlhnagofjamheojooglim [2016-06-17]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [Fichier non signé]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1860616 2016-04-04] ()
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [1375600 2013-11-27] (Binary Fortress Software)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237864 2015-03-15] (EasyAntiCheat Ltd)
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2820424 2014-06-24] (CybelSoft)
S3 Origin Client Service; D:\Program Files\Origin\OriginClientService.exe [2122248 2016-07-19] (Electronic Arts)
R2 RichVideo64; C:\Program Files\Cyberlink\Shared files\RichVideo64.exe [390672 2012-09-12] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 moohelp; C:\Program Files (x86)\The Cleaner\mhelper.exe [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 L6UX2; C:\Windows\System32\Drivers\L6UX264.sys [772864 2013-07-11] (Line 6)
S3 ma-config_amd64; C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys [17568 2014-02-24] (CybelSoft)
S3 CLMirrorDriver; system32\DRIVERS\CLMirrorDriver.sys [X]
S1 SDHookDriver; \??\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHookDrv64.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2095-12-24 11:42 - 2095-12-24 11:42 - 00002294 _____ C:\Users\Genemesis\Desktop\Cubase LE AI Elements 7 64bit.lnk
2095-12-24 11:42 - 2095-12-24 11:42 - 00000000 ____D C:\ProgramData\Steinberg
2095-12-24 11:42 - 2095-12-24 11:42 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2095-12-24 11:42 - 2015-06-29 11:30 - 00000000 ____D C:\Program Files\Common Files\Steinberg
2095-12-24 11:41 - 2095-12-24 11:42 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase LE AI Elements 7 64bit
2095-12-24 11:41 - 2095-12-24 11:41 - 00000049 _____ C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2095-12-24 11:41 - 2095-12-24 11:41 - 00000000 ____D C:\ProgramData\Syncrosoft
2095-12-24 11:41 - 2095-12-24 11:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2095-12-24 11:41 - 2095-12-24 11:41 - 00000000 ____D C:\ProgramData\eLicenser
2095-12-24 11:41 - 2095-12-24 11:41 - 00000000 ____D C:\Program Files\Steinberg
2095-12-24 11:41 - 2095-12-24 11:41 - 00000000 ____D C:\Program Files\eLicenser
2095-12-24 11:41 - 2095-12-24 11:41 - 00000000 ____D C:\Program Files (x86)\Syncrosoft
2095-12-24 11:41 - 2095-12-24 11:41 - 00000000 ____D C:\Program Files (x86)\eLicenser
2016-07-21 16:13 - 2016-07-21 16:14 - 00014618 _____ C:\Users\Genemesis\Desktop\FRST.txt
2016-07-21 16:13 - 2016-07-21 16:13 - 02393600 _____ (Farbar) C:\Users\Genemesis\Desktop\FRST64.exe
2016-07-21 16:13 - 2016-07-21 16:13 - 00000000 ____D C:\FRST
2016-07-21 16:12 - 2016-07-21 16:12 - 02393600 _____ (Farbar) C:\Users\Genemesis\Downloads\FRST64.exe
2016-07-21 09:17 - 2016-07-21 09:17 - 00020015 _____ C:\Users\Genemesis\Desktop\favoris_21_07_2016.html
2016-07-20 21:36 - 2016-07-21 09:51 - 00000000 ____D C:\Users\Genemesis\AppData\LocalLow\uTorrent
2016-07-20 19:04 - 2016-07-20 19:04 - 00115157 _____ C:\Users\Genemesis\Desktop\ZHPDiag2.txt
2016-07-20 19:00 - 2016-07-20 19:00 - 00001462 _____ C:\Users\Genemesis\Desktop\ZHPFixReport.txt
2016-07-20 17:07 - 2016-07-20 18:59 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-07-20 17:07 - 2016-07-20 17:07 - 03521617 _____ (Nicolas Coolman ) C:\Users\Genemesis\Downloads\ZHPFix.exe
2016-07-20 17:07 - 2016-07-20 17:07 - 00001860 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-07-20 17:07 - 2016-07-20 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-07-20 15:54 - 2016-07-20 19:03 - 00115154 _____ C:\Users\Genemesis\Desktop\ZHPDiag1.txt
2016-07-20 15:52 - 2016-07-20 19:02 - 00000793 _____ C:\Users\Genemesis\Desktop\ZHPDiag.lnk
2016-07-20 15:52 - 2016-07-20 15:52 - 02229760 _____ C:\Users\Genemesis\Downloads\ZHPDiag3.exe
2016-07-20 15:37 - 2016-07-20 15:40 - 00000000 ____D C:\AdwCleaner
2016-07-20 15:37 - 2016-07-20 15:37 - 03712064 _____ C:\Users\Genemesis\Downloads\adwcleaner_5.201.exe
2016-07-20 15:29 - 2016-07-20 15:29 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\thecleaner
2016-07-20 15:29 - 2016-07-20 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Cleaner
2016-07-20 15:28 - 2016-07-20 15:28 - 247980536 _____ (MooSoft Development LLC ) C:\Users\Genemesis\Downloads\cleaner-9.0-setup.exe
