Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 25-09-2016
Exécuté par Administrateur (administrateur) sur HP27095772483 (26-09-2016 19:05:39)
Exécuté depuis C:\Documents and Settings\Administrateur\Bureau
Profils chargés: Administrateur (Profils disponibles: Administrateur)
Platform: Microsoft Windows XP Professionnel Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
(McAfee, Inc.) C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
(ActivIdentity) C:\Program Files\Fichiers communs\ActivIdentity\ac.sharedstore.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(MAGIX AG) C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Hewlett-Packard Company) C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Symantec Corporation) C:\Program Files\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
(PalmSource, Inc) C:\Program Files\palmOne\Hotsync.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe
(Microsoft Corporation) C:\Program Files\Outlook Express\msimn.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Hewlett-Packard) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPNRA.EXE
(Hewlett-Packard Company) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
(Hewlett-Packard Company) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
(Hewlett-Packard Company) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IMSS] => C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111640 2009-11-04] ()
HKLM\...\Run: [SetRefresh] => C:\Program Files\Compaq\SetRefresh\SetRefresh.exe [525824 2003-11-20] (Hewlett-Packard Company)
HKLM\...\Run: [acevents] => C:\Program Files\ActivIdentity\ActivClient\acevents.exe [153640 2009-06-03] (ActivIdentity)
HKLM\...\Run: [accrdsub] => C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936 2009-06-03] (ActivIdentity)
HKLM\...\Run: [NortonOnlineBackupReminder] => C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe [3331944 2009-12-03] (Symantec Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\ackpbsc: C:\Program Files\ActivIdentity\ActivClient\ackpbsc.dll [2009-06-03] (ActivIdentity)
Winlogon\Notify\acunlock: C:\Program Files\ActivIdentity\ActivClient\acunlock.dll [2009-06-03] (ActivIdentity)
Winlogon\Notify\DeviceNP: C:\WINDOWS\system32\DeviceNP.dll [2009-12-07] (Hewlett-Packard Limited)
Winlogon\Notify\LBTWlgn: c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-07-20] (Logitech, Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\...\Run: [Norton Download Manager{NS227132-SHPD-FSD56093}] => C:\Documents and Settings\All Users\Documents\Norton\{NS227132-SHPD-FSD56093}\NortonNSDownloader.exe [1090400 2016-09-14] (Symantec Corporation)
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\...\MountPoints2: {427de39b-2ed0-11e6-84ed-b9ccf6e6f580} - K:\startme.exe
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\...\MountPoints2: {c7f2934c-96a6-11e5-a003-e41a30e6bd78} - J:\Startme.exe
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmypics.scr [47104 2008-04-14] (Microsoft Corporation)
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll [2016-08-15] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll [2016-08-15] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll [2016-08-15] (Symantec Corporation)
ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HotSync Manager.lnk [2010-09-20]
ShortcutTarget: HotSync Manager.lnk -> C:\Program Files\palmOne\Hotsync.exe (PalmSource, Inc)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk [2010-09-17]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
BootExecute: autocheck autochk * 쫤Ь
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyServer: [S-1-5-21-1982855952-1870294632-3014065652-500] => localhost:8080
AutoConfigURL: [S-1-5-21-1982855952-1870294632-3014065652-500] => localhost:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{F84AFEF5-B8DA-4341-95C1-C90B5C22B59B}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\Software\Microsoft\Internet Explorer\Main,Default_search_url = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {66A6A0B7-C5F7-42AD-AC9E-D2F77DC3805E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMDTDF&pc=CMDTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1982855952-1870294632-3014065652-500 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1982855952-1870294632-3014065652-500 -> {66A6A0B7-C5F7-42AD-AC9E-D2F77DC3805E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMDTDF&pc=CMDTDF&src=IE-SearchBox
BHO: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2010-01-19] (Hewlett-Packard)
BHO: HP ProtectTools Security Manager Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2010-03-12] (DigitalPersona, Inc.)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.7.1.32\coIEPlg.dll [2016-08-05] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-04] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-04] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.7.1.32\coIEPlg.dll [2016-08-05] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-1982855952-1870294632-3014065652-500 -> Pas de nom - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - Pas de fichier
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} hxxp://www.ma-config.com/plugins/MaConfig_5_1_5_0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {EBF85371-A38F-485B-B28F-0B4C82D25937} hxxp://update.hpphoto.com/download/HPSWUpdate.ocx
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll [2013-09-25] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-14] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll [2010-10-22] (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-04-04] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files\Sony\Media Go\npmediago.dll [2010-12-10] (Sony Network Entertainment International LLC)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1982855952-1870294632-3014065652-500: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.3.24.15\npGoogleUpdate3.dll [2014-06-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-1982855952-1870294632-3014065652-500: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.3.24.15\npGoogleUpdate3.dll [2014-06-29] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-09-17] [non signé]
FF HKLM\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2010-09-15] [non signé]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.1.32\coFFAddon
FF Extension: (Norton Identity Safe) - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.1.32\coFFAddon [2016-09-14]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.orange.fr/portail
CHR StartupUrls: Default -> "hxxp://www.orange.fr/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll => Pas de fichier
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\PepperFlash\21.0.0.216\pepflashplayer.dll => Pas de fichier
CHR Profile: C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default [2016-09-26]
CHR Extension: (Google Drive) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Recherche Google) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Docs hors connexion) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.7.1.32\Exts\Chrome.crx [2016-08-05]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.4DHR7YEHVTXZDQKQ764VLE75CI - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ac.sharedstore; C:\Program Files\Fichiers communs\ActivIdentity\ac.sharedstore.exe [207400 2009-06-03] (ActivIdentity)
R2 acs; C:\WINDOWS\system32\acs.exe [499796 2013-01-22] (Atheros) [Fichier non signé]
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [300808 2010-03-12] (DigitalPersona, Inc.)
R2 Fabs; C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [Fichier non signé]
S3 FirebirdServerMAGIXInstance; C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [Fichier non signé]
S3 FLCDLOCK; C:\WINDOWS\system32\flcdlock.exe [362040 2009-12-07] (Hewlett-Packard Ltd)
S4 HidServ; C:\WINDOWS\System32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
R3 HP Port Resolver; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPBPRO.EXE [81920 2005-05-20] (Hewlett-Packard Company)
S2 HP ProtectTools Service; C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [36864 2010-01-12] (Hewlett-Packard Development Company, L.P) [Fichier non signé]
R3 HP Status Server; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPBOID.EXE [73728 2004-10-16] (Hewlett-Packard Company)
R2 HpFkCryptService; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [281192 2010-02-01] (McAfee, Inc.)
R2 HPFSService; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [297984 2010-01-19] (Hewlett-Packard) [Fichier non signé]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-03-11] (Hewlett-Packard Co.) [Fichier non signé]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-03-11] (Hewlett-Packard Co.) [Fichier non signé]
S3 ImapiService; C:\WINDOWS\system32\imapihp.exe [156160 2010-09-15] (Microsoft Corporation) [Fichier non signé]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [181664 2013-04-04] (Oracle Corporation)
S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [360529 2013-01-22] (wireless) [Fichier non signé]
S3 LBTServ; C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe [121360 2009-07-20] (Logitech, Inc.)
R2 LightScribeService; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [73728 2009-10-16] (Hewlett-Packard Company) [Fichier non signé]
S4 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2117448 2014-06-24] (CybelSoft)
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S4 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [Fichier non signé]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 Norton PC Checkup Application Launcher; C:\Program Files\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe [132504 2013-08-09] (Symantec Corporation)
R2 NS; C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe [289080 2016-08-16] (Symantec Corporation)
S3 odserv; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S3 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [818712 2010-10-12] (PDF Complete Inc)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 RoxMediaDB10; C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [1120752 2009-06-13] (Sonic Solutions)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-18] (Intel Corporation)
S4 adpu320; C:\WINDOWS\system32\DRIVERS\adpu320.sys [105472 2002-05-09] (Adaptec, Inc.) [Fichier non signé]
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21419 2010-09-16] (Meetinghouse Data Communications) [Fichier non signé]
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1606976 2013-01-22] (Atheros Communications, Inc.)
R1 BHDrvx86; C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\BASHDefs\20160922.001\BHDrvx86.sys [1334008 2016-09-07] (Symantec Corporation)
R1 ccSet_NS; C:\WINDOWS\system32\drivers\NS\1607010.020\ccSetx86.sys [137456 2016-08-10] (Symantec Corporation)
S3 DAMDrv; C:\WINDOWS\System32\DRIVERS\DAMDrv.sys [32312 2009-10-21] (Hewlett-Packard Development Company L.P.)
S3 dot4ufd; C:\WINDOWS\System32\DRIVERS\hppaufd0.sys [16800 2007-03-08] (HP)
R3 e1kexpress; C:\WINDOWS\System32\DRIVERS\e1k5132.sys [167080 2009-12-10] (Intel Corporation)
R1 eeCtrl; C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys [388848 2016-04-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [124144 2016-04-27] (Symantec Corporation)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [17344 2014-11-16] (Glarysoft Ltd)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2009-08-26] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2009-08-26] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-03-08] (HP)
S3 i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [161020 2008-04-13] (Intel(R) Corporation)
S3 iAimFP0; C:\WINDOWS\System32\DRIVERS\wADV01nt.sys [12415 2008-04-13] (Intel(R) Corporation)
S3 iAimFP1; C:\WINDOWS\System32\DRIVERS\wADV02NT.sys [12127 2008-04-13] (Intel(R) Corporation)
S3 iAimFP2; C:\WINDOWS\System32\DRIVERS\wADV05NT.sys [11775 2008-04-13] (Intel(R) Corporation)
S3 iAimFP3; C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys [12063 2008-04-13] (Intel(R) Corporation)
S3 iAimFP4; C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys [19455 2008-04-13] (Intel(R) Corporation)
S3 iAimFP5; C:\WINDOWS\System32\DRIVERS\wADV07nt.sys [11807 2008-04-13] (Intel(R) Corporation)
S3 iAimFP6; C:\WINDOWS\System32\DRIVERS\wADV08nt.sys [11295 2008-04-13] (Intel(R) Corporation)
S3 iAimFP7; C:\WINDOWS\System32\DRIVERS\wADV09nt.sys [11871 2008-04-13] (Intel(R) Corporation)
S3 iAimTV0; C:\WINDOWS\System32\DRIVERS\wATV01nt.sys [29311 2008-04-13] (Intel(R) Corporation)
S3 iAimTV1; C:\WINDOWS\System32\DRIVERS\wATV02NT.sys [19551 2008-04-13] (Intel(R) Corporation)
S3 iAimTV3; C:\WINDOWS\System32\DRIVERS\wATV04nt.sys [33599 2008-04-13] (Intel(R) Corporation)
S3 iAimTV4; C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys [23615 2008-04-13] (Intel(R) Corporation)
S3 iAimTV5; C:\WINDOWS\System32\DRIVERS\wATV10nt.sys [25471 2008-04-13] (Intel(R) Corporation)
S3 iAimTV6; C:\WINDOWS\System32\DRIVERS\wATV06nt.sys [22271 2008-04-13] (Intel(R) Corporation)
R3 IDSxpx86; C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\IPSDefs\20160920.001\IDSxpx86.sys [631512 2016-09-14] (Symantec Corporation)
R3 IFXTPM; C:\WINDOWS\System32\DRIVERS\IFXTPM.SYS [44800 2007-12-18] (Infineon Technologies AG)
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2013-01-22] (Atheros Communications, Inc.)
S3 ma-config_x86; C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys [16160 2014-02-24] (CybelSoft)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [50704 2010-01-27] (CACE Technologies, Inc.)
S1 P3; C:\WINDOWS\System32\DRIVERS\p3.sys [46848 2008-04-14] (Microsoft Corporation)
S3 PalmUSBD; C:\WINDOWS\System32\drivers\PalmUSBD.sys [16694 2010-09-20] (PalmSource, Inc.)
R1 RsvLock; C:\WINDOWS\system32\Drivers\RsvLock.sys [40088 2010-02-01] (McAfee, Inc.)