2016-07-20 15:23 - 2016-07-20 15:23 - 00000085 _____ C:\Windows\wininit.ini
2016-07-20 15:04 - 2016-07-20 15:04 - 00000000 ____D C:\Program Files\Common Files\AV
2016-07-20 14:53 - 2016-07-20 14:53 - 00177812 _____ C:\Windows\ntbtlog.txt
2016-07-20 14:40 - 2016-07-20 14:40 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2016-07-19 19:53 - 2016-07-19 19:53 - 00001084 _____ C:\Users\Genemesis\Desktop\MediaInfo.lnk
2016-07-19 19:50 - 2016-07-19 19:50 - 04999664 _____ (MediaArea.net) C:\Users\Genemesis\Downloads\MediaInfo_GUI_0.7.87_Windows.exe
2016-07-19 19:50 - 2016-07-19 19:50 - 00000797 _____ C:\Users\Genemesis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2016-07-19 16:50 - 2016-06-26 02:35 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-07-19 16:50 - 2016-06-26 02:27 - 01208320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-07-19 16:50 - 2016-06-26 02:27 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-07-19 16:50 - 2016-06-26 02:27 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-07-19 16:50 - 2016-06-26 02:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-07-19 16:50 - 2016-06-26 02:27 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-07-19 16:50 - 2016-06-26 02:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-07-19 16:50 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-07-19 16:50 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-07-19 16:50 - 2016-06-25 21:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-07-19 16:50 - 2016-06-25 21:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-07-19 16:50 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-07-19 16:50 - 2016-06-22 15:06 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-07-19 16:50 - 2016-06-17 20:24 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-07-19 16:50 - 2016-06-17 20:24 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-07-19 16:50 - 2016-06-17 20:24 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-07-19 16:50 - 2016-06-17 20:24 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-07-19 16:50 - 2016-06-17 20:24 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-07-19 16:50 - 2016-06-17 20:24 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-07-19 16:50 - 2016-06-14 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-19 16:50 - 2016-06-11 08:57 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-19 16:50 - 2016-06-11 06:48 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-07-19 16:50 - 2016-06-10 23:38 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-07-19 16:50 - 2016-06-10 23:38 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-07-19 16:50 - 2016-06-10 23:20 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-07-19 16:50 - 2016-06-10 23:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-07-19 16:50 - 2016-06-10 23:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-07-19 16:50 - 2016-06-10 23:18 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-19 16:50 - 2016-06-10 23:18 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-07-19 16:50 - 2016-06-10 23:17 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-19 16:50 - 2016-06-10 23:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-19 16:50 - 2016-06-10 23:08 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-07-19 16:50 - 2016-06-10 23:05 - 25814016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-19 16:50 - 2016-06-10 23:04 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-19 16:50 - 2016-06-10 23:03 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-07-19 16:50 - 2016-06-10 23:03 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-07-19 16:50 - 2016-06-10 23:02 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-19 16:50 - 2016-06-10 23:02 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-07-19 16:50 - 2016-06-10 22:53 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-19 16:50 - 2016-06-10 22:50 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-07-19 16:50 - 2016-06-10 22:49 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-19 16:50 - 2016-06-10 22:40 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-19 16:50 - 