S3 RT80x86; C:\WINDOWS\System32\DRIVERS\RT2860.sys [572416 2007-11-15] (OvisLink) [Fichier non signé]
S3 s1018obex; C:\WINDOWS\System32\DRIVERS\s1018obex.sys [104744 2009-03-25] (MCCI Corporation)
R0 SafeBoot; C:\WINDOWS\system32\Drivers\SafeBoot.sys [110520 2010-02-01] () [Fichier non signé]
R0 SbAlg; C:\WINDOWS\system32\Drivers\SbAlg.sys [51800 2010-02-01] (McAfee, Inc.)
R0 SbFsLock; C:\WINDOWS\system32\Drivers\SbFsLock.sys [13256 2010-02-01] (McAfee, Inc.)
R1 sonypvf3; C:\WINDOWS\system32\Drivers\sonypvf3.sys [619390 2004-11-15] (Sony Corporation) [Fichier non signé]
R0 sonypvl3; C:\WINDOWS\system32\Drivers\sonypvl3.sys [18110 2004-09-22] (Sony Corporation) [Fichier non signé]
R1 sonypvt3; C:\WINDOWS\system32\Drivers\sonypvt3.sys [423454 2004-12-06] (Sony Corporation) [Fichier non signé]
R3 SRTSP; C:\WINDOWS\system32\drivers\NS\1607010.020\SRTSP.SYS [626416 2016-08-10] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\NS\1607010.020\SRTSPX.SYS [42744 2016-08-10] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NS\1607010.020\SYMEFASI.SYS [1289944 2016-08-10] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [88312 2016-09-14] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\NS\1607010.020\Ironx86.SYS [230648 2016-08-10] (Symantec Corporation)
S4 Symmpi; C:\WINDOWS\system32\DRIVERS\symmpi.sys [28416 2009-05-21] (LSI Logic) [Fichier non signé]
R1 SYMTDI; C:\WINDOWS\system32\drivers\NS\1607010.020\SYMTDI.SYS [381880 2016-08-10] (Symantec Corporation)
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2013-01-22] (Atheros Communications, Inc.) [Fichier non signé]
S3 eapihdrv; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ehdrv.sys [X]
S3 NAVENG; \??\C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160907.001\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160907.001\NAVEX15.SYS [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-26 19:05 - 2016-09-26 19:05 - 00028627 _____ C:\Documents and Settings\Administrateur\Bureau\FRST.txt
2016-09-26 18:59 - 2016-09-26 18:59 - 00000913 _____ C:\SeafLog.txt
2016-09-26 15:45 - 2016-09-26 15:45 - 00110592 _____ C:\WINDOWS\Minidump\Mini092616-01.dmp
2016-09-26 15:43 - 2016-09-26 15:43 - 00001228 _____ C:\Documents and Settings\Administrateur\Bureau\Fixlog.txt
2016-09-25 02:22 - 2016-09-26 15:42 - 01753600 _____ (Farbar) C:\Documents and Settings\Administrateur\Bureau\FRST.exe
2016-09-24 00:46 - 2016-09-24 00:46 - 00000000 ____D C:\Program Files\SEAF
2016-09-23 12:11 - 2016-09-23 12:11 - 00000000 ____D C:\Program Files\NirSoft
2016-09-23 11:50 - 2016-09-23 11:49 - 00110592 _____ C:\WINDOWS\Minidump\Mini092316-01.dmp
2016-09-23 10:49 - 2016-09-24 00:37 - 00000000 ____D C:\Program Files\WhoCrashed
2016-09-22 11:34 - 2016-09-22 11:34 - 00110592 _____ C:\WINDOWS\Minidump\Mini092216-01.dmp
2016-09-20 11:02 - 2016-09-20 11:02 - 00110592 _____ C:\WINDOWS\Minidump\Mini092016-01.dmp
2016-09-18 01:22 - 2016-09-18 01:21 - 00110592 _____ C:\WINDOWS\Minidump\Mini091816-01.dmp
2016-09-15 18:46 - 2016-09-15 18:46 - 00110592 ____N C:\WINDOWS\Minidump\Mini091516-01.dmp
2016-09-15 11:21 - 2016-09-26 19:05 - 00000000 ____D C:\FRST
2016-09-15 02:19 - 2016-09-26 15:44 - 00346376 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2016-09-14 10:50 - 2016-09-14 11:28 - 00000000 ____D C:\Program Files\Fichiers communs\Symantec Shared
2016-09-14 10:50 - 2016-09-14 10:50 - 00088312 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
2016-09-14 10:50 - 2016-09-14 10:50 - 00008234 _____ C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2016-09-14 10:46 - 2016-09-14 10:50 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Norton Security
2016-09-14 10:46 - 2016-09-14 10:46 - 00000000 ____D C:\WINDOWS\system32\Drivers\NS
2016-09-14 10:46 - 2016-09-14 10:46 - 00000000 ____D C:\Program Files\Norton Security
2016-09-14 10:40 - 2016-09-14 10:40 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PCSettings
2016-09-14 10:36 - 2016-09-14 10:36 - 00000000 ____D C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Norton
2016-09-09 23:56 - 2016-09-09 23:56 - 00000000 ____D C:\Program Files\7-Zip
2016-09-06 19:24 - 2016-09-09 17:55 - 00001087 ____N C:\Documents and Settings\Administrateur\.bmw-dlm.properties
2016-09-06 19:24 - 2016-09-09 17:55 - 00000011 ____N C:\Documents and Settings\Administrateur\.bmw-dlm-version.txt
2016-09-06 19:23 - 2016-09-06 19:23 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\BMWUpdateManager
2016-09-06 19:23 - 2016-09-06 19:23 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\JWrapper-BMWUpdateManager
2016-09-06 19:23 - 2016-09-06 19:23 - 00000000 ____D C:\Documents and Settings\Administrateur\.oracle_jre_usage
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-26 19:05 - 2016-01-21 02:03 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Temp
2016-09-26 19:05 - 2010-09-16 04:38 - 00000000 ____D C:\Documents and Settings\Administrateur\Bureau
2016-09-26 18:38 - 2013-01-08 19:16 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-26 18:14 - 2016-01-22 00:54 - 00001056 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-26 15:46 - 2016-01-22 00:54 - 00001052 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-26 15:46 - 2014-11-07 18:59 - 00000374 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-09-26 15:46 - 2010-09-16 05:28 - 00001158 _____ C:\WINDOWS\system32\wpa.dbl
2016-09-26 15:45 - 2011-03-31 12:57 - 00000000 ____D C:\WINDOWS\Minidump
2016-09-26 15:45 - 2009-05-21 19:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-26 15:44 - 2014-11-04 19:54 - 00524288 _____ C:\WINDOWS\system32\config\acs.evt
2016-09-26 15:44 - 2010-09-16 05:26 - 00032590 _____ C:\WINDOWS\SchedLgU.Txt
2016-09-26 15:44 - 2009-05-21 19:36 - 00000184 ___SH C:\Documents and Settings\Administrateur\ntuser.ini
2016-09-26 15:07 - 2010-09-16 11:41 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Mes docs PDF
2016-09-26 09:51 - 2010-09-21 15:04 - 00000000 ____D C:\Program Files\Fichiers communs\LightScribe
2016-09-24 20:24 - 2010-09-16 04:38 - 00000000 ____D C:\Program Files\Outlook Express
2016-09-24 16:43 - 2010-09-16 11:55 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Word
2016-09-23 21:22 - 2010-09-15 19:55 - 00000000 ____D C:\Program Files\Fichiers communs\ActivIdentity
2016-09-22 15:18 - 2013-02-15 09:40 - 00000520 _____ C:\Documents and Settings\Administrateur\Mes documents\spider.sav
2016-09-20 19:33 - 2010-09-16 11:47 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Mes numérisations
2016-09-20 12:53 - 2010-09-16 04:38 - 00000000 ___RD C:\Documents and Settings\Administrateur\Mes documents
2016-09-19 14:27 - 2010-09-22 01:11 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Bureautique
2016-09-19 14:27 - 2010-09-16 04:38 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2016-09-17 08:47 - 2014-06-29 14:22 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-17 00:12 - 2016-01-21 02:10 - 00000000 ____D C:\Documents and Settings\Administrateur\Application Data\ZHP
2016-09-15 23:37 - 2010-09-18 02:03 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2016-09-15 20:14 - 2010-09-16 04:38 - 00000000 ____D C:\WINDOWS\Registration
2016-09-15 15:44 - 2016-01-20 00:50 - 00000000 ____D C:\AdwCleaner
2016-09-15 14:08 - 2010-09-20 16:14 - 00000000 ____D C:\Program Files\palmOne
2016-09-15 12:11 - 2010-09-16 04:38 - 00000000 ___RD C:\Documents and Settings\Administrateur\Mes documents\Mes images
2016-09-15 11:53 - 2010-09-16 04:38 - 00000000 ____D C:\Documents and Settings\Administrateur
2016-09-15 02:48 - 2014-11-16 16:35 - 00000000 ____D C:\Program Files\Glary Utilities 5
2016-09-15 02:48 - 2010-09-17 00:56 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TEMP
2016-09-15 02:48 - 2010-09-16 04:38 - 00000000 ___HD C:\Documents and Settings\Administrateur\Modèles
2016-09-14 19:23 - 2010-09-16 12:36 - 00000000 ____D C:\Vsirven
2016-09-14 13:09 - 2010-09-16 11:54 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Norton Symantec
2016-09-14 11:20 - 2016-01-20 12:29 - 00000000 ____D C:\Program Files\Fichiers communs\AV
2016-09-14 11:07 - 2010-09-16 04:38 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2016-09-14 10:50 - 2010-09-16 04:38 - 00000000 ____D C:\Program Files\Fichiers communs
2016-09-14 10:50 - 2010-09-15 19:50 - 00000000 ____D C:\Program Files\Symantec
2016-09-14 10:46 - 2010-09-16 21:11 - 00000000 ____D C:\Program Files\NortonInstaller
2016-09-14 10:46 - 2010-09-16 20:12 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Norton
2016-09-14 10:36 - 2014-04-06 19:44 - 00000000 ____D C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes
2016-09-14 09:57 - 2010-09-15 19:51 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Microsoft Help
2016-09-14 00:38 - 2016-07-14 12:38 - 06502080 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-09-14 00:38 - 2013-01-08 19:16 - 00796352 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-09-14 00:38 - 2013-01-08 19:16 - 00142528 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-09-14 00:38 - 2010-09-16 04:38 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-08-29 12:25 - 2010-09-18 13:55 - 00000753 ____N C:\WINDOWS\MESAUTOS.INI
2016-08-29 12:25 - 2010-09-18 13:55 - 00000000 ____D C:\Program Files\Mes Autos
==================== Fichiers à la racine de certains dossiers =======
2013-01-17 16:21 - 2010-01-26 11:11 - 0444283 ____N () C:\Program Files\Fichiers communs\WinPcapNmap.exe
2010-12-20 20:59 - 2010-12-20 23:33 - 0000284 ____N () C:\Documents and Settings\Administrateur\Application Data\ViewerApp.dat
2010-09-22 02:25 - 2016-08-15 19:01 - 0044032 ____N () C:\Documents and Settings\Administrateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-10-29 01:30 - 2014-10-29 01:30 - 0001038 ____N () C:\Documents and Settings\Administrateur\Local Settings\Application Data\recently-used.xbel
2010-12-13 17:22 - 2016-08-23 14:28 - 0000046 ____N () C:\Documents and Settings\All Users\Application Data\Chronos.prf
2010-09-18 17:25 - 2010-11-05 11:26 - 0001448 ____N () C:\Documents and Settings\All Users\Application Data\hpzinstall.log
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
==================== Fin de FRST.txt ============================
Exécuté par Administrateur (administrateur) sur HP27095772483 (26-09-2016 19:05:39)
Exécuté depuis C:\Documents and Settings\Administrateur\Bureau
Profils chargés: Administrateur (Profils disponibles: Administrateur)
Platform: Microsoft Windows XP Professionnel Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
(McAfee, Inc.) C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
(ActivIdentity) C:\Program Files\Fichiers communs\ActivIdentity\ac.sharedstore.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(MAGIX AG) C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Hewlett-Packard Company) C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
(Symantec Corporation) C:\Program Files\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
(PalmSource, Inc) C:\Program Files\palmOne\Hotsync.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe
(Symantec Corporation) C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe
(Microsoft Corporation) C:\Program Files\Outlook Express\msimn.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
(Hewlett-Packard) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPNRA.EXE
(Hewlett-Packard Company) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
(Hewlett-Packard Company) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
(Hewlett-Packard Company) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
(Google Inc.) C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IMSS] => C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111640 2009-11-04] ()
HKLM\...\Run: [SetRefresh] => C:\Program Files\Compaq\SetRefresh\SetRefresh.exe [525824 2003-11-20] (Hewlett-Packard Company)
HKLM\...\Run: [acevents] => C:\Program Files\ActivIdentity\ActivClient\acevents.exe [153640 2009-06-03] (ActivIdentity)
HKLM\...\Run: [accrdsub] => C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936 2009-06-03] (ActivIdentity)
HKLM\...\Run: [NortonOnlineBackupReminder] => C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe [3331944 2009-12-03] (Symantec Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
Winlogon\Notify\ackpbsc: C:\Program Files\ActivIdentity\ActivClient\ackpbsc.dll [2009-06-03] (ActivIdentity)
Winlogon\Notify\acunlock: C:\Program Files\ActivIdentity\ActivClient\acunlock.dll [2009-06-03] (ActivIdentity)
Winlogon\Notify\DeviceNP: C:\WINDOWS\system32\DeviceNP.dll [2009-12-07] (Hewlett-Packard Limited)
Winlogon\Notify\LBTWlgn: c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-07-20] (Logitech, Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\...\Run: [Norton Download Manager{NS227132-SHPD-FSD56093}] => C:\Documents and Settings\All Users\Documents\Norton\{NS227132-SHPD-FSD56093}\NortonNSDownloader.exe [1090400 2016-09-14] (Symantec Corporation)
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\...\MountPoints2: {427de39b-2ed0-11e6-84ed-b9ccf6e6f580} - K:\startme.exe
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\...\MountPoints2: {c7f2934c-96a6-11e5-a003-e41a30e6bd78} - J:\Startme.exe
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmypics.scr [47104 2008-04-14] (Microsoft Corporation)
Lsa: [Notification Packages] DPPassFilter scecli
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll [2016-08-15] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll [2016-08-15] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll [2016-08-15] (Symantec Corporation)
ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HotSync Manager.lnk [2010-09-20]
ShortcutTarget: HotSync Manager.lnk -> C:\Program Files\palmOne\Hotsync.exe (PalmSource, Inc)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk [2010-09-17]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.)
BootExecute: autocheck autochk * 쫤Ь
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyServer: [S-1-5-21-1982855952-1870294632-3014065652-500] => localhost:8080
AutoConfigURL: [S-1-5-21-1982855952-1870294632-3014065652-500] => localhost:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{F84AFEF5-B8DA-4341-95C1-C90B5C22B59B}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hp.com
HKU\S-1-5-21-1982855952-1870294632-3014065652-500\Software\Microsoft\Internet Explorer\Main,Default_search_url = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {66A6A0B7-C5F7-42AD-AC9E-D2F77DC3805E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMDTDF&pc=CMDTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1982855952-1870294632-3014065652-500 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1982855952-1870294632-3014065652-500 -> {66A6A0B7-C5F7-42AD-AC9E-D2F77DC3805E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=CMDTDF&pc=CMDTDF&src=IE-SearchBox
BHO: File Sanitizer for HP ProtectTools -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2010-01-19] (Hewlett-Packard)
BHO: HP ProtectTools Security Manager Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2010-03-12] (DigitalPersona, Inc.)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.7.1.32\coIEPlg.dll [2016-08-05] (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-04] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-04] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.7.1.32\coIEPlg.dll [2016-08-05] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-1982855952-1870294632-3014065652-500 -> Pas de nom - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - Pas de fichier
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} hxxp://www.ma-config.com/plugins/MaConfig_5_1_5_0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {EBF85371-A38F-485B-B28F-0B4C82D25937} hxxp://update.hpphoto.com/download/HPSWUpdate.ocx
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll [2013-09-25] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL [2009-02-26] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-14] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll [2010-10-22] (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-04-04] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 -> C:\Program Files\Sony\Media Go\npmediago.dll [2010-12-10] (Sony Network Entertainment International LLC)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1982855952-1870294632-3014065652-500: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.3.24.15\npGoogleUpdate3.dll [2014-06-29] (Google Inc.)
FF Plugin HKU\S-1-5-21-1982855952-1870294632-3014065652-500: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.3.24.15\npGoogleUpdate3.dll [2014-06-29] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-09-17] [non signé]
FF HKLM\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt [2010-09-15] [non signé]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.1.32\coFFAddon
FF Extension: (Norton Identity Safe) - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.1.32\coFFAddon [2016-09-14]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.orange.fr/portail
CHR StartupUrls: Default -> "hxxp://www.orange.fr/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll => Pas de fichier
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\PepperFlash\21.0.0.216\pepflashplayer.dll => Pas de fichier
CHR Profile: C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default [2016-09-26]
CHR Extension: (Google Drive) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Recherche Google) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Docs hors connexion) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.7.1.32\Exts\Chrome.crx [2016-08-05]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.4DHR7YEHVTXZDQKQ764VLE75CI - C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ac.sharedstore; C:\Program Files\Fichiers communs\ActivIdentity\ac.sharedstore.exe [207400 2009-06-03] (ActivIdentity)
R2 acs; C:\WINDOWS\system32\acs.exe [499796 2013-01-22] (Atheros) [Fichier non signé]
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [300808 2010-03-12] (DigitalPersona, Inc.)
R2 Fabs; C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [Fichier non signé]
S3 FirebirdServerMAGIXInstance; C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [Fichier non signé]
S3 FLCDLOCK; C:\WINDOWS\system32\flcdlock.exe [362040 2009-12-07] (Hewlett-Packard Ltd)
S4 HidServ; C:\WINDOWS\System32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
R3 HP Port Resolver; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPBPRO.EXE [81920 2005-05-20] (Hewlett-Packard Company)
S2 HP ProtectTools Service; C:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [36864 2010-01-12] (Hewlett-Packard Development Company, L.P) [Fichier non signé]
R3 HP Status Server; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPBOID.EXE [73728 2004-10-16] (Hewlett-Packard Company)
R2 HpFkCryptService; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [281192 2010-02-01] (McAfee, Inc.)
R2 HPFSService; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [297984 2010-01-19] (Hewlett-Packard) [Fichier non signé]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-03-11] (Hewlett-Packard Co.) [Fichier non signé]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-03-11] (Hewlett-Packard Co.) [Fichier non signé]
S3 ImapiService; C:\WINDOWS\system32\imapihp.exe [156160 2010-09-15] (Microsoft Corporation) [Fichier non signé]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [181664 2013-04-04] (Oracle Corporation)
S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [360529 2013-01-22] (wireless) [Fichier non signé]
S3 LBTServ; C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe [121360 2009-07-20] (Logitech, Inc.)
R2 LightScribeService; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [73728 2009-10-16] (Hewlett-Packard Company) [Fichier non signé]
S4 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2117448 2014-06-24] (CybelSoft)
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S4 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [Fichier non signé]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 Norton PC Checkup Application Launcher; C:\Program Files\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe [132504 2013-08-09] (Symantec Corporation)
R2 NS; C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe [289080 2016-08-16] (Symantec Corporation)
S3 odserv; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S3 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [818712 2010-10-12] (PDF Complete Inc)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 RoxMediaDB10; C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [1120752 2009-06-13] (Sonic Solutions)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-18] (Intel Corporation)
S4 adpu320; C:\WINDOWS\system32\DRIVERS\adpu320.sys [105472 2002-05-09] (Adaptec, Inc.) [Fichier non signé]
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21419 2010-09-16] (Meetinghouse Data Communications) [Fichier non signé]
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1606976 2013-01-22] (Atheros Communications, Inc.)
R1 BHDrvx86; C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\BASHDefs\20160922.001\BHDrvx86.sys [1334008 2016-09-07] (Symantec Corporation)
R1 ccSet_NS; C:\WINDOWS\system32\drivers\NS\1607010.020\ccSetx86.sys [137456 2016-08-10] (Symantec Corporation)
S3 DAMDrv; C:\WINDOWS\System32\DRIVERS\DAMDrv.sys [32312 2009-10-21] (Hewlett-Packard Development Company L.P.)
S3 dot4ufd; C:\WINDOWS\System32\DRIVERS\hppaufd0.sys [16800 2007-03-08] (HP)
R3 e1kexpress; C:\WINDOWS\System32\DRIVERS\e1k5132.sys [167080 2009-12-10] (Intel Corporation)
R1 eeCtrl; C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys [388848 2016-04-27] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [124144 2016-04-27] (Symantec Corporation)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [17344 2014-11-16] (Glarysoft Ltd)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2009-08-26] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2009-08-26] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2007-03-08] (HP)
S3 i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [161020 2008-04-13] (Intel(R) Corporation)
S3 iAimFP0; C:\WINDOWS\System32\DRIVERS\wADV01nt.sys [12415 2008-04-13] (Intel(R) Corporation)
S3 iAimFP1; C:\WINDOWS\System32\DRIVERS\wADV02NT.sys [12127 2008-04-13] (Intel(R) Corporation)
S3 iAimFP2; C:\WINDOWS\System32\DRIVERS\wADV05NT.sys [11775 2008-04-13] (Intel(R) Corporation)
S3 iAimFP3; C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys [12063 2008-04-13] (Intel(R) Corporation)
S3 iAimFP4; C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys [19455 2008-04-13] (Intel(R) Corporation)
S3 iAimFP5; C:\WINDOWS\System32\DRIVERS\wADV07nt.sys [11807 2008-04-13] (Intel(R) Corporation)
S3 iAimFP6; C:\WINDOWS\System32\DRIVERS\wADV08nt.sys [11295 2008-04-13] (Intel(R) Corporation)
S3 iAimFP7; C:\WINDOWS\System32\DRIVERS\wADV09nt.sys [11871 2008-04-13] (Intel(R) Corporation)
S3 iAimTV0; C:\WINDOWS\System32\DRIVERS\wATV01nt.sys [29311 2008-04-13] (Intel(R) Corporation)
S3 iAimTV1; C:\WINDOWS\System32\DRIVERS\wATV02NT.sys [19551 2008-04-13] (Intel(R) Corporation)
S3 iAimTV3; C:\WINDOWS\System32\DRIVERS\wATV04nt.sys [33599 2008-04-13] (Intel(R) Corporation)
S3 iAimTV4; C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys [23615 2008-04-13] (Intel(R) Corporation)
S3 iAimTV5; C:\WINDOWS\System32\DRIVERS\wATV10nt.sys [25471 2008-04-13] (Intel(R) Corporation)
S3 iAimTV6; C:\WINDOWS\System32\DRIVERS\wATV06nt.sys [22271 2008-04-13] (Intel(R) Corporation)
R3 IDSxpx86; C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\IPSDefs\20160920.001\IDSxpx86.sys [631512 2016-09-14] (Symantec Corporation)
R3 IFXTPM; C:\WINDOWS\System32\DRIVERS\IFXTPM.SYS [44800 2007-12-18] (Infineon Technologies AG)
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2013-01-22] (Atheros Communications, Inc.)
S3 ma-config_x86; C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys [16160 2014-02-24] (CybelSoft)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [50704 2010-01-27] (CACE Technologies, Inc.)
S1 P3; C:\WINDOWS\System32\DRIVERS\p3.sys [46848 2008-04-14] (Microsoft Corporation)
S3 PalmUSBD; C:\WINDOWS\System32\drivers\PalmUSBD.sys [16694 2010-09-20] (PalmSource, Inc.)
R1 RsvLock; C:\WINDOWS\system32\Drivers\RsvLock.sys [40088 2010-02-01] (McAfee, Inc.)
S3 RT80x86; C:\WINDOWS\System32\DRIVERS\RT2860.sys [572416 2007-11-15] (OvisLink) [Fichier non signé]
S3 s1018obex; C:\WINDOWS\System32\DRIVERS\s1018obex.sys [104744 2009-03-25] (MCCI Corporation)
R0 SafeBoot; C:\WINDOWS\system32\Drivers\SafeBoot.sys [110520 2010-02-01] () [Fichier non signé]
R0 SbAlg; C:\WINDOWS\system32\Drivers\SbAlg.sys [51800 2010-02-01] (McAfee, Inc.)
R0 SbFsLock; C:\WINDOWS\system32\Drivers\SbFsLock.sys [13256 2010-02-01] (McAfee, Inc.)
R1 sonypvf3; C:\WINDOWS\system32\Drivers\sonypvf3.sys [619390 2004-11-15] (Sony Corporation) [Fichier non signé]
R0 sonypvl3; C:\WINDOWS\system32\Drivers\sonypvl3.sys [18110 2004-09-22] (Sony Corporation) [Fichier non signé]
R1 sonypvt3; C:\WINDOWS\system32\Drivers\sonypvt3.sys [423454 2004-12-06] (Sony Corporation) [Fichier non signé]
R3 SRTSP; C:\WINDOWS\system32\drivers\NS\1607010.020\SRTSP.SYS [626416 2016-08-10] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\NS\1607010.020\SRTSPX.SYS [42744 2016-08-10] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NS\1607010.020\SYMEFASI.SYS [1289944 2016-08-10] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [88312 2016-09-14] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\NS\1607010.020\Ironx86.SYS [230648 2016-08-10] (Symantec Corporation)
S4 Symmpi; C:\WINDOWS\system32\DRIVERS\symmpi.sys [28416 2009-05-21] (LSI Logic) [Fichier non signé]
R1 SYMTDI; C:\WINDOWS\system32\drivers\NS\1607010.020\SYMTDI.SYS [381880 2016-08-10] (Symantec Corporation)
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2013-01-22] (Atheros Communications, Inc.) [Fichier non signé]
S3 eapihdrv; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\ehdrv.sys [X]
S3 NAVENG; \??\C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160907.001\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security\NortonData\22.7.1.32\Definitions\SDSDefs\20160907.001\NAVEX15.SYS [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-26 19:05 - 2016-09-26 19:05 - 00028627 _____ C:\Documents and Settings\Administrateur\Bureau\FRST.txt
2016-09-26 18:59 - 2016-09-26 18:59 - 00000913 _____ C:\SeafLog.txt
2016-09-26 15:45 - 2016-09-26 15:45 - 00110592 _____ C:\WINDOWS\Minidump\Mini092616-01.dmp
2016-09-26 15:43 - 2016-09-26 15:43 - 00001228 _____ C:\Documents and Settings\Administrateur\Bureau\Fixlog.txt
2016-09-25 02:22 - 2016-09-26 15:42 - 01753600 _____ (Farbar) C:\Documents and Settings\Administrateur\Bureau\FRST.exe
2016-09-24 00:46 - 2016-09-24 00:46 - 00000000 ____D C:\Program Files\SEAF
2016-09-23 12:11 - 2016-09-23 12:11 - 00000000 ____D C:\Program Files\NirSoft
2016-09-23 11:50 - 2016-09-23 11:49 - 00110592 _____ C:\WINDOWS\Minidump\Mini092316-01.dmp
2016-09-23 10:49 - 2016-09-24 00:37 - 00000000 ____D C:\Program Files\WhoCrashed
2016-09-22 11:34 - 2016-09-22 11:34 - 00110592 _____ C:\WINDOWS\Minidump\Mini092216-01.dmp
2016-09-20 11:02 - 2016-09-20 11:02 - 00110592 _____ C:\WINDOWS\Minidump\Mini092016-01.dmp
2016-09-18 01:22 - 2016-09-18 01:21 - 00110592 _____ C:\WINDOWS\Minidump\Mini091816-01.dmp
2016-09-15 18:46 - 2016-09-15 18:46 - 00110592 ____N C:\WINDOWS\Minidump\Mini091516-01.dmp
2016-09-15 11:21 - 2016-09-26 19:05 - 00000000 ____D C:\FRST
2016-09-15 02:19 - 2016-09-26 15:44 - 00346376 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2016-09-14 10:50 - 2016-09-14 11:28 - 00000000 ____D C:\Program Files\Fichiers communs\Symantec Shared
2016-09-14 10:50 - 2016-09-14 10:50 - 00088312 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
2016-09-14 10:50 - 2016-09-14 10:50 - 00008234 _____ C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2016-09-14 10:46 - 2016-09-14 10:50 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Norton Security
2016-09-14 10:46 - 2016-09-14 10:46 - 00000000 ____D C:\WINDOWS\system32\Drivers\NS
2016-09-14 10:46 - 2016-09-14 10:46 - 00000000 ____D C:\Program Files\Norton Security
2016-09-14 10:40 - 2016-09-14 10:40 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\PCSettings
2016-09-14 10:36 - 2016-09-14 10:36 - 00000000 ____D C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Norton
2016-09-09 23:56 - 2016-09-09 23:56 - 00000000 ____D C:\Program Files\7-Zip
2016-09-06 19:24 - 2016-09-09 17:55 - 00001087 ____N C:\Documents and Settings\Administrateur\.bmw-dlm.properties
2016-09-06 19:24 - 2016-09-09 17:55 - 00000011 ____N C:\Documents and Settings\Administrateur\.bmw-dlm-version.txt
2016-09-06 19:23 - 2016-09-06 19:23 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\BMWUpdateManager
2016-09-06 19:23 - 2016-09-06 19:23 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\JWrapper-BMWUpdateManager
2016-09-06 19:23 - 2016-09-06 19:23 - 00000000 ____D C:\Documents and Settings\Administrateur\.oracle_jre_usage
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-26 19:05 - 2016-01-21 02:03 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Temp
2016-09-26 19:05 - 2010-09-16 04:38 - 00000000 ____D C:\Documents and Settings\Administrateur\Bureau
2016-09-26 18:38 - 2013-01-08 19:16 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-26 18:14 - 2016-01-22 00:54 - 00001056 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-26 15:46 - 2016-01-22 00:54 - 00001052 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-26 15:46 - 2014-11-07 18:59 - 00000374 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-09-26 15:46 - 2010-09-16 05:28 - 00001158 _____ C:\WINDOWS\system32\wpa.dbl
2016-09-26 15:45 - 2011-03-31 12:57 - 00000000 ____D C:\WINDOWS\Minidump
2016-09-26 15:45 - 2009-05-21 19:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-26 15:44 - 2014-11-04 19:54 - 00524288 _____ C:\WINDOWS\system32\config\acs.evt
2016-09-26 15:44 - 2010-09-16 05:26 - 00032590 _____ C:\WINDOWS\SchedLgU.Txt
2016-09-26 15:44 - 2009-05-21 19:36 - 00000184 ___SH C:\Documents and Settings\Administrateur\ntuser.ini
2016-09-26 15:07 - 2010-09-16 11:41 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Mes docs PDF
2016-09-26 09:51 - 2010-09-21 15:04 - 00000000 ____D C:\Program Files\Fichiers communs\LightScribe
2016-09-24 20:24 - 2010-09-16 04:38 - 00000000 ____D C:\Program Files\Outlook Express
2016-09-24 16:43 - 2010-09-16 11:55 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Word
2016-09-23 21:22 - 2010-09-15 19:55 - 00000000 ____D C:\Program Files\Fichiers communs\ActivIdentity
2016-09-22 15:18 - 2013-02-15 09:40 - 00000520 _____ C:\Documents and Settings\Administrateur\Mes documents\spider.sav
2016-09-20 19:33 - 2010-09-16 11:47 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Mes numérisations
2016-09-20 12:53 - 2010-09-16 04:38 - 00000000 ___RD C:\Documents and Settings\Administrateur\Mes documents
2016-09-19 14:27 - 2010-09-22 01:11 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Bureautique
2016-09-19 14:27 - 2010-09-16 04:38 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2016-09-17 08:47 - 2014-06-29 14:22 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-17 00:12 - 2016-01-21 02:10 - 00000000 ____D C:\Documents and Settings\Administrateur\Application Data\ZHP
2016-09-15 23:37 - 2010-09-18 02:03 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2016-09-15 20:14 - 2010-09-16 04:38 - 00000000 ____D C:\WINDOWS\Registration
2016-09-15 15:44 - 2016-01-20 00:50 - 00000000 ____D C:\AdwCleaner
2016-09-15 14:08 - 2010-09-20 16:14 - 00000000 ____D C:\Program Files\palmOne
2016-09-15 12:11 - 2010-09-16 04:38 - 00000000 ___RD C:\Documents and Settings\Administrateur\Mes documents\Mes images
2016-09-15 11:53 - 2010-09-16 04:38 - 00000000 ____D C:\Documents and Settings\Administrateur
2016-09-15 02:48 - 2014-11-16 16:35 - 00000000 ____D C:\Program Files\Glary Utilities 5
2016-09-15 02:48 - 2010-09-17 00:56 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\TEMP
2016-09-15 02:48 - 2010-09-16 04:38 - 00000000 ___HD C:\Documents and Settings\Administrateur\Modèles
2016-09-14 19:23 - 2010-09-16 12:36 - 00000000 ____D C:\Vsirven
2016-09-14 13:09 - 2010-09-16 11:54 - 00000000 ____D C:\Documents and Settings\Administrateur\Mes documents\Norton Symantec
2016-09-14 11:20 - 2016-01-20 12:29 - 00000000 ____D C:\Program Files\Fichiers communs\AV
2016-09-14 11:07 - 2010-09-16 04:38 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2016-09-14 10:50 - 2010-09-16 04:38 - 00000000 ____D C:\Program Files\Fichiers communs
2016-09-14 10:50 - 2010-09-15 19:50 - 00000000 ____D C:\Program Files\Symantec
2016-09-14 10:46 - 2010-09-16 21:11 - 00000000 ____D C:\Program Files\NortonInstaller
2016-09-14 10:46 - 2010-09-16 20:12 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Norton
2016-09-14 10:36 - 2014-04-06 19:44 - 00000000 ____D C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes
2016-09-14 09:57 - 2010-09-15 19:51 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Microsoft Help
2016-09-14 00:38 - 2016-07-14 12:38 - 06502080 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-09-14 00:38 - 2013-01-08 19:16 - 00796352 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-09-14 00:38 - 2013-01-08 19:16 - 00142528 ____N (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-09-14 00:38 - 2010-09-16 04:38 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-08-29 12:25 - 2010-09-18 13:55 - 00000753 ____N C:\WINDOWS\MESAUTOS.INI
2016-08-29 12:25 - 2010-09-18 13:55 - 00000000 ____D C:\Program Files\Mes Autos
==================== Fichiers à la racine de certains dossiers =======
2013-01-17 16:21 - 2010-01-26 11:11 - 0444283 ____N () C:\Program Files\Fichiers communs\WinPcapNmap.exe
2010-12-20 20:59 - 2010-12-20 23:33 - 0000284 ____N () C:\Documents and Settings\Administrateur\Application Data\ViewerApp.dat
2010-09-22 02:25 - 2016-08-15 19:01 - 0044032 ____N () C:\Documents and Settings\Administrateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-10-29 01:30 - 2014-10-29 01:30 - 0001038 ____N () C:\Documents and Settings\Administrateur\Local Settings\Application Data\recently-used.xbel
2010-12-13 17:22 - 2016-08-23 14:28 - 0000046 ____N () C:\Documents and Settings\All Users\Application Data\Chronos.prf
2010-09-18 17:25 - 2010-11-05 11:26 - 0001448 ____N () C:\Documents and Settings\All Users\Application Data\hpzinstall.log
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
==================== Fin de FRST.txt ============================