2016-06-10 22:38 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-07-19 16:50 - 2016-06-10 22:35 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-07-19 16:50 - 2016-06-10 22:34 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-19 16:50 - 2016-06-10 22:31 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-19 16:50 - 2016-06-10 22:28 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-07-19 16:50 - 2016-06-10 22:15 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-19 16:50 - 2016-06-10 22:13 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-19 16:50 - 2016-06-10 22:12 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-19 16:50 - 2016-06-10 22:11 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-07-19 16:50 - 2016-06-10 22:10 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-19 16:50 - 2016-06-10 21:45 - 15409664 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-19 16:50 - 2016-06-10 21:44 - 02869248 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-19 16:50 - 2016-06-10 21:30 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-19 16:50 - 2016-06-10 21:21 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-19 16:50 - 2016-06-10 21:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-07-19 16:50 - 2016-06-10 20:54 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-07-19 16:50 - 2016-06-10 20:53 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-07-19 16:50 - 2016-06-10 20:53 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-07-19 16:50 - 2016-06-10 20:53 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-07-19 16:50 - 2016-06-10 20:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-07-19 16:50 - 2016-06-10 20:47 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-07-19 16:50 - 2016-06-10 20:46 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-07-19 16:50 - 2016-06-10 20:45 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-07-19 16:50 - 2016-06-10 20:42 - 20348928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-07-19 16:50 - 2016-06-10 20:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-07-19 16:50 - 2016-06-10 20:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-07-19 16:50 - 2016-06-10 20:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-07-19 16:50 - 2016-06-10 20:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-07-19 16:50 - 2016-06-10 20:32 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-07-19 16:50 - 2016-06-10 20:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-07-19 16:50 - 2016-06-10 20:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-07-19 16:50 - 2016-06-10 20:24 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-07-19 16:50 - 2016-06-10 20:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-07-19 16:50 - 2016-06-10 20:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-07-19 16:50 - 2016-06-10 20:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-07-19 16:50 - 2016-06-10 20:14 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-07-19 16:50 - 2016-06-10 20:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-07-19 16:50 - 2016-06-10 20:10 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-07-19 16:50 - 2016-06-10 20:09 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-07-19 16:50 - 2016-06-10 20:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-07-19 16:50 - 2016-06-10 19:58 - 13806080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-07-19 16:50 - 2016-06-10 19:45 - 02392576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-07-19 16:50 - 2016-06-10 19:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-07-19 16:50 - 2016-06-10 19:41 - 01315840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-06-26 11:35 - 2016-06-26 11:36 - 00000000 ____D C:\Users\Genemesis\AppData\Local\Ubisoft Game Launcher
2016-06-26 11:35 - 2016-06-26 11:35 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-06-26 11:35 - 2016-06-26 11:35 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-06-26 08:34 - 2016-06-26 08:34 - 02274304 _____ C:\Users\Genemesis\ZHPCleaner.exe
2016-06-22 15:40 - 2016-06-27 19:34 - 00000000 ____D C:\Users\Genemesis\AppData\Local\Ori and the Blind Forest

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2095-12-24 11:42 - 2014-10-28 16:37 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\Steinberg
2095-12-24 11:38 - 2014-11-01 16:02 - 00003968 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5C497AA6-8DA4-4F51-9231-255D2BE41896}
2016-07-21 16:10 - 2014-12-07 18:45 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\uTorrent
2016-07-21 15:59 - 2014-09-13 11:33 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\Skype
2016-07-21 15:55 - 2014-09-12 19:08 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-21 12:14 - 2009-07-14 06:45 - 00028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-21 12:14 - 2009-07-14 06:45 - 00028944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-20 23:00 - 2014-09-12 19:08 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-20 21:50 - 2011-04-12 11:16 - 00747320 _____ C:\Windows\system32\perfh00C.dat
2016-07-20 21:50 - 2011-04-12 11:16 - 00149844 _____ C:\Windows\system32\perfc00C.dat
2016-07-20 21:50 - 2009-07-14 07:13 - 01668256 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-20 21:50 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-07-20 20:23 - 2016-06-19 11:35 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\ZHP
2016-07-20 19:00 - 2015-12-28 15:24 - 00000000 ____D C:\ProgramData\Apple Computer
2016-07-20 16:55 - 2015-11-13 04:49 - 00000000 ____D C:\Windows\rescache
2016-07-20 15:41 - 2014-09-01 20:38 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-20 15:40 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-20 14:48 - 2014-12-11 04:17 - 00000000 ____D C:\Windows\system32\appraiser
2016-07-20 14:48 - 2011-04-12 11:28 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-20 14:48 - 2009-07-14 06:45 - 00305584 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-20 14:47 - 2014-06-27 19:27 - 00000000 ____D C:\Windows\system32\MRT
2016-07-20 14:44 - 2014-06-27 19:27 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-20 14:00 - 2014-12-29 13:01 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-07-19 21:49 - 2014-09-02 18:57 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-07-19 21:35 - 2016-06-17 17:58 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\FreeFixer
2016-07-19 20:59 - 2015-03-26 18:59 - 00000000 ____D C:\ProgramData\Origin
2016-07-19 18:25 - 2014-12-05 20:06 - 00000000 ____D C:\Users\Genemesis\Documents\DayZ
2016-07-19 18:25 - 2014-12-05 20:06 - 00000000 ____D C:\Users\Genemesis\AppData\Local\DayZ
2016-07-19 18:23 - 2015-06-04 12:55 - 00000000 ____D C:\Users\Genemesis\Documents\The Witcher 3
2016-07-19 17:43 - 2014-09-12 20:44 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\vlc
2016-07-19 17:07 - 2016-06-01 19:54 - 00000000 ____D C:\Users\Genemesis\AppData\Local\ElevatedDiagnostics
2016-07-19 14:27 - 2015-01-15 10:21 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-19 14:16 - 2015-08-20 14:35 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-07-19 14:16 - 2014-09-13 11:32 - 00000000 ____D C:\ProgramData\Skype
2016-06-28 19:35 - 2014-09-12 19:39 - 00000000 ____D C:\Users\Genemesis\AppData\Roaming\Azureus
2016-06-26 12:54 - 2015-12-12 19:44 - 00001072 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-06-26 12:54 - 2014-08-31 21:04 - 00001018 _____ C:\Users\Genemesis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-26 11:38 - 2014-09-19 18:56 - 00000000 ____D C:\Users\Genemesis\Documents\My Games
2016-06-26 08:34 - 2016-06-19 11:35 - 00000650 _____ C:\Users\Genemesis\Desktop\ZHPCleaner.lnk
2016-06-26 08:34 - 2014-08-31 21:04 - 00000000 ____D C:\Users\Genemesis
2016-06-24 02:56 - 2016-06-17 19:48 - 00002200 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-23 19:56 - 2016-05-21 11:03 - 00000000 ___RD C:\Users\Genemesis\Desktop\Tatouage
2016-06-21 18:38 - 2014-10-01 15:45 - 00000000 ____D C:\Users\Genemesis\AppData\Local\CrashDumps
2016-06-21 15:59 - 2016-06-20 22:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-21 15:59 - 2015-12-12 19:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

Fichiers à déplacer ou supprimer:
====================
C:\Users\Genemesis\ZHPCleaner.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-07-19 17:00

